Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/2c8b70-66bc-4163-8f80-20f7d44ed126/1/QYxFQB986PK3z5Aa9tcrGoPEtyA.roa
File: QYxFQB986PK3z5Aa9tcrGoPEtyA.roa (raw, json)
Hash identifier: YbAq+6P9OCvABw0By1D02tUM7ImD1ANNWRcIhCqEXEU=
Subject key identifier: 41:8C:45:40:1F:7C:E8:F2:B7:CF:90:1A:F6:D7:2B:1A:83:C4:B7:20
Certificate issuer: /CN=a63dcb90a14742a52be5ca09cbed8dfc1cd3d1ef
Certificate serial: 0A8FE17F
Authority key identifier: A6:3D:CB:90:A1:47:42:A5:2B:E5:CA:09:CB:ED:8D:FC:1C:D3:D1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pj3LkKFHQqUr5coJy-2N_BzT0e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/2c8b70-66bc-4163-8f80-20f7d44ed126/1/QYxFQB986PK3z5Aa9tcrGoPEtyA.roa
Signing time: Sat 01 Jan 2022 01:53:39 +0000
ROA not before: Sat 01 Jan 2022 01:53:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204307
IP address blocks: 2001:678:638::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177201535 (0xa8fe17f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63dcb90a14742a52be5ca09cbed8dfc1cd3d1ef
Validity
Not Before: Jan 1 01:53:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418c45401f7ce8f2b7cf901af6d72b1a83c4b720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a9:a3:1b:f9:e7:84:4e:ad:03:a1:d9:c5:b1:
e2:ba:b8:3a:c0:02:9e:21:23:15:b0:ba:a5:02:2c:
d9:d2:07:a4:bc:70:21:fd:95:4a:e7:a7:35:49:db:
76:c4:56:3b:6c:42:53:1f:6e:7f:60:ef:eb:0c:f9:
da:73:7d:24:bd:d0:a4:d4:96:30:f7:70:30:02:12:
f6:57:37:3b:a3:88:77:e6:f9:7f:b6:a8:6c:a2:26:
47:56:61:0f:ff:38:a8:a2:df:5b:d8:e7:21:16:a5:
59:32:47:e8:6d:03:6b:21:82:59:44:bb:70:1e:fd:
a5:9b:e4:4d:23:04:f4:30:89:bf:db:f5:a2:b2:6a:
2d:27:55:70:b9:d7:3e:1e:42:b5:4c:54:77:6a:1b:
dd:64:ba:1c:64:d4:9c:1a:ac:40:98:7d:c3:67:bf:
84:17:42:9b:fb:1a:f7:97:ee:10:b4:2f:ef:29:e3:
ab:ac:ab:f9:2d:2c:4a:75:74:6d:e1:75:3c:db:f8:
4e:5a:ad:48:27:62:fe:a9:8a:d8:e5:82:e7:e6:61:
ef:90:82:a9:44:0f:c2:bb:73:6d:e5:0e:19:b7:da:
92:ba:91:9e:e6:db:51:8c:4a:57:17:34:35:a8:f4:
d0:af:6c:23:cc:5f:11:a0:46:b2:f7:c3:e4:97:00:
b3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8C:45:40:1F:7C:E8:F2:B7:CF:90:1A:F6:D7:2B:1A:83:C4:B7:20
X509v3 Authority Key Identifier:
keyid:A6:3D:CB:90:A1:47:42:A5:2B:E5:CA:09:CB:ED:8D:FC:1C:D3:D1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pj3LkKFHQqUr5coJy-2N_BzT0e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/2c8b70-66bc-4163-8f80-20f7d44ed126/1/QYxFQB986PK3z5Aa9tcrGoPEtyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/2c8b70-66bc-4163-8f80-20f7d44ed126/1/pj3LkKFHQqUr5coJy-2N_BzT0e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:638::/48
Signature Algorithm: sha256WithRSAEncryption
88:a5:ee:4e:b4:b6:4c:a5:aa:81:27:ba:1b:2c:ae:57:bc:38:
52:7a:bc:d9:80:08:0a:72:6f:2c:19:29:ad:99:4e:50:14:6c:
d1:b9:f3:c2:22:b2:6a:b1:6e:06:0b:82:a4:ff:ba:45:35:7e:
68:75:7c:69:0b:75:80:2e:3c:e4:1f:74:5a:97:b2:3a:e7:77:
2d:be:c3:fe:01:2c:83:c2:72:57:7f:ac:07:c1:ce:e8:a7:3f:
f9:7a:c3:57:59:71:6b:4a:d9:fb:c2:b6:b6:9b:2a:89:57:9c:
90:3a:79:07:f7:ae:bf:eb:66:95:90:1f:96:ac:70:c8:3f:9d:
20:a8:df:14:f9:0c:fa:44:45:22:69:66:9d:ac:d5:8a:a9:52:
0d:70:e4:22:19:b3:59:c9:46:4e:20:1d:67:62:22:2c:4c:eb:
ac:ae:4d:3f:19:41:7a:e7:e3:f7:5c:69:53:f1:c0:10:2c:0d:
3e:c6:6f:01:c6:bb:98:ec:ca:f8:f0:b8:2e:f2:68:bf:fd:c4:
4f:b9:e1:94:9c:4a:90:28:e8:c3:2d:dd:c4:04:4c:44:e3:bd:
d6:5c:49:79:f8:e5:f9:f3:82:c8:f1:45:5c:0c:41:11:d1:a5:
c7:2b:d8:d0:a5:9b:03:03:42:ee:5a:2c:29:e8:17:01:b2:07:
fa:3b:36:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:56 2024 by rpki-client on console-ams.rpki-client.org