Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/ac826a-09b0-4c59-9dae-ce9a7421fa69/1/Q3sfyqLDfhCt6s1xHjcOa8s8-B0.roa
File: Q3sfyqLDfhCt6s1xHjcOa8s8-B0.roa (raw, json)
Hash identifier: biBQHYoPZze7DKeuRqiXvZ5l3tmzgiAOUU4U/WJimVU=
Subject key identifier: 43:7B:1F:CA:A2:C3:7E:10:AD:EA:CD:71:1E:37:0E:6B:CB:3C:F8:1D
Certificate issuer: /CN=11029b8704c32bafec2b3c829fcf586aa1b3d9c1
Certificate serial: 03A9B968
Authority key identifier: 11:02:9B:87:04:C3:2B:AF:EC:2B:3C:82:9F:CF:58:6A:A1:B3:D9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EQKbhwTDK6_sKzyCn89YaqGz2cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/ac826a-09b0-4c59-9dae-ce9a7421fa69/1/Q3sfyqLDfhCt6s1xHjcOa8s8-B0.roa
Signing time: Sat 01 Jan 2022 02:54:45 +0000
ROA not before: Sat 01 Jan 2022 02:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 2001:67c:798::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61454696 (0x3a9b968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11029b8704c32bafec2b3c829fcf586aa1b3d9c1
Validity
Not Before: Jan 1 02:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=437b1fcaa2c37e10adeacd711e370e6bcb3cf81d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:83:01:69:ce:d5:fb:9b:f4:5c:93:54:33:4f:
c1:b6:8d:cc:59:0b:e0:0a:b0:b1:ed:80:bc:83:d1:
54:ec:0a:57:9b:2e:a0:54:fd:6c:36:12:7e:63:13:
28:56:fb:7e:2a:f1:2e:89:2a:6d:f3:36:a9:fd:85:
f5:58:5f:f2:7a:ce:70:6e:23:71:eb:c0:13:cc:c8:
aa:bb:44:49:c9:de:70:90:e0:f1:f5:fb:73:86:e9:
97:de:46:0c:66:53:dd:d6:57:ef:9e:12:23:e3:e9:
05:5d:24:8d:cc:62:1a:1b:67:36:10:79:12:7b:7a:
5d:c8:52:c4:52:c1:57:62:7f:e2:c8:2f:14:be:38:
5c:a5:a7:17:3d:38:f0:2f:28:9b:62:de:78:34:8d:
70:9b:ad:61:b0:35:d5:8c:66:fa:ee:92:7e:e1:5a:
d9:2a:73:7e:fa:88:cb:66:5d:e3:9b:02:59:3f:b9:
3a:7b:d1:25:ba:7f:3c:35:95:d5:9f:70:38:de:7f:
05:85:9d:c0:2a:56:ef:e6:fd:ba:76:a3:8e:0b:91:
28:c7:5c:e5:80:2b:3f:af:95:45:4b:90:e3:a1:b8:
0b:1b:20:d4:70:a7:13:b6:c6:d4:c9:39:d2:23:72:
d8:41:36:cc:09:c1:4e:bd:c6:11:da:68:3d:2d:86:
04:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7B:1F:CA:A2:C3:7E:10:AD:EA:CD:71:1E:37:0E:6B:CB:3C:F8:1D
X509v3 Authority Key Identifier:
keyid:11:02:9B:87:04:C3:2B:AF:EC:2B:3C:82:9F:CF:58:6A:A1:B3:D9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EQKbhwTDK6_sKzyCn89YaqGz2cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/ac826a-09b0-4c59-9dae-ce9a7421fa69/1/Q3sfyqLDfhCt6s1xHjcOa8s8-B0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/ac826a-09b0-4c59-9dae-ce9a7421fa69/1/EQKbhwTDK6_sKzyCn89YaqGz2cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:798::/48
Signature Algorithm: sha256WithRSAEncryption
a0:c8:7a:d0:c0:44:da:57:fa:04:15:3a:22:36:66:50:73:5b:
f3:72:4c:c4:69:21:b8:ba:d6:87:d6:6c:27:88:fe:ee:af:b6:
69:99:45:85:23:3c:23:69:5d:48:bc:8e:05:a7:a5:18:58:4d:
f4:1d:98:a5:24:f3:aa:72:44:4d:4f:f5:ac:0d:33:d8:ff:7f:
55:43:02:41:99:36:53:a8:05:04:6a:35:6a:04:6e:53:6e:32:
aa:80:4f:54:e5:e2:4b:36:ec:fa:b0:52:a5:51:76:52:90:2d:
3a:07:0b:4d:d4:8b:3f:70:d0:17:1c:0c:f7:0f:1c:b6:f3:a7:
de:7d:c1:c3:92:9c:48:f1:5c:73:c2:40:81:66:0a:e2:c4:62:
c1:33:06:63:f8:6a:18:31:43:df:c0:db:79:f3:cb:be:aa:db:
1b:2c:33:4e:7f:72:90:ea:9a:a9:7a:34:2b:e4:e6:81:c2:99:
86:8e:35:59:61:70:7d:1c:83:d5:87:5d:46:e2:95:92:3a:7a:
71:71:f5:60:da:55:78:b8:60:44:d6:7f:ef:2e:5c:62:1c:53:
d1:01:60:b8:db:8d:2b:f1:2d:14:0a:3e:3c:4b:86:bb:b4:ad:
89:c9:4d:95:6f:b2:58:22:47:2e:e5:8e:1f:0a:40:0b:a9:f5:
aa:3c:af:7b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEA6m5aDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MTAyOWI4NzA0YzMyYmFmZWMyYjNjODI5ZmNmNTg2YWExYjNkOWMxMB4XDTIyMDEw
MTAyNTQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDM3YjFmY2FhMmMz
N2UxMGFkZWFjZDcxMWUzNzBlNmJjYjNjZjgxZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOODAWnO1fub9FyTVDNPwbaNzFkL4Aqwse2AvIPRVOwKV5su
oFT9bDYSfmMTKFb7firxLokqbfM2qf2F9Vhf8nrOcG4jcevAE8zIqrtEScnecJDg
8fX7c4bpl95GDGZT3dZX754SI+PpBV0kjcxiGhtnNhB5Ent6XchSxFLBV2J/4sgv
FL44XKWnFz048C8om2LeeDSNcJutYbA11Yxm+u6SfuFa2SpzfvqIy2Zd45sCWT+5
OnvRJbp/PDWV1Z9wON5/BYWdwCpW7+b9unajjguRKMdc5YArP6+VRUuQ46G4Cxsg
1HCnE7bG1Mk50iNy2EE2zAnBTr3GEdpoPS2GBO8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRDex/KosN+EK3qzXEeNw5ryzz4HTAfBgNVHSMEGDAWgBQRApuHBMMrr+wr
PIKfz1hqobPZwTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VRS2Jod1RESzZfc0t6eUNuODlZYXFHejJjRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTYvYWM4MjZhLTA5YjAtNGM1OS05ZGFlLWNlOWE3NDIxZmE2OS8x
L1Ezc2Z5cUxEZmhDdDZzMXhIamNPYThzOC1CMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYv
YWM4MjZhLTA5YjAtNGM1OS05ZGFlLWNlOWE3NDIxZmE2OS8xL0VRS2Jod1RESzZf
c0t6eUNuODlZYXFHejJjRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwHmDANBgkqhkiG9w0BAQsF
AAOCAQEAoMh60MBE2lf6BBU6IjZmUHNb83JMxGkhuLrWh9ZsJ4j+7q+2aZlFhSM8
I2ldSLyOBaelGFhN9B2YpSTzqnJETU/1rA0z2P9/VUMCQZk2U6gFBGo1agRuU24y
qoBPVOXiSzbs+rBSpVF2UpAtOgcLTdSLP3DQFxwM9w8ctvOn3n3Bw5KcSPFcc8JA
gWYK4sRiwTMGY/hqGDFD38DbefPLvqrbGywzTn9ykOqaqXo0K+TmgcKZho41WWFw
fRyD1YddRuKVkjp6cXH1YNpVeLhgRNZ/7y5cYhxT0QFguNuNK/EtFAo+PEuGu7St
iclNlW+yWCJHLuWOHwpAC6n1qjyvew==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:42 2023 by rpki-client on console-fra.rpki-client.org