Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/1QWMALN1VuauYKouJrT90QptrJc.roa
File: 1QWMALN1VuauYKouJrT90QptrJc.roa (raw, json)
Hash identifier: X8lDC8Ns6FkHjj1pe2vvRBoKG49ocqbD1yXpLZ51Jd8=
Subject key identifier: D5:05:8C:00:B3:75:56:E6:AE:60:AA:2E:26:B4:FD:D1:0A:6D:AC:97
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 18298104
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/1QWMALN1VuauYKouJrT90QptrJc.roa
Signing time: Sat 01 Jan 2022 04:52:42 +0000
ROA not before: Sat 01 Jan 2022 04:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39840
IP address blocks: 2001:67c:2554::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405373188 (0x18298104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 04:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5058c00b37556e6ae60aa2e26b4fdd10a6dac97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:8c:ad:6c:de:8b:e0:34:b7:62:16:e1:3b:
cf:ec:54:06:e5:63:80:6d:41:ef:50:52:04:a9:3f:
6f:5a:5a:f7:33:29:44:9a:5c:3d:d2:13:52:32:f2:
30:b0:b5:1d:cb:ce:90:c9:79:89:d2:41:d8:89:bb:
07:00:25:cf:1e:86:26:55:45:83:03:f9:2b:7b:83:
6d:97:bb:dd:5d:82:3f:47:86:a1:56:93:f5:8b:8a:
40:88:a4:f6:55:b2:9b:9b:84:61:d7:da:07:ec:8d:
5a:16:df:72:97:30:be:dd:cc:3b:99:3f:f6:67:ca:
39:c7:fe:84:b6:a6:de:95:74:e2:60:a4:fa:04:c9:
f5:a3:8e:2e:9f:16:d3:92:f4:a7:e5:54:3b:bd:28:
b4:43:d2:99:06:6d:e7:4d:1f:96:26:a1:7f:cd:39:
ad:63:dd:22:cd:54:44:15:ef:bd:6f:1f:d9:3f:6c:
2d:ae:52:13:df:22:8b:cb:59:ca:f9:a0:94:40:9c:
db:90:cf:b7:37:35:7a:3c:43:4a:9c:35:8a:72:f6:
2c:93:0c:7c:f4:10:d3:dc:6c:3a:63:ad:1f:0e:5f:
08:e0:c9:dc:25:1b:a8:8f:cf:af:99:aa:fe:68:a0:
d0:a7:9e:24:d6:dd:83:da:55:09:22:f1:28:94:a2:
1b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:05:8C:00:B3:75:56:E6:AE:60:AA:2E:26:B4:FD:D1:0A:6D:AC:97
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/1QWMALN1VuauYKouJrT90QptrJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2554::/48
Signature Algorithm: sha256WithRSAEncryption
af:e9:fa:7d:91:ac:87:85:19:49:22:57:3d:db:21:b9:7a:16:
64:53:92:1e:3d:d5:5e:ad:16:de:b2:21:1e:cd:81:a4:97:d5:
05:3f:06:e2:0e:ac:e2:91:ff:c0:4d:b4:7e:cf:a8:cc:cd:3f:
36:0e:04:0b:69:1b:ff:cb:32:d1:5d:2b:73:5a:3d:9c:d5:5d:
7b:b5:f9:a2:6f:0d:d5:5b:e1:aa:ab:9c:80:ea:fa:c1:17:1c:
70:8d:a8:79:29:9a:5c:b8:b2:5e:77:76:b3:cd:0f:d5:c6:d8:
69:a0:3d:81:97:64:60:b1:66:63:6c:c6:c9:8e:80:1b:36:bb:
cb:20:c2:71:10:c8:86:29:ba:13:f0:dd:95:82:35:63:fd:8f:
f9:17:bb:be:33:3f:01:5c:c3:89:5d:d5:02:0c:f4:a3:a9:b0:
75:d9:7b:fa:99:90:d0:34:cc:a8:bc:4d:76:bd:05:a0:0f:59:
f5:07:d1:6c:fc:29:78:68:8d:1e:11:d5:5f:c4:73:a8:7b:38:
4c:f8:7a:60:ba:95:e5:11:77:c3:12:14:b9:98:1b:db:6b:de:
68:13:f5:b9:bc:b8:f7:b7:4a:41:a7:a6:3a:ea:75:ac:5d:9f:
0c:82:1c:bb:1f:c5:0b:7c:34:29:62:51:e7:40:49:7e:48:90:
6d:75:71:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:34 2024 by rpki-client on console-fra.rpki-client.org