Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/qXjWhvsnrOmcqvb7iFgN9o7bvsw.roa
File: qXjWhvsnrOmcqvb7iFgN9o7bvsw.roa (raw, json)
Hash identifier: ML3Oa5Ps4KrxzTf2xnP/s3TIIA1Htf4Rusj1yR3yv7o=
Subject key identifier: A9:78:D6:86:FB:27:AC:E9:9C:AA:F6:FB:88:58:0D:F6:8E:DB:BE:CC
Certificate issuer: /CN=742b1b5c075c3d3bdfa3525d476b1b2867c2a2ca
Certificate serial: 03C74D73
Authority key identifier: 74:2B:1B:5C:07:5C:3D:3B:DF:A3:52:5D:47:6B:1B:28:67:C2:A2:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/qXjWhvsnrOmcqvb7iFgN9o7bvsw.roa
Signing time: Sat 01 Jan 2022 06:53:53 +0000
ROA not before: Sat 01 Jan 2022 06:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a02:79a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63393139 (0x3c74d73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=742b1b5c075c3d3bdfa3525d476b1b2867c2a2ca
Validity
Not Before: Jan 1 06:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a978d686fb27ace99caaf6fb88580df68edbbecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e9:24:b1:fd:71:5f:ae:7f:f7:51:4f:d0:35:
3b:40:7d:4e:93:8d:66:b6:35:33:02:a4:39:48:51:
84:47:7f:e0:29:7d:ac:e1:27:6f:3b:d8:c7:6d:78:
cd:69:9a:49:3a:15:f3:c1:96:24:65:d6:16:ee:bf:
d4:53:e9:95:c5:c9:48:02:08:f5:f2:94:6b:01:58:
e0:56:9c:3a:34:6c:0b:fe:9c:8e:c9:35:30:27:63:
15:68:c0:9a:11:78:6b:a2:50:e5:8d:53:12:ee:d9:
c6:02:f4:2f:cb:9a:d4:c4:18:07:b6:c0:a5:a8:8d:
18:01:87:26:fb:6d:eb:eb:56:96:bb:c1:88:49:49:
cb:2f:67:28:11:bf:fa:10:d3:c9:19:c0:46:ff:d8:
99:c5:ee:f9:e0:18:b9:61:01:fb:40:ee:d7:fc:a7:
fc:98:fc:cf:1f:cd:f5:4a:ec:b2:36:9c:b5:91:ae:
77:1a:fd:a2:ec:b4:5f:a2:d7:36:5c:cf:01:a3:d8:
77:6c:a8:32:1d:e1:f4:d5:70:3f:a3:d4:16:82:d7:
9b:03:03:9e:a1:a9:ef:7c:1a:71:09:6b:cb:2d:81:
55:a9:38:40:48:2d:62:70:9e:8c:27:58:6c:10:74:
3a:de:f9:23:13:14:91:ad:12:f0:f3:f1:5c:70:2b:
e1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:78:D6:86:FB:27:AC:E9:9C:AA:F6:FB:88:58:0D:F6:8E:DB:BE:CC
X509v3 Authority Key Identifier:
keyid:74:2B:1B:5C:07:5C:3D:3B:DF:A3:52:5D:47:6B:1B:28:67:C2:A2:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/qXjWhvsnrOmcqvb7iFgN9o7bvsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/dCsbXAdcPTvfo1JdR2sbKGfCoso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:79a0::/32
Signature Algorithm: sha256WithRSAEncryption
1a:2f:18:66:ad:29:6d:e6:73:86:37:b9:3d:fe:27:65:1c:e3:
f4:dc:20:fa:cd:63:15:7c:c2:ff:39:9c:54:46:67:5a:4c:98:
e8:fc:ac:cd:b0:41:1e:43:24:33:13:d9:61:95:8f:65:83:2b:
c4:4b:3e:36:e7:7f:5a:3a:59:41:bd:8f:8b:2b:f1:8b:8d:af:
e3:e0:a4:1c:bd:c3:58:d1:65:58:cc:3d:01:e4:97:b4:e9:80:
63:4b:ff:8b:05:d1:4b:86:45:79:bd:92:53:d5:7f:b9:0e:26:
ca:5d:19:08:c1:68:f1:7a:42:27:b4:64:e9:b4:cb:e0:bc:ca:
b0:6f:b1:43:2e:c6:47:72:d6:36:88:6a:7a:11:b0:dc:ec:9e:
ce:c5:1c:dd:a3:c5:2d:fc:fb:2a:bc:96:96:3b:99:79:a5:c8:
b4:5e:82:e5:c7:a7:80:1b:f9:1b:f7:48:34:a0:c7:07:3b:e8:
fd:92:0b:43:95:18:ef:4e:eb:b7:de:27:a5:9b:21:1e:f7:c6:
c5:67:6a:7a:0f:70:51:29:b9:f9:81:fb:90:cf:99:7f:b2:51:
f3:5d:c9:4e:b7:76:44:f4:98:00:72:81:08:98:53:b1:91:f9:
b2:92:a8:d0:64:74:b6:e4:5d:28:a9:a8:0c:32:79:ec:fc:ef:
81:67:8e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:34 2024 by rpki-client on console-ams.rpki-client.org