Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/CQdcQx9sKaydBs9a7J5M1eZLKqg.roa
File: CQdcQx9sKaydBs9a7J5M1eZLKqg.roa (raw, json)
Hash identifier: gwx8xIXsPMIAi+k0fON3XoQmfEOXbwzZpY/fqnghlKc=
Subject key identifier: 09:07:5C:43:1F:6C:29:AC:9D:06:CF:5A:EC:9E:4C:D5:E6:4B:2A:A8
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0800EF70
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/CQdcQx9sKaydBs9a7J5M1eZLKqg.roa
Signing time: Sat 01 Jan 2022 06:55:44 +0000
ROA not before: Sat 01 Jan 2022 06:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48126
IP address blocks: 2a0f:5707:aa40::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134279024 (0x800ef70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09075c431f6c29ac9d06cf5aec9e4cd5e64b2aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d0:a7:22:62:ec:81:af:f4:14:67:0a:51:c9:
d5:ec:d6:c0:d0:af:65:1a:7d:c1:1d:5d:01:9e:8b:
91:a1:7e:83:8a:e9:d9:6e:2d:15:09:74:33:5a:83:
59:28:67:00:9b:01:ae:94:cc:eb:4c:74:39:b1:de:
ad:bb:d3:e5:11:c3:30:ea:99:c4:df:be:af:f3:c2:
92:df:98:6d:07:c7:a2:81:96:5a:9d:01:7d:9e:41:
68:2d:df:b9:c5:eb:45:0c:81:80:31:47:29:99:b6:
f5:ce:08:1f:81:a5:05:5f:9f:3d:d0:3d:10:eb:7a:
df:f8:04:9c:c8:fa:b5:8a:ee:50:4b:43:99:4f:61:
13:47:85:05:c9:44:99:2c:5c:19:1b:74:ce:e9:f5:
30:31:e2:cb:bc:37:15:1b:05:ad:ca:e8:ab:bc:c7:
13:1d:6d:b4:69:a1:9c:74:f0:d2:4e:a1:64:53:f7:
41:15:eb:10:07:7c:6b:a6:ec:0d:80:06:81:ee:f3:
48:22:ad:7d:4c:6e:ac:b2:e7:44:d6:23:55:99:2f:
5b:d6:1d:1a:99:99:56:ac:96:f9:f7:a2:7b:5f:67:
c5:24:64:d4:b0:09:92:9a:fb:0a:eb:3f:54:fe:24:
18:36:3d:ef:e0:e3:b8:be:90:a6:2e:59:13:ee:11:
2a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:07:5C:43:1F:6C:29:AC:9D:06:CF:5A:EC:9E:4C:D5:E6:4B:2A:A8
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/CQdcQx9sKaydBs9a7J5M1eZLKqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa40::/44
Signature Algorithm: sha256WithRSAEncryption
5c:02:1e:6b:6d:07:29:30:23:9c:0d:13:34:12:06:10:ae:e2:
05:ec:58:88:da:22:e9:b3:80:14:e1:cc:a4:b3:87:f8:27:bd:
54:d1:8d:b4:09:eb:1f:5a:8f:93:37:25:50:f5:f3:7d:18:16:
0e:f3:08:a3:8b:78:e5:84:1c:00:0c:38:dd:bd:39:65:a9:7e:
76:f3:b8:a7:67:0a:d0:9e:4f:97:50:e3:31:64:40:bf:4b:d4:
97:5d:4b:b4:65:5f:10:5c:19:90:2d:4c:9c:64:a9:40:7f:de:
29:72:40:61:ae:c6:8e:09:2a:8b:e6:09:a3:2f:09:f9:57:8e:
e1:e3:8f:ed:6d:3d:c3:be:d8:43:09:78:01:04:f6:e6:84:88:
b3:b6:fe:90:9e:73:da:09:81:de:d9:e8:f0:90:dd:ac:04:5d:
d6:03:ef:29:fa:7d:1b:ac:c3:0e:33:ba:be:e3:e2:1a:c4:d7:
92:ed:fd:55:9b:ec:3d:19:4d:a2:e2:54:d0:dd:42:3a:57:ce:
f9:83:8a:02:e7:6b:5b:aa:4b:a3:a0:ec:ae:de:20:b4:06:15:
29:bc:9e:22:9a:94:cc:cc:16:28:91:50:54:a1:f4:dd:56:2b:
36:5c:12:1b:d2:5b:a3:84:41:1a:00:a9:aa:2a:79:7c:d9:83:
5f:6d:c5:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org