Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qHyBzjiF200XeLx5AGzVetQmznQ.roa
File: qHyBzjiF200XeLx5AGzVetQmznQ.roa (raw, json)
Hash identifier: Fmy4in/hg5XhojWU1uMDOHRVXl7kbTf0r0rK408QlT4=
Subject key identifier: A8:7C:81:CE:38:85:DB:4D:17:78:BC:79:00:6C:D5:7A:D4:26:CE:74
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0815EE4F
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qHyBzjiF200XeLx5AGzVetQmznQ.roa
Signing time: Sat 01 Jan 2022 06:55:55 +0000
ROA not before: Sat 01 Jan 2022 06:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211301
IP address blocks: 2a0f:5707:aa60::/44 maxlen: 48
2a0f:5707:aaf0::/44 maxlen: 48
2a0f:5707:25::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135654991 (0x815ee4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a87c81ce3885db4d1778bc79006cd57ad426ce74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8e:29:97:3e:af:1e:ff:25:d8:2d:67:02:d9:
0e:bd:a7:8d:e5:d7:3e:1a:af:e5:74:c2:57:cc:b3:
b4:76:8c:0f:8f:f2:f6:12:96:f0:3f:b0:8b:c2:a9:
e0:b8:a9:ba:14:4e:38:87:c3:e9:00:51:05:9a:5c:
45:84:0c:85:a9:a8:50:28:e2:d4:01:f1:1b:ab:5b:
4c:15:1e:57:30:94:56:20:bb:4d:3d:1c:7c:48:54:
c9:8f:da:4f:04:91:07:ee:5d:b5:a1:35:9b:bd:ef:
21:52:89:0f:eb:02:58:69:79:fe:8a:e4:0c:98:6b:
a4:7e:98:19:f1:44:cd:12:24:fe:71:b7:92:9a:18:
aa:67:82:c9:09:52:b5:a0:b7:fb:fe:9c:f6:ae:9e:
5f:32:5f:fb:93:e5:8e:e1:62:58:cb:1f:07:5d:25:
58:08:37:4b:26:f3:7e:6c:ab:fe:18:18:d5:3b:f4:
e2:f6:09:df:0e:a4:d1:80:e0:49:17:89:30:2b:e6:
75:c7:b7:fc:fe:f1:8c:74:04:01:12:bb:80:54:ec:
7e:71:ea:10:aa:d1:0a:c9:3b:49:de:9c:14:4c:7f:
b9:c9:90:5a:49:d0:1d:9f:ae:76:88:c8:ea:dd:a2:
65:d1:67:36:a3:72:a6:ec:9c:44:9a:da:d1:b6:f9:
a6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:7C:81:CE:38:85:DB:4D:17:78:BC:79:00:6C:D5:7A:D4:26:CE:74
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/qHyBzjiF200XeLx5AGzVetQmznQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:25::/48
2a0f:5707:aa60::/44
2a0f:5707:aaf0::/44
Signature Algorithm: sha256WithRSAEncryption
94:00:13:b9:d7:25:9c:8f:08:4f:1e:60:49:9d:df:1b:07:33:
72:2b:9b:34:c4:2d:d3:bb:d4:ec:b4:1d:95:6b:16:13:5d:4c:
da:66:b4:7a:fc:e3:5a:ed:af:8c:82:2a:b4:49:55:11:a7:c4:
eb:0f:c4:2d:a8:44:93:3b:c5:5e:56:49:d4:52:41:0c:d5:76:
aa:a3:9c:76:16:43:84:95:34:17:2a:c8:7a:19:a4:93:93:36:
a6:d8:9b:45:bd:c9:ff:9a:91:e5:87:83:00:51:9b:dd:ca:c2:
2f:5f:3f:8f:2e:49:15:1c:73:c6:b1:d1:7b:8f:d9:61:1f:d6:
f2:6a:0d:4d:70:ee:3a:ec:04:a2:99:cb:0c:1a:cd:7b:41:bb:
39:b8:2c:30:f2:0d:ef:ab:f8:74:d2:a6:e1:3a:f5:c7:d2:12:
58:36:30:10:fc:d0:1f:27:41:29:23:36:d6:a6:fb:3e:10:ab:
17:f9:1d:90:41:70:6d:9e:0e:b4:46:15:c3:b7:8c:85:c2:8f:
59:1f:2d:5d:e0:bd:bc:9a:94:b6:ff:38:00:94:78:7e:d6:1a:
dc:c9:d1:01:87:e2:05:47:60:a2:13:0b:a7:42:53:44:82:ba:
3f:c9:e0:41:00:e5:e0:47:e2:24:23:08:22:34:e0:9e:26:0f:
25:a0:8e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org