Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/_Qw_Ko6qou_86ZEWRIicmfHOGCg.roa
File: _Qw_Ko6qou_86ZEWRIicmfHOGCg.roa (raw, json)
Hash identifier: P7AABm/qnyCXsHPL1JDzyEGujNXmgMAvDMFdnoYq8gM=
Subject key identifier: FD:0C:3F:2A:8E:AA:A2:EF:FC:E9:91:16:44:88:9C:99:F1:CE:18:28
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 21215F3C
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/_Qw_Ko6qou_86ZEWRIicmfHOGCg.roa
Signing time: Sat 01 Jan 2022 13:00:32 +0000
ROA not before: Sat 01 Jan 2022 13:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13127
IP address blocks: 2a07:3501:1081::/48 maxlen: 48
2a07:3501:1080::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 555835196 (0x21215f3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 1 13:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd0c3f2a8eaaa2effce9911644889c99f1ce1828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6d:36:4f:38:b0:19:89:a8:95:c9:39:b5:bb:
c1:be:2b:94:20:37:ae:94:78:d0:de:2f:fc:1b:55:
e5:b7:f0:97:fb:87:74:2d:25:f2:ad:67:c7:ed:5f:
3d:d8:5b:4e:3b:aa:6c:2f:e7:7f:72:e0:e4:28:b7:
11:32:a7:a6:77:1d:5e:08:48:ee:71:64:6a:5d:a3:
15:01:ef:7a:a7:5f:75:bd:e9:08:d2:7f:4a:8b:0f:
54:21:b0:b3:bd:11:9a:6c:7a:95:d1:a8:cc:fc:df:
f9:55:e3:9e:61:45:17:b3:60:ef:0b:f9:47:4c:01:
68:04:c4:5e:a3:91:44:17:d1:d1:fc:2a:05:9d:1a:
e4:20:8c:51:d3:6c:82:6a:48:c4:11:f1:62:ca:f0:
89:7d:df:72:fd:89:b6:30:67:1e:46:d6:0b:91:f0:
97:34:c6:0a:8b:f6:2d:cc:c9:ca:bd:41:b4:1b:44:
68:1f:5d:6f:90:fc:f8:d4:29:62:64:07:0e:00:21:
c6:28:3e:1d:ce:4f:5b:d1:91:a4:74:39:2e:66:fb:
b1:ec:f8:da:93:d1:a2:0c:95:9f:65:7f:41:dc:ef:
e4:16:86:1c:c2:f9:0d:37:22:b2:af:c2:23:8f:21:
99:05:d9:7e:65:51:5f:71:d0:f8:d6:7d:62:8e:77:
34:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:0C:3F:2A:8E:AA:A2:EF:FC:E9:91:16:44:88:9C:99:F1:CE:18:28
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/_Qw_Ko6qou_86ZEWRIicmfHOGCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3501:1080::/47
Signature Algorithm: sha256WithRSAEncryption
4f:34:fc:3c:b8:07:93:54:15:18:ee:5b:39:c0:58:e4:db:8e:
98:7f:f3:28:e6:c1:81:c7:4e:ce:4a:57:a4:0d:61:cd:2f:82:
1c:7a:d9:9f:30:6e:e4:89:9d:cc:d7:8b:f7:1a:24:d1:dd:d6:
d3:1b:f7:ea:e5:b9:df:50:73:28:1d:6b:89:1d:0e:ea:ea:c6:
5e:1c:ba:0f:a2:22:4a:3a:b6:50:b8:0d:de:1f:bd:17:f1:0c:
de:f3:d1:14:89:98:b6:83:70:18:26:92:10:7c:8d:16:99:17:
f6:7e:a7:c9:58:b4:f8:b9:10:9d:eb:7a:bd:7f:be:21:b1:7e:
c0:f0:d3:42:28:2e:43:f0:b3:10:39:db:39:8b:b3:fa:f7:c9:
f0:3e:e9:d9:1c:03:6e:d0:28:69:84:57:6b:c5:db:92:c6:b2:
58:16:71:45:06:55:76:45:13:48:2a:a5:cb:fc:40:0c:5c:4c:
a5:16:68:b5:50:9c:4a:93:47:37:c9:21:c2:c3:ce:4b:d2:c9:
a6:38:cc:cf:9d:44:01:20:3f:1e:79:e6:de:76:85:70:f2:71:
40:0f:88:c1:2f:54:ab:26:48:8d:f8:ca:34:43:b0:5d:fd:33:
27:5a:5f:62:49:5e:5d:1e:8f:df:07:de:53:b7:31:66:c1:d5:
1a:16:e8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:49 2024 by rpki-client on console-ams.rpki-client.org