Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qSUcMIf0EtX5fP93e40mZeGWGKc.roa
File: qSUcMIf0EtX5fP93e40mZeGWGKc.roa (raw, json)
Hash identifier: ZCpl7RxcBHV87c2+fw1Ms12v9bDtCB26tDz09K66AUg=
Subject key identifier: A9:25:1C:30:87:F4:12:D5:F9:7C:FF:77:7B:8D:26:65:E1:96:18:A7
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 033A5AE5
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qSUcMIf0EtX5fP93e40mZeGWGKc.roa
Signing time: Sat 01 Jan 2022 16:04:32 +0000
ROA not before: Sat 01 Jan 2022 16:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205125
IP address blocks: 2a0d:8340::/32 maxlen: 32
2a03:e2c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54156005 (0x33a5ae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9251c3087f412d5f97cff777b8d2665e19618a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:47:e6:7f:ef:66:e1:3d:9c:c4:69:79:c3:
1c:75:52:31:1f:35:b2:82:c8:e6:5a:fa:0a:f2:de:
1b:6f:6d:d7:bc:07:52:04:b4:ae:51:06:e3:25:81:
4c:ef:73:12:1f:3c:db:c6:24:cf:f2:74:b1:12:94:
7f:de:58:07:5e:e0:42:3b:79:5f:1b:7e:ea:5d:ce:
08:0c:13:d2:6e:21:f6:f0:2e:8f:5f:c3:24:d2:07:
76:97:28:d5:89:36:d5:71:f7:73:af:bc:a3:b0:0a:
a1:e6:90:6f:b7:c0:71:42:a5:36:54:c6:44:c9:f8:
f4:c6:14:46:35:10:cc:05:6d:15:54:90:f1:e7:6a:
66:85:4c:00:9b:9c:ea:8e:85:a2:a3:af:d1:34:80:
d0:89:f8:c7:6e:31:93:a3:75:cc:dc:3c:c7:2f:f2:
05:90:5c:c4:78:99:b6:d9:bf:72:bb:a0:52:46:8e:
da:b3:6b:c4:95:76:18:89:60:69:6c:88:39:44:35:
db:21:6c:20:27:ac:5d:6d:ae:49:06:c6:4f:c6:92:
23:05:c3:e8:57:8f:e6:68:56:e3:22:33:d2:54:b8:
1e:63:f5:a3:ee:60:29:aa:e7:69:19:b6:62:8a:e7:
4a:2f:f7:34:6e:5e:81:1e:a4:e3:5c:18:63:af:55:
94:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:25:1C:30:87:F4:12:D5:F9:7C:FF:77:7B:8D:26:65:E1:96:18:A7
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qSUcMIf0EtX5fP93e40mZeGWGKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:e2c0::/32
2a0d:8340::/32
Signature Algorithm: sha256WithRSAEncryption
5c:ab:cf:17:1b:ad:00:f0:cc:fe:a1:b6:74:75:c8:70:2c:07:
0e:a2:5e:6a:6b:a3:89:51:46:92:66:d7:71:9f:69:1d:bc:d5:
cd:af:4b:1c:ac:8e:d7:57:b5:4e:9a:03:7e:9d:bc:5e:02:5d:
17:17:98:09:1d:7b:6a:e8:bf:13:3d:f2:bd:3e:ae:dd:05:52:
b1:e8:bb:65:df:6f:2e:f9:fa:6a:b0:ff:f7:ad:66:5a:4a:1f:
09:bb:5a:70:e0:81:17:fd:7d:75:e1:4e:62:ed:59:ab:ce:03:
75:f1:5c:2d:e0:f9:e6:d7:31:cc:e8:1d:77:04:30:97:3f:61:
6b:12:30:4f:aa:8d:69:c9:63:22:47:90:54:e5:71:4e:ae:b6:
cd:2d:c9:95:57:c2:a2:9f:77:60:5e:7e:0c:17:87:27:44:fc:
d3:4d:ee:ad:54:f4:43:4a:69:26:e9:bd:54:ec:ae:18:eb:14:
4f:fd:08:41:a1:73:e2:8d:98:3d:72:e5:3f:8f:2f:c2:91:ad:
d8:3f:20:ce:a3:1e:c2:25:27:3f:5a:9a:2d:d9:2c:66:d5:7d:
c7:fd:a4:27:0d:bd:2d:b9:b3:11:b1:f8:d2:ce:c5:e5:09:8c:
23:4b:24:6a:a1:a7:28:ea:b9:d7:2b:f4:f6:ed:fe:cc:f7:55:
5d:7d:83:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org