Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/qGtQvfoXFL-Fg69v9iQqcVhoQ84.roa
File: qGtQvfoXFL-Fg69v9iQqcVhoQ84.roa (raw, json)
Hash identifier: eAy6GOwaRAmVxXXNQT6U+fzlduqQ879En+llfe4hjaU=
Subject key identifier: A8:6B:50:BD:FA:17:14:BF:85:83:AF:6F:F6:24:2A:71:58:68:43:CE
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 07454880
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/qGtQvfoXFL-Fg69v9iQqcVhoQ84.roa
Signing time: Sat 01 Jan 2022 14:00:20 +0000
ROA not before: Sat 01 Jan 2022 14:00:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207616
IP address blocks: 2a0f:ca83::/40 maxlen: 48
2a0f:ca85::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121981056 (0x7454880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 1 14:00:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a86b50bdfa1714bf8583af6ff6242a71586843ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cb:b5:e5:c3:8b:d9:19:fb:b1:39:73:e8:b9:
db:89:76:c1:c4:c7:76:52:2a:5c:e5:a9:b1:6e:b0:
bd:66:ba:8c:01:cc:00:74:c9:0a:f6:60:1e:4f:09:
28:e4:3b:6e:de:e9:0d:97:c5:2b:f2:d4:78:3a:14:
d5:92:b1:11:d5:9b:12:38:67:fc:10:87:d4:b5:7f:
bd:70:1b:0e:48:d1:4d:2f:44:7b:97:79:83:ee:ac:
a1:3a:b9:47:f0:53:9a:e5:14:d1:48:8b:ef:b9:a1:
fe:9b:bc:c5:4f:e9:bd:c0:18:33:c3:03:e6:94:c1:
2e:c5:15:87:89:2f:88:85:e0:2e:b7:4c:7c:0f:69:
56:2e:5e:62:a4:73:5a:1b:22:9b:22:d9:79:17:39:
ce:af:9b:7d:ae:75:e2:87:fd:1a:8a:02:28:38:2c:
45:37:62:61:f6:e2:1c:a0:02:c7:c2:6a:d8:e0:61:
9b:19:1f:79:d4:7a:e4:d6:39:f0:1f:35:86:b6:b5:
ed:a0:49:da:21:05:5f:8f:db:97:e4:6b:0d:7d:ff:
75:4d:bb:f4:24:65:7a:13:95:37:ce:24:2b:55:cc:
6c:53:72:7b:4a:7b:19:6a:69:29:ae:4e:4c:ba:cf:
8a:2d:c8:ce:e1:e9:da:1d:60:f9:0b:8c:02:6e:98:
a3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6B:50:BD:FA:17:14:BF:85:83:AF:6F:F6:24:2A:71:58:68:43:CE
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/qGtQvfoXFL-Fg69v9iQqcVhoQ84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ca83::/40
2a0f:ca85::/48
Signature Algorithm: sha256WithRSAEncryption
2a:c6:de:10:59:4e:12:50:73:59:7d:c4:bf:17:0f:de:1f:55:
11:60:7c:59:21:17:b5:db:fb:2c:d5:1b:63:42:00:d0:e7:df:
4c:b0:c5:be:09:b7:d5:88:f2:86:48:9e:0c:ec:f3:63:67:61:
f7:79:d0:ee:84:35:8e:61:98:e5:cb:83:e6:c6:83:f2:23:6a:
f4:6e:1e:13:53:22:b6:7d:9f:89:eb:68:68:20:53:7b:2b:7a:
83:a7:43:48:22:0b:88:b9:e7:36:91:60:34:49:8a:50:a9:3c:
c9:03:26:92:f5:98:0e:6d:eb:24:32:c3:c4:97:d6:07:c6:2c:
b1:07:c3:b2:6d:eb:4f:23:5e:c2:d4:56:d1:cf:1b:b1:38:51:
99:3e:6c:83:0f:49:3b:a9:70:30:27:14:a1:31:30:d4:96:c8:
f6:68:32:14:8c:79:12:c1:f5:1b:59:9a:f0:6a:86:1c:b6:87:
8a:73:2d:de:23:81:7e:63:0c:a1:96:ae:ec:25:51:47:f1:e7:
d5:c9:db:cc:a0:76:b2:d8:32:cd:81:62:f4:40:02:ed:64:f8:
e6:ab:24:21:c5:4c:22:14:2d:91:43:83:b3:50:44:a8:d4:a4:
31:a0:88:94:84:bd:49:fe:45:24:58:45:f5:8c:f0:88:d5:bf:
1a:66:39:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:55 2024 by rpki-client on console-fra.rpki-client.org