Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/QyaUO4y7Er0jyzQywqJawthYZ28.roa
File: QyaUO4y7Er0jyzQywqJawthYZ28.roa (raw, json)
Hash identifier: zSSBkujhLx2yQaDQG4ukr142SIqR41jX+64TF3z71Vk=
Subject key identifier: 43:26:94:3B:8C:BB:12:BD:23:CB:34:32:C2:A2:5A:C2:D8:58:67:6F
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 07887B39
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/QyaUO4y7Er0jyzQywqJawthYZ28.roa
Signing time: Sat 01 Jan 2022 05:52:19 +0000
ROA not before: Sat 01 Jan 2022 05:52:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38308
IP address blocks: 2a0f:607:105a::/47 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126384953 (0x7887b39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:52:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4326943b8cbb12bd23cb3432c2a25ac2d858676f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2b:ba:e0:ab:f3:6c:57:73:53:b2:41:1c:25:
1d:10:5e:bd:a7:ed:41:9a:0f:39:59:29:3c:41:61:
ad:c7:5d:9b:f6:12:db:01:07:de:0e:35:35:94:5b:
f1:4e:5c:4a:c9:09:19:23:d2:b6:b0:26:f5:9b:a4:
0b:8e:e3:c0:bd:3a:00:5b:d7:fd:4c:05:5c:78:23:
5b:56:b7:ce:d5:d0:e4:07:ea:9c:65:17:ed:6a:49:
f9:5e:ca:fd:68:dc:a4:58:01:36:01:00:b9:c7:65:
c1:e6:2b:e8:41:94:3b:a4:b9:42:41:ef:5b:e7:15:
dd:39:16:26:e1:9e:37:7d:75:35:6b:e0:08:70:e7:
c8:c2:65:3d:7d:e4:86:e3:be:aa:63:46:a6:d2:9a:
a5:80:53:83:45:3f:74:bf:51:d5:c1:1e:63:2d:ae:
1f:9a:06:18:93:57:25:63:da:7c:d5:24:16:fd:af:
6f:2a:a0:82:7f:02:73:71:b9:15:42:ae:41:d3:94:
71:34:12:65:e0:4e:0c:2e:c2:75:57:a0:d9:ed:70:
07:e1:7a:3f:c6:e8:1f:52:e0:1e:15:f4:d9:a9:9e:
5e:22:a6:94:d7:f4:a4:c7:ea:01:33:ff:65:22:c2:
87:e6:df:b5:47:bb:0c:b0:56:02:52:ec:66:d3:f9:
b1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:26:94:3B:8C:BB:12:BD:23:CB:34:32:C2:A2:5A:C2:D8:58:67:6F
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/QyaUO4y7Er0jyzQywqJawthYZ28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:105a::/47
Signature Algorithm: sha256WithRSAEncryption
21:9b:52:b3:94:80:43:2a:ce:12:d7:99:a7:b8:db:e8:6b:e4:
05:4e:a3:08:8d:36:4e:56:70:10:75:33:7a:3e:a0:6d:0b:66:
10:c6:9d:54:a2:81:ae:9a:87:c0:18:ce:6e:83:29:3a:c6:00:
b4:66:ef:6d:74:69:a8:39:5e:ff:09:13:22:fd:42:c1:70:36:
89:18:b8:05:4b:4c:90:c8:0b:45:7e:3c:e0:e7:c4:17:e1:82:
38:00:7a:9c:5e:cc:b4:de:cc:5a:b2:d8:28:98:4e:07:4d:e1:
46:d4:2f:73:15:80:36:7a:0c:9a:93:a8:61:bf:95:d6:83:c8:
f9:36:30:70:3c:e9:d0:58:8b:7f:d2:92:4a:b0:87:5e:d2:1f:
95:82:09:37:2d:f1:24:bb:db:fc:bd:b0:46:e0:1f:b2:f1:ab:
66:58:e4:7e:4d:42:49:07:02:99:43:0a:0d:8d:f2:a8:1e:d1:
52:94:75:70:e8:6f:f5:bf:d3:03:78:c7:a3:0b:5a:9b:0d:fa:
67:99:aa:e5:e7:02:66:12:49:d6:9a:39:79:f5:73:ec:44:11:
f7:60:43:1f:a7:94:13:4f:14:50:81:47:37:66:2d:2b:38:76:
64:2a:36:75:ac:09:a2:9f:b9:21:81:e5:d7:59:dd:5b:f8:c9:
aa:16:b1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org