Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/c-Q3tg0_dEznK00goMX1srdBzE4.roa
File: c-Q3tg0_dEznK00goMX1srdBzE4.roa (raw, json)
Hash identifier: lAu/KoXwc95/nfQcb2YZrDDw50jW7fFnESE1uWk2ZG0=
Subject key identifier: 73:E4:37:B6:0D:3F:74:4C:E7:2B:4D:20:A0:C5:F5:B2:B7:41:CC:4E
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 0894DAD6
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/c-Q3tg0_dEznK00goMX1srdBzE4.roa
Signing time: Thu 21 Apr 2022 09:09:51 +0000
ROA not before: Thu 21 Apr 2022 09:09:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207705
IP address blocks: 2a0f:607:1072::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143973078 (0x894dad6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Apr 21 09:09:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73e437b60d3f744ce72b4d20a0c5f5b2b741cc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:80:f0:9e:ab:60:59:38:33:56:a4:3c:95:a6:
37:73:2a:b5:4b:63:d8:2f:df:23:c6:a1:6d:a1:96:
f9:b7:08:10:69:05:89:e9:1a:7f:cf:3d:f9:17:3b:
f8:48:71:ed:4e:a3:f9:aa:f6:da:d3:76:91:84:d3:
42:20:04:65:3f:81:cc:a0:8d:c7:cb:01:e7:7c:9a:
16:18:d1:04:8c:3c:d1:5e:f8:44:e6:c5:f7:85:48:
39:4a:42:f2:ba:36:43:f0:d1:31:91:63:d5:10:2c:
f0:58:ef:3a:ee:0f:14:d3:af:2b:c3:b1:c7:71:e9:
47:57:77:cd:ab:73:63:b9:b2:dd:8b:aa:92:d2:20:
dd:60:47:3e:3a:44:c4:b3:fb:57:7b:b7:f3:dd:64:
a8:70:fa:6a:20:2e:bd:6e:3e:82:5d:e2:4e:b3:2b:
c8:e5:6a:93:13:3e:b1:a6:e7:1d:d1:f1:f3:0b:94:
c4:cd:22:cd:96:1f:d9:c5:df:5c:00:04:ea:ed:2d:
52:3d:76:38:a5:74:03:4b:d7:fc:05:cd:d7:ec:1b:
68:30:72:45:8d:64:01:30:8a:b0:a8:c2:6a:ae:77:
aa:26:bc:ec:7e:2d:b1:b4:d3:82:09:ef:52:39:9e:
35:ca:af:96:d9:4a:26:04:21:a4:bd:b4:d9:28:d9:
59:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E4:37:B6:0D:3F:74:4C:E7:2B:4D:20:A0:C5:F5:B2:B7:41:CC:4E
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/c-Q3tg0_dEznK00goMX1srdBzE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1072::/48
Signature Algorithm: sha256WithRSAEncryption
9b:04:10:27:78:59:4c:39:01:06:0c:d4:88:86:9f:bd:5f:85:
40:c5:40:e0:5f:56:f7:02:e1:54:b1:9a:d7:9b:a6:12:c4:95:
37:a0:39:ad:ea:1b:00:2f:f3:03:c2:0d:7d:6e:d8:b7:4e:62:
f6:d4:41:de:b9:6a:c5:64:2b:8e:31:fe:f0:45:0d:d0:cc:6c:
31:51:13:54:86:5b:54:4d:ff:bc:1f:63:2c:62:eb:f5:f4:ee:
2d:bf:55:c3:ca:4f:81:b2:f6:7d:57:95:1c:0a:ef:59:0a:85:
8d:97:2d:66:67:4b:02:29:18:d3:34:54:25:92:ef:59:69:04:
af:32:f3:1d:5c:4f:41:73:31:07:02:cb:9a:ff:af:9a:e7:e5:
15:40:ce:ae:5c:f6:1a:5e:36:e7:0c:22:53:2b:2b:f2:33:76:
9f:71:8b:60:8c:10:93:a4:f7:87:e9:52:2a:42:64:ee:0e:54:
8a:e3:f4:87:a1:f7:73:17:01:77:8e:3a:b4:88:3d:16:a9:28:
25:3d:67:f4:bc:26:36:15:cb:3d:8d:73:7a:e0:c0:e4:ab:58:
2d:77:45:21:40:2d:43:43:09:f1:88:0f:eb:aa:4b:91:b8:74:
94:8c:53:d7:70:89:86:dd:21:c1:55:49:53:c8:33:9e:a0:48:
dd:13:86:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org