Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/qMKRIdAWI9tLrhsnJSxheLCHa_8.roa
File: qMKRIdAWI9tLrhsnJSxheLCHa_8.roa (raw, json)
Hash identifier: VX+jGxzwgAvwtaG0zZmdhLpZu2ueuf6GM1NxdPirNlE=
Subject key identifier: A8:C2:91:21:D0:16:23:DB:4B:AE:1B:27:25:2C:61:78:B0:87:6B:FF
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0358FA6A
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/qMKRIdAWI9tLrhsnJSxheLCHa_8.roa
Signing time: Sat 01 Jan 2022 07:01:43 +0000
ROA not before: Sat 01 Jan 2022 07:01:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208386
IP address blocks: 2a0f:9700::/29 maxlen: 29
2a0e:c640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56162922 (0x358fa6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 07:01:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8c29121d01623db4bae1b27252c6178b0876bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:45:23:6e:76:c2:fa:7b:23:a1:54:5f:8b:
8f:25:60:93:e7:8c:cb:f2:8a:21:51:67:e4:b8:85:
df:33:8a:ab:52:a9:e3:3b:5a:17:8e:8d:27:05:02:
15:ab:54:ef:4c:f0:c0:cc:bc:de:a8:ad:c1:fc:c6:
5e:69:48:3c:9e:90:4f:04:39:37:2a:11:ad:c9:83:
a9:00:df:87:f4:3e:99:e2:d9:d4:14:4b:65:2a:21:
5d:b8:2d:ff:69:03:34:f1:40:cc:2b:d1:fa:8c:f5:
ef:80:80:5b:45:26:e3:b3:3f:53:d3:5c:1f:f3:a4:
bd:d0:f6:63:d3:aa:6d:0a:01:da:f1:36:a9:f3:8c:
0d:f6:b9:2a:59:34:74:57:2a:04:b7:f9:5f:43:f9:
45:b8:97:d8:87:e2:ed:64:05:3f:36:29:86:60:5d:
18:fd:06:5a:1c:2b:83:30:3e:3a:a5:45:59:41:44:
fe:af:87:a9:2e:d8:36:d4:2f:e0:d2:89:a8:22:0f:
cb:58:ec:bf:48:44:f1:13:d1:28:dd:98:35:0d:1c:
b4:fc:58:66:b6:dd:38:1e:a1:61:a9:0c:8f:2a:87:
a4:74:29:73:fd:30:a8:0e:23:95:41:de:1f:f9:f4:
75:12:d3:81:e3:ad:65:f7:7b:c3:6a:5d:79:ba:62:
36:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C2:91:21:D0:16:23:DB:4B:AE:1B:27:25:2C:61:78:B0:87:6B:FF
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/qMKRIdAWI9tLrhsnJSxheLCHa_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c640::/29
2a0f:9700::/29
Signature Algorithm: sha256WithRSAEncryption
06:80:d4:f8:ee:b7:13:80:2d:9e:48:79:13:cf:e0:96:c5:fa:
48:72:ae:bd:77:44:fc:a9:ac:ed:a2:8a:a6:37:09:62:16:8c:
ce:d9:3b:3a:46:d8:36:53:d4:a7:72:6c:df:61:2b:3c:2b:2b:
eb:44:88:a0:b8:e1:6e:3b:83:25:e8:32:ea:7d:25:76:93:6d:
78:42:47:b0:19:a7:17:3e:20:4a:85:af:a6:b2:fa:f1:02:a6:
e0:02:b0:ba:77:5e:ef:ca:38:44:d5:5d:75:42:d6:3f:97:f0:
b6:96:df:dc:a5:4c:28:c8:26:ef:fe:07:89:28:9d:6c:4a:91:
8b:37:3d:22:bc:4b:6a:3f:4d:4c:8f:6a:e3:c0:90:8b:b9:a6:
43:6c:38:fb:f5:54:b4:59:12:dd:14:e9:76:f0:8b:69:3f:03:
ec:ad:dc:70:ee:b0:cb:f1:22:ac:9b:ab:ab:c5:70:e0:c3:a4:
2d:b1:1d:cc:34:04:63:7b:f1:e3:66:4d:f5:57:55:6f:03:14:
e3:34:1b:64:bb:69:dd:ac:af:bf:6c:1c:e3:42:62:76:00:a0:
41:8b:58:a5:4b:c4:54:a0:d2:e0:e6:06:6b:6a:d1:cc:4b:4c:
66:ee:43:48:d2:98:79:f4:14:44:33:54:3f:dd:db:d2:5b:1f:
2f:87:99:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org