Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/fQlRRqOYh0PS0-p_Np4WwixRbII.roa
File: fQlRRqOYh0PS0-p_Np4WwixRbII.roa (raw, json)
Hash identifier: WX6hUR7NcsOlO5SInIXM7WlU71cFqQyEzvngpvvYYmo=
Subject key identifier: 7D:09:51:46:A3:98:87:43:D2:D3:EA:7F:36:9E:16:C2:2C:51:6C:82
Certificate issuer: /CN=97ea541c123faa9c0edc729f829e959fd292e37d
Certificate serial: 05CFE0C0
Authority key identifier: 97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/fQlRRqOYh0PS0-p_Np4WwixRbII.roa
Signing time: Sat 01 Jan 2022 06:53:27 +0000
ROA not before: Sat 01 Jan 2022 06:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0d:9b84:ff00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97509568 (0x5cfe0c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ea541c123faa9c0edc729f829e959fd292e37d
Validity
Not Before: Jan 1 06:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d095146a3988743d2d3ea7f369e16c22c516c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:09:66:27:19:20:19:95:3c:d4:de:75:a1:
e3:0a:a6:db:4c:5c:50:2c:27:2d:04:8e:1e:30:97:
51:f1:42:23:12:14:c5:98:08:9b:ff:4c:a3:a9:a8:
01:61:b6:e5:f8:20:6d:c8:a2:aa:63:0d:0a:d3:66:
28:20:c4:68:76:20:8b:50:ed:f6:25:e0:39:4a:0b:
75:23:d8:8d:8a:50:2d:43:30:04:09:01:c0:30:4c:
40:4e:d9:b9:1e:c6:ca:d9:b1:91:01:13:af:75:da:
0f:00:a5:31:a5:89:59:65:5e:b6:cf:9d:7f:14:f7:
70:76:85:2f:d7:5c:46:e5:5f:78:81:60:75:ec:e5:
9a:0e:f2:f2:81:07:38:26:8f:a9:89:61:fd:f5:a4:
35:ec:1b:31:c1:0b:0b:b1:57:99:04:d4:6c:b6:c5:
29:bc:8a:08:2d:f6:42:ab:e9:d7:70:e3:27:2d:98:
1d:d8:7e:e2:32:3e:6a:b7:dd:90:2c:a9:1e:0f:68:
bd:27:98:45:0e:32:49:a9:6f:79:f7:78:21:ce:64:
0d:09:f1:46:37:9f:76:bd:80:d3:33:bb:9a:ef:97:
36:be:c5:05:e8:33:f3:21:20:05:53:0b:8c:f7:4a:
0f:83:93:5e:c1:16:96:2a:16:3a:1c:89:80:69:75:
68:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:09:51:46:A3:98:87:43:D2:D3:EA:7F:36:9E:16:C2:2C:51:6C:82
X509v3 Authority Key Identifier:
keyid:97:EA:54:1C:12:3F:AA:9C:0E:DC:72:9F:82:9E:95:9F:D2:92:E3:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-pUHBI_qpwO3HKfgp6Vn9KS430.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/fQlRRqOYh0PS0-p_Np4WwixRbII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12155c-cd13-4aa7-8949-638dcfa13003/1/l-pUHBI_qpwO3HKfgp6Vn9KS430.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:9b84:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
9d:24:74:22:0f:1c:ac:d4:4c:c3:8c:b4:4d:2d:fa:98:af:13:
81:2f:e2:26:f3:37:1c:e3:17:23:f7:6d:0f:09:e1:3a:c6:f2:
3b:39:36:c6:ac:01:a3:25:7f:ec:87:3d:61:2b:bb:5a:b4:4b:
06:d7:1e:09:5a:31:52:fe:d4:be:10:43:16:16:89:ba:db:83:
f3:b3:4c:68:f0:3f:f9:07:4e:e5:84:3c:0f:e8:47:ed:42:e4:
19:08:93:05:ff:20:89:ae:5c:b5:0a:9f:6c:d1:9f:98:7c:a6:
9c:42:f2:bd:40:15:09:6e:9e:81:02:6d:8a:8e:a4:db:e2:fd:
9c:13:71:9d:c3:bf:65:75:bd:d1:c4:47:f8:73:ee:94:95:bf:
25:d9:68:8f:90:99:52:0c:44:90:b5:5d:f6:74:e6:58:be:2e:
0c:cd:11:e3:f5:f6:f3:44:01:55:b4:b5:d8:cc:a0:a2:29:92:
fc:88:e3:34:e5:6e:95:1e:dd:09:40:5f:7a:0a:e0:76:86:5c:
c1:09:c5:23:6b:c6:42:dc:6a:3b:51:8e:69:c2:f5:3d:1d:cc:
23:3e:df:1b:d5:9d:09:72:be:53:57:04:e0:09:8b:f5:83:cd:
5b:84:b9:65:81:b6:9b:38:41:2f:90:45:16:5f:20:4c:38:7d:
b7:53:92:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:25 2024 by rpki-client on console-fra.rpki-client.org