Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/QBsencKjsMDh1cvxIA72UR7uMh0.roa
File: QBsencKjsMDh1cvxIA72UR7uMh0.roa (raw, json)
Hash identifier: mOXlvN6P32StAyAfLkSFDRqYB1+jqOPL7jEzmVNGG0U=
Subject key identifier: 40:1B:1E:9D:C2:A3:B0:C0:E1:D5:CB:F1:20:0E:F6:51:1E:EE:32:1D
Certificate issuer: /CN=4f0788aad22ac4370d518cb7fb9dfe724b41f957
Certificate serial: 02C8CB0E
Authority key identifier: 4F:07:88:AA:D2:2A:C4:37:0D:51:8C:B7:FB:9D:FE:72:4B:41:F9:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TweIqtIqxDcNUYy3-53-cktB-Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/QBsencKjsMDh1cvxIA72UR7uMh0.roa
Signing time: Sat 01 Jan 2022 08:54:40 +0000
ROA not before: Sat 01 Jan 2022 08:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211935
IP address blocks: 2001:67c:291c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46713614 (0x2c8cb0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f0788aad22ac4370d518cb7fb9dfe724b41f957
Validity
Not Before: Jan 1 08:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=401b1e9dc2a3b0c0e1d5cbf1200ef6511eee321d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:17:f5:d7:90:dc:d3:30:55:4b:96:b0:f2:0f:
0d:a6:6c:06:5d:93:13:73:84:8c:b2:08:d4:ab:c0:
c7:b8:17:68:7d:78:08:df:3b:44:8c:6b:97:b0:fe:
b5:f9:1e:09:71:8e:b1:eb:c3:25:d8:cc:2d:bf:02:
3a:e6:27:a9:95:be:e5:67:dc:a8:5a:96:e0:e8:3a:
66:0e:23:82:fd:8d:03:9a:5e:87:6b:48:f9:ca:46:
18:63:4c:86:9a:cd:b0:4e:3e:b6:13:b9:85:ae:1f:
f9:67:c9:98:df:bf:9b:f3:69:ac:b0:09:73:83:e3:
fd:2d:7a:10:42:f8:da:31:9d:e9:f3:d1:01:f2:03:
86:1b:de:09:30:d6:18:c1:e4:35:27:de:a2:ee:9f:
f6:c9:18:ce:4f:11:78:80:7d:76:c2:85:25:c5:a3:
6a:88:1d:8b:45:bf:f4:21:5f:ff:0b:89:8b:9c:0f:
fb:d6:dd:f9:82:e8:fe:d6:df:9a:49:5e:37:60:d9:
6e:d7:2b:a0:74:4f:9d:9a:80:9c:af:3a:51:78:af:
1c:1d:5e:ba:3f:ab:a0:b7:0c:f6:5e:23:63:30:46:
ba:7d:ff:af:b4:8c:78:d9:0c:ae:07:0c:61:87:e8:
a0:05:72:cc:65:19:d0:48:44:14:c6:ff:3e:d7:5f:
ef:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1B:1E:9D:C2:A3:B0:C0:E1:D5:CB:F1:20:0E:F6:51:1E:EE:32:1D
X509v3 Authority Key Identifier:
keyid:4F:07:88:AA:D2:2A:C4:37:0D:51:8C:B7:FB:9D:FE:72:4B:41:F9:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TweIqtIqxDcNUYy3-53-cktB-Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/QBsencKjsMDh1cvxIA72UR7uMh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/9c04d5-459b-4fe2-8450-e11ab261ca7b/1/TweIqtIqxDcNUYy3-53-cktB-Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:291c::/48
Signature Algorithm: sha256WithRSAEncryption
34:57:74:e6:7e:0e:9d:53:28:d3:e7:db:85:a1:5f:dd:aa:0d:
e2:65:69:07:80:1f:bf:e1:14:81:c8:d6:89:cd:7c:0b:e9:01:
96:1c:fe:1e:22:b4:d9:9b:5c:db:c4:40:29:35:0b:85:0d:c8:
1b:8c:aa:2e:04:ab:00:4f:b0:4b:5b:9b:d0:39:30:49:dc:90:
8f:49:8f:c5:b3:ac:e9:c3:1b:5a:20:c4:0a:33:24:5c:6f:56:
c5:de:1f:0d:c6:bf:0c:cb:f1:61:13:67:a7:05:e1:a4:32:7c:
3f:d7:c2:23:21:d9:cc:c1:b2:bb:73:96:b3:92:32:e0:b6:dd:
e8:5d:1a:66:0b:fa:72:56:a3:f5:6b:6a:2b:b8:83:6a:3f:f9:
d5:8e:8a:d4:d1:c2:c5:3c:70:e0:2b:6b:2c:b9:f6:8e:01:80:
34:2d:cf:d1:39:34:a4:53:d4:bd:97:d8:61:e0:6f:04:5f:ba:
c4:42:05:ac:ae:21:0d:d7:05:9d:08:fe:d6:51:d1:5b:73:3f:
4c:c1:b7:1d:3d:93:77:9b:d2:e6:24:35:d4:a6:ba:3c:ec:12:
c7:69:2c:11:1b:69:6c:30:7f:da:c6:81:70:33:35:02:3b:de:
2e:d8:12:60:e6:b9:1b:e9:d3:90:86:68:e2:bb:20:81:9b:2c:
9f:7c:a0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:16 2025 by rpki-client