Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/vPoWQabZZElajZOWQqTrPDiKMzY.roa
File: vPoWQabZZElajZOWQqTrPDiKMzY.roa (raw, json)
Hash identifier: LRfQUHixK9SB4BDTPsCBTy3QEHFT99IhRON7aYQtG3c=
Subject key identifier: BC:FA:16:41:A6:D9:64:49:5A:8D:93:96:42:A4:EB:3C:38:8A:33:36
Certificate issuer: /CN=7b88d4a4ab18a59b664dabafdb3880dc35b22b91
Certificate serial: 168AB2A3
Authority key identifier: 7B:88:D4:A4:AB:18:A5:9B:66:4D:AB:AF:DB:38:80:DC:35:B2:2B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4jUpKsYpZtmTauv2ziA3DWyK5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/vPoWQabZZElajZOWQqTrPDiKMzY.roa
Signing time: Sat 01 Jan 2022 14:54:47 +0000
ROA not before: Sat 01 Jan 2022 14:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29691
IP address blocks: 2a05:9a80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378188451 (0x168ab2a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b88d4a4ab18a59b664dabafdb3880dc35b22b91
Validity
Not Before: Jan 1 14:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcfa1641a6d964495a8d939642a4eb3c388a3336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3a:11:f5:26:22:fc:49:83:13:6e:8f:45:f0:
1c:0d:3d:e3:6c:67:80:84:f4:0d:2d:8f:00:9a:1d:
86:cc:77:8a:a5:5a:ac:55:1c:b0:32:22:6a:ea:3d:
d1:44:f9:fe:be:a4:b6:47:95:21:bd:59:c7:1e:e3:
cc:80:3a:73:34:66:71:02:53:df:83:fe:5b:fd:2c:
7a:57:59:16:8e:ed:d0:fd:0c:e3:c7:dd:c2:ec:00:
2b:1b:a4:54:12:0c:de:65:9c:7e:85:63:9f:de:bb:
f8:4b:25:cf:dd:0d:89:37:7c:f3:bf:fe:19:cb:47:
33:99:d9:89:3a:d1:a4:78:80:75:a4:a6:73:ca:b1:
91:fe:a0:f6:78:6a:47:4d:df:c0:9b:a4:fe:9d:07:
99:d6:62:f0:44:22:2d:6c:78:25:43:de:af:ae:8f:
ef:2b:4a:a8:e2:8a:0c:9a:f9:f0:c8:46:d5:25:8f:
79:68:9d:1f:05:e1:a1:e1:8b:35:51:cf:5b:c8:75:
6a:3f:7d:a0:11:3a:bc:4b:fc:12:d8:81:7b:94:e0:
c6:2e:c6:ec:d7:f0:4f:cc:76:f5:90:98:2b:64:f4:
f3:bc:35:21:65:26:af:4b:6c:b9:05:a1:21:ec:8e:
7b:ad:8b:f4:53:b2:5a:ff:22:86:00:0d:57:0a:f5:
e8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FA:16:41:A6:D9:64:49:5A:8D:93:96:42:A4:EB:3C:38:8A:33:36
X509v3 Authority Key Identifier:
keyid:7B:88:D4:A4:AB:18:A5:9B:66:4D:AB:AF:DB:38:80:DC:35:B2:2B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4jUpKsYpZtmTauv2ziA3DWyK5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/vPoWQabZZElajZOWQqTrPDiKMzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/e4jUpKsYpZtmTauv2ziA3DWyK5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9a80::/29
Signature Algorithm: sha256WithRSAEncryption
30:58:75:6c:ba:75:df:26:14:2d:27:1f:d6:c6:a6:8d:c7:bd:
07:e7:e4:fa:00:79:0b:3b:b6:50:fb:1b:ee:7e:0b:5f:ca:d0:
f7:be:18:f8:4d:69:d4:23:79:e6:0e:e3:45:10:e8:7b:3c:91:
a0:88:90:83:54:df:32:68:01:5a:09:16:ca:51:10:70:d8:5b:
ca:de:49:b1:79:70:0b:19:75:03:d2:63:a4:3b:a7:57:13:58:
a0:34:50:07:ff:e8:b3:6f:c2:ed:f1:24:56:c3:5d:5f:7a:dd:
a6:8c:ef:cb:0c:b9:25:fa:6b:eb:e4:d0:2f:a4:4f:15:f8:9e:
73:e4:08:bd:98:26:98:8f:c8:ff:10:55:67:96:11:9a:5e:ee:
ec:4c:19:2e:1b:57:df:db:48:c4:95:f4:27:fe:0a:ef:da:24:
ba:1e:72:70:1d:7d:1d:ec:48:fc:e7:d9:b2:d2:0f:9c:57:16:
ac:52:a5:52:b4:ba:e1:0b:50:f8:38:76:e3:ee:39:87:35:78:
a6:e2:d5:57:12:2c:57:10:a2:74:e2:3d:e5:37:3a:2a:ee:23:
ec:f8:e1:56:a8:c6:7a:1f:40:20:d9:e7:16:da:55:da:e7:73:
bf:82:b1:99:14:c7:62:f2:da:f9:cf:b8:93:7e:b9:57:5c:46:
9a:1f:f8:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:37 2025 by rpki-client