Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/D30oPbCVRNi_peD-7x7F-4cGvek.roa
File: D30oPbCVRNi_peD-7x7F-4cGvek.roa (raw, json)
Hash identifier: JgTk2nieQHDzpBhZeB9NkOx/tOl4r3n3j0AOrNrDto4=
Subject key identifier: 0F:7D:28:3D:B0:95:44:D8:BF:A5:E0:FE:EF:1E:C5:FB:87:06:BD:E9
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0183FFA90D39E179E439B62FCB5CC53F05AA
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/D30oPbCVRNi_peD-7x7F-4cGvek.roa
Signing time: Sat 22 Oct 2022 12:26:52 +0000
ROA not before: Sat 22 Oct 2022 12:26:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203423
IP address blocks: 2a0c:9a40:9400::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ff:a9:0d:39:e1:79:e4:39:b6:2f:cb:5c:c5:3f:05:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Oct 22 12:26:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f7d283db09544d8bfa5e0feef1ec5fb8706bde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:58:f2:75:4d:39:66:90:9f:7c:0f:f5:f0:80:
fb:a8:1c:bd:3d:6c:6e:01:56:34:95:f2:d7:ac:9b:
e1:57:2a:43:ed:0c:bd:8a:ee:29:37:96:e7:b3:33:
94:17:dd:d8:1d:77:b5:62:73:d7:f8:0a:37:92:e5:
fa:03:f9:1e:7c:3a:b1:06:16:24:ae:74:a1:38:e3:
aa:20:b3:ad:df:d4:f4:26:0e:76:03:ce:bc:8f:94:
9d:dc:75:14:02:1b:c4:51:00:79:82:69:fe:e7:9d:
b1:9a:af:64:9f:46:ea:f4:50:d8:8e:da:19:ab:bc:
d3:be:13:e6:0d:cc:39:a7:a3:a5:e5:6f:3a:6f:94:
e6:f0:5a:55:3d:2a:f3:57:ed:5c:87:a0:50:ee:72:
fd:78:cf:ae:83:00:17:bb:78:2d:18:50:1d:7e:6c:
0d:37:00:b5:0b:62:dc:5a:cb:b4:2f:28:5a:45:46:
0c:3e:0b:dc:23:7b:d5:4a:c4:5d:c5:8e:87:19:87:
ba:c1:5e:79:31:d8:e0:ca:d4:df:da:b0:77:30:35:
0b:0a:9f:f9:02:1d:ce:10:92:2a:0a:dd:99:92:78:
f8:e0:eb:6d:91:62:cd:a2:dd:be:1c:59:43:6d:54:
78:c4:f8:66:73:50:4b:1d:da:92:75:49:52:d3:21:
35:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7D:28:3D:B0:95:44:D8:BF:A5:E0:FE:EF:1E:C5:FB:87:06:BD:E9
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/D30oPbCVRNi_peD-7x7F-4cGvek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9400::/40
Signature Algorithm: sha256WithRSAEncryption
3e:11:41:c9:a6:fc:13:95:6e:38:26:c5:f5:48:b2:24:38:e6:
63:3e:ba:17:d6:52:42:18:70:b5:44:e1:42:fa:90:58:f9:2d:
b2:8a:1b:90:48:f6:fc:81:72:53:38:a8:13:71:47:f7:88:3c:
52:ee:3e:13:c5:c2:91:65:16:30:49:f7:fb:09:38:33:b9:8e:
e6:33:3c:1d:b9:e1:9d:51:14:1c:32:27:ab:3d:d5:8a:b7:6c:
db:93:e3:68:87:8b:12:c7:bb:03:9d:e6:3d:67:2f:01:bf:48:
a8:37:02:56:30:96:ab:72:0a:f8:e5:4b:23:7e:bc:61:45:2d:
c6:37:9d:24:93:b7:40:3b:61:f4:12:4b:b8:da:5c:5b:30:40:
87:d4:69:1f:45:4a:c3:37:f4:a4:4f:85:a6:a4:4b:b4:ae:31:
b4:61:93:b1:0c:00:c4:b8:f8:ce:31:60:8b:96:86:a1:a9:4b:
da:e7:f0:24:9f:86:e8:7b:75:9d:9e:a0:b0:9e:9a:a0:98:f8:
95:47:17:17:15:e8:3d:e0:f7:6b:13:c6:de:84:eb:ea:0c:0c:
9d:9a:c1:c3:29:d2:05:6f:22:3d:92:16:ce:2d:d6:5f:ea:af:
97:aa:4d:0e:6e:02:83:51:61:1a:47:38:72:85:f8:c9:3d:dd:
4e:6e:ab:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:17:46 2025 by rpki-client