Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SA2wIJw9dCENGYkEh7Bk6-oT30s.roa
File: SA2wIJw9dCENGYkEh7Bk6-oT30s.roa (raw, json)
Hash identifier: bh41GtmtimmJ7QaK2AJczwbRxT5lwukuEJAgdJzQ9Zg=
Subject key identifier: 48:0D:B0:20:9C:3D:74:21:0D:19:89:04:87:B0:64:EB:EA:13:DF:4B
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0187C1C3B609BC7E38DF2494F0410FFDC600
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SA2wIJw9dCENGYkEh7Bk6-oT30s.roa
Signing time: Thu 27 Apr 2023 08:10:41 +0000
ROA not before: Thu 27 Apr 2023 08:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199307
IP address blocks: 2a0c:9a40:8cf0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c1:c3:b6:09:bc:7e:38:df:24:94:f0:41:0f:fd:c6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Apr 27 08:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=480db0209c3d74210d19890487b064ebea13df4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:02:60:c0:5d:7f:40:4f:d0:7b:eb:78:37:e6:
88:1e:4a:7d:81:f2:d6:e0:94:34:28:74:02:a7:6c:
f0:9e:cc:87:e0:9b:f2:37:63:b0:91:a3:15:15:04:
40:ad:30:fd:a6:88:f9:0b:2c:37:02:0a:70:62:57:
4a:8b:1a:44:87:65:9a:78:1b:85:9d:dd:78:87:c9:
74:96:27:9a:c7:0f:98:6a:bd:4d:d6:f0:65:20:cd:
cb:c1:c2:d2:2b:9d:ca:50:72:8d:ec:1a:61:34:be:
36:28:4e:24:ca:d9:7f:4d:df:76:1c:7f:07:0f:fe:
ab:a6:fd:85:d0:f9:20:ea:98:f3:d7:cc:ed:7e:58:
51:ce:a5:93:6d:fe:56:94:8e:f3:fc:1a:c4:49:51:
4a:c1:c2:88:26:d1:3c:0b:8c:7f:36:9c:fd:45:bf:
89:e4:94:1b:f1:77:cb:84:a7:38:3a:73:45:92:95:
af:ac:c5:e1:16:76:57:1d:b3:0d:db:fa:49:09:1e:
51:6a:cc:c4:fa:76:4a:1a:de:3d:06:f4:a8:fe:06:
c9:e3:96:4c:bf:55:16:a1:a2:52:a7:e1:ff:37:3e:
ca:cc:91:e2:a1:3a:53:00:31:bd:97:f1:09:82:10:
f2:a7:4d:c4:ca:90:1e:b9:2a:0b:ba:e8:f2:e4:b3:
be:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0D:B0:20:9C:3D:74:21:0D:19:89:04:87:B0:64:EB:EA:13:DF:4B
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SA2wIJw9dCENGYkEh7Bk6-oT30s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8cf0::/48
Signature Algorithm: sha256WithRSAEncryption
6c:57:4f:46:47:64:44:1c:ab:d8:ad:03:a8:05:ba:b6:f7:4d:
f5:97:8a:35:38:24:c4:cb:dc:97:3d:c5:17:34:1e:f0:6e:a5:
f1:7d:78:1c:8c:ed:db:62:8f:f4:5c:91:c0:1f:14:83:67:09:
8d:75:86:96:2b:7f:60:b0:02:c7:3c:d3:a9:87:54:7c:35:f7:
ed:d9:4e:3d:01:2e:f2:ca:56:82:a7:04:63:8c:52:ce:7a:36:
88:35:ee:57:8d:1b:7b:5b:03:3a:15:d6:8b:dd:6a:f4:03:b3:
19:43:04:ca:4a:8c:50:f8:60:66:83:9b:11:8e:b9:df:e5:13:
a3:46:5e:19:33:1a:3b:94:ee:7b:13:4e:5f:ed:17:f9:b9:79:
39:61:e7:46:c1:f9:6f:65:b3:51:3b:69:36:70:5b:f8:a0:15:
e5:b6:0f:3d:09:3e:06:9d:d2:c3:f9:5e:07:2b:c1:0d:59:fc:
a3:cc:32:b1:6b:04:e7:49:85:f1:31:cb:89:b2:4a:54:81:ef:
c4:d7:9e:ef:51:86:3d:e3:01:45:6e:14:ba:3a:c5:0f:2c:a1:
d9:ca:5a:0a:a8:d7:bd:4b:a9:ae:61:ed:41:48:86:43:b8:68:
69:60:12:f1:ad:c1:75:88:5f:24:60:c8:44:3c:d8:48:cb:51:
cf:77:29:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:49:15 2025 by rpki-client