Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dHvRr7jV_04Xt-aRyLBuBeXYOyk.roa
File: dHvRr7jV_04Xt-aRyLBuBeXYOyk.roa (raw, json)
Hash identifier: Us/HzYSR0S6A6SOywK4HM6xqeHFoNklPzlCjPnmYSdg=
Subject key identifier: 74:7B:D1:AF:B8:D5:FF:4E:17:B7:E6:91:C8:B0:6E:05:E5:D8:3B:29
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246C8378827A63A84E490335F3F2F5E
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dHvRr7jV_04Xt-aRyLBuBeXYOyk.roa
Signing time: Mon 02 Jan 2023 11:38:39 +0000
ROA not before: Mon 02 Jan 2023 11:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139311
IP address blocks: 2a0c:9a40:82e0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c8:37:88:27:a6:3a:84:e4:90:33:5f:3f:2f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=747bd1afb8d5ff4e17b7e691c8b06e05e5d83b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f1:1f:df:fa:0e:09:90:e0:0c:11:c0:7b:4b:
1f:ec:5f:a3:67:c8:ba:cb:50:e1:72:26:3c:ee:67:
ca:e5:ea:28:a2:fb:ee:25:06:a9:85:90:15:6b:73:
4e:97:98:3b:5f:eb:fa:51:9c:50:8a:ed:0e:f6:cf:
2f:0d:bd:fa:da:bb:e9:bc:41:1e:00:d4:15:94:89:
2b:20:bf:de:5c:6b:54:d3:0e:27:2e:a6:a1:f5:bd:
6b:88:7d:e2:45:7b:ad:7e:e0:45:ef:de:de:e1:50:
4c:04:6e:b1:9f:13:49:39:16:c8:5b:79:f1:98:4f:
e5:44:bc:74:3e:c4:7c:59:a8:f2:90:85:67:34:3c:
32:25:61:cf:5c:3f:e0:d3:3e:ca:44:a0:e1:5b:56:
f5:65:cf:e4:04:15:69:2e:05:ef:95:06:3f:f5:d3:
3d:aa:05:3b:d5:27:2a:cf:39:05:4c:23:cb:b5:15:
6d:66:84:65:bb:c8:fa:3e:5d:57:4a:16:0b:f2:0f:
8f:95:a7:50:01:0c:42:53:a4:b6:0b:3e:d1:0c:aa:
8d:09:bc:68:a4:ac:72:a9:78:2e:74:c5:2b:7d:10:
37:b3:28:32:d3:0a:60:36:c4:19:6c:11:db:40:72:
4c:d4:3b:96:d0:1e:c3:3d:f3:21:50:60:56:b0:62:
dc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7B:D1:AF:B8:D5:FF:4E:17:B7:E6:91:C8:B0:6E:05:E5:D8:3B:29
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dHvRr7jV_04Xt-aRyLBuBeXYOyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:82e0::/44
Signature Algorithm: sha256WithRSAEncryption
91:89:45:d4:94:50:a0:8b:2d:4c:46:4b:17:a3:6c:7d:0e:35:
4c:c3:8b:40:17:41:3a:23:40:e2:2a:d5:37:b8:55:0f:f9:2c:
34:7d:19:56:d3:da:3b:19:99:a9:b6:ae:a5:57:43:d2:4a:8a:
3f:81:cd:7b:6a:47:b0:e4:86:56:cc:ec:6c:4a:12:63:22:84:
4d:fa:ea:9b:32:36:98:12:aa:23:f6:53:99:9d:29:8d:e6:20:
52:e2:be:7b:ad:45:78:e7:01:65:59:de:82:0f:5b:2e:fb:54:
eb:ec:e5:aa:52:77:10:ca:20:52:d5:d7:47:41:bd:90:ee:ee:
36:5a:63:84:ec:e0:5f:c9:37:38:70:4f:b8:09:9d:54:07:e4:
68:92:38:41:55:89:44:75:d4:b5:80:31:e0:b8:d6:1a:f3:95:
90:1b:64:f5:b4:05:a9:9d:77:83:ee:8a:31:d0:d5:d7:79:a8:
0a:47:8c:7a:1c:ac:6b:ec:ff:48:9a:c7:16:b4:bf:d6:e7:96:
40:cd:7e:6b:8c:4a:ae:12:cd:e2:59:09:4c:35:54:24:86:42:
5b:8f:2d:33:9a:5a:2d:b1:46:77:ec:4f:83:08:14:f5:dc:65:
ff:48:54:9f:52:e4:5d:72:90:82:61:a1:77:90:fa:0e:43:4b:
b2:f5:83:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:51:52 2025 by rpki-client