Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rOPyFw86l-tCeIYZzcjgjOhnryQ.roa
File: rOPyFw86l-tCeIYZzcjgjOhnryQ.roa (raw, json)
Hash identifier: JG7GSRMtvottMWY36XFKBQTrWNjKtmLgOkRSIOJoUpI=
Subject key identifier: AC:E3:F2:17:0F:3A:97:EB:42:78:86:19:CD:C8:E0:8C:E8:67:AF:24
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01888ACCB71753B047DA71665D332243E720
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rOPyFw86l-tCeIYZzcjgjOhnryQ.roa
Signing time: Mon 05 Jun 2023 09:04:11 +0000
ROA not before: Mon 05 Jun 2023 09:04:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142561
IP address blocks: 2a0c:9a40:8c82::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:cc:b7:17:53:b0:47:da:71:66:5d:33:22:43:e7:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jun 5 09:04:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ace3f2170f3a97eb42788619cdc8e08ce867af24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fe:f4:af:6e:3b:d5:25:02:79:dd:fd:b9:a2:
49:75:56:a4:cc:c8:5b:fd:e5:b2:93:55:51:c3:32:
1c:e3:e5:0b:de:65:75:ce:10:29:9b:c7:c9:39:b3:
95:7f:a2:5b:0d:9a:87:ba:29:fe:33:8c:97:ec:64:
6f:41:cc:35:09:a4:81:20:1e:4f:a7:ce:26:ef:1b:
c5:2b:6c:45:19:f1:c9:23:d0:55:e7:35:a5:61:74:
5c:5b:4a:9c:08:f1:23:10:ea:b4:39:70:26:08:4b:
b3:31:b0:b9:0f:e7:4b:19:5f:9e:3f:e7:c1:6a:9b:
4a:0c:34:9b:2e:da:49:e7:d0:da:9c:57:f3:c0:30:
f7:0e:e1:d8:be:8a:c8:1a:58:40:99:7e:cb:50:1c:
3a:83:80:76:b0:34:09:31:69:a3:e7:ec:47:e8:60:
71:db:12:f5:bd:e7:a0:f8:74:c3:7c:ca:f2:f8:14:
f1:3e:22:a7:92:f2:ba:b8:9b:c5:82:08:44:78:2a:
f8:db:b8:ad:90:1d:8b:db:8f:4f:05:5d:73:b5:b5:
33:f4:9e:8b:69:7b:25:65:75:56:b5:a9:cc:bf:d0:
10:3e:5d:6e:a9:67:24:f3:ff:2c:da:f3:97:11:32:
1b:53:e4:57:2b:05:2c:72:6e:ed:c9:de:f8:b2:39:
bd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E3:F2:17:0F:3A:97:EB:42:78:86:19:CD:C8:E0:8C:E8:67:AF:24
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rOPyFw86l-tCeIYZzcjgjOhnryQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8c82::/48
Signature Algorithm: sha256WithRSAEncryption
15:05:e5:20:db:16:54:15:f1:bc:ac:6c:8e:f7:10:c7:63:4b:
6e:d3:9d:18:63:88:1d:1f:21:89:6c:6b:2f:08:ed:22:8e:7e:
fe:71:df:c2:fe:18:62:f0:e3:15:af:1e:6d:02:ba:8d:cc:db:
6c:bc:1d:1c:6a:3b:1f:e7:d9:60:98:90:2d:1e:b2:ff:93:a1:
96:d0:00:4b:a3:a6:0b:96:1e:77:b2:09:91:23:e5:f8:7f:5f:
a2:82:ed:7a:a6:f0:79:b4:dc:5c:d3:e0:7a:e7:5f:da:af:b7:
f9:e0:f8:55:51:4f:a6:2e:f5:a9:05:b4:8a:a5:00:5a:9e:2d:
35:d4:9c:61:90:53:70:69:0f:1b:8a:48:4e:73:b2:b4:07:30:
e9:59:43:6b:8c:c1:fe:34:72:8b:67:50:0d:d7:ac:95:28:78:
77:07:7f:e9:2b:40:d7:0a:90:85:6d:1f:ab:42:51:59:8d:ba:
18:aa:ab:65:f2:99:3d:40:61:9c:4c:27:65:8b:6a:84:dc:cc:
73:ba:77:02:b1:3e:4f:3a:e0:f3:a7:ab:90:7b:17:d9:65:5f:
27:6c:ca:b1:b0:97:f7:27:7f:ef:93:fc:d0:46:f7:31:17:8c:
15:ff:f2:cc:bb:41:cc:25:eb:78:45:70:f5:b5:77:48:ac:ca:
c0:9d:e9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:47:31 2025 by rpki-client