Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/xWT1ccW2OV8swT_wHwhh6B4BtGk.roa
File: xWT1ccW2OV8swT_wHwhh6B4BtGk.roa (raw, json)
Hash identifier: p04t+5ArL3D3eysPsizZmolpCH8GcF8Egz96lx7gPrM=
Subject key identifier: C5:64:F5:71:C5:B6:39:5F:2C:C1:3F:F0:1F:08:61:E8:1E:01:B4:69
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018345CCBB0561D2BFD71B312E7EAB3C4F78
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/xWT1ccW2OV8swT_wHwhh6B4BtGk.roa
Signing time: Fri 16 Sep 2022 10:16:28 +0000
ROA not before: Fri 16 Sep 2022 10:16:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3280
IP address blocks: 2a0c:9a40:8086::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:cc:bb:05:61:d2:bf:d7:1b:31:2e:7e:ab:3c:4f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 16 10:16:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c564f571c5b6395f2cc13ff01f0861e81e01b469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e1:47:a8:70:cd:e8:66:e0:3a:bb:13:39:61:
27:87:ac:69:4a:e3:f5:8a:02:51:f0:00:96:71:ae:
c9:a5:00:e9:1b:ba:05:1c:ae:e6:e0:4d:90:9d:b8:
f6:31:98:40:11:ce:34:27:9b:f5:8c:21:9c:a4:7c:
4d:ed:c4:99:eb:8d:05:1b:4d:dc:db:dc:14:06:d9:
93:bc:68:6c:aa:e5:e1:c3:0a:b6:cc:ab:99:7a:a0:
63:ea:66:7d:4a:1f:1a:d6:3f:22:fa:eb:8d:2d:1b:
7f:15:86:69:b5:da:83:2e:81:82:85:3c:7b:2e:a3:
a3:18:46:4c:95:6a:51:9f:b0:5c:ca:16:0b:ca:7e:
8c:26:80:00:df:9e:47:a2:27:2b:50:d9:fd:f4:3f:
c9:0c:9d:4d:00:c5:84:44:08:49:25:82:15:c2:b6:
b7:9d:72:1d:8c:ad:e9:95:bc:97:6c:78:65:44:0d:
f6:21:83:7f:a0:98:a1:7f:e9:01:bb:6c:45:5c:fc:
52:a1:a4:32:18:56:30:4b:c7:ac:81:1f:61:e0:41:
91:c6:a2:f5:33:42:25:4d:b8:13:80:39:95:8c:2f:
91:d2:b2:c5:ba:a6:73:d4:80:0d:4f:ee:c4:95:9d:
85:dd:8f:16:c8:ff:4d:8f:84:3c:6d:10:2d:a4:fc:
84:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:64:F5:71:C5:B6:39:5F:2C:C1:3F:F0:1F:08:61:E8:1E:01:B4:69
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/xWT1ccW2OV8swT_wHwhh6B4BtGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8086::/48
Signature Algorithm: sha256WithRSAEncryption
3f:ab:44:9b:41:74:3c:40:86:85:e0:92:35:68:79:17:a6:55:
14:87:b6:4d:04:ee:ab:7b:2c:8e:8f:6b:a5:a7:63:f7:75:a2:
3d:e6:e0:a8:4a:dd:81:b6:d1:57:56:a7:fb:23:9a:5f:36:30:
1f:43:dc:3f:76:b5:70:f3:7d:3b:02:68:f6:8c:a3:83:cb:43:
9c:a7:67:fa:15:62:db:4d:96:7f:ba:56:ab:05:15:c8:5a:09:
7b:4b:51:9f:ee:12:44:c7:1b:09:98:97:26:0a:08:d4:ff:2d:
d1:d9:e9:67:34:04:40:dc:95:30:52:b0:2b:2c:84:37:14:f1:
53:73:e9:16:b4:2c:de:6e:fc:67:14:3d:6c:4c:e0:ef:58:5a:
3f:9b:d5:d5:f4:6c:1d:4d:e1:a9:a6:e8:54:a1:39:46:eb:c3:
49:82:2c:ec:8e:51:84:f4:3f:bd:ae:a7:1a:0d:f9:7d:8d:92:
4c:f2:49:f1:e0:bf:ef:ac:f0:aa:4f:c4:7c:71:0f:00:12:8d:
40:35:1c:1b:87:d3:51:df:55:6a:6b:6d:cf:72:48:c3:f7:55:
77:28:6e:15:6f:a2:7c:0e:7e:df:e0:4f:6d:f7:a8:94:fc:e5:
83:b3:08:fd:03:aa:03:53:bc:2b:93:b7:0b:e8:d9:b3:ae:6e:
87:fb:fb:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:27:44 2025 by rpki-client