Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e2067c-5366-49f7-ac93-c2cf453c3e2e/1/x7Og6Cel58CBE_EokNT5etg7EtM.roa
File: x7Og6Cel58CBE_EokNT5etg7EtM.roa (raw, json)
Hash identifier: uzjLv7G+0tgSEj8pYUsImodY1DlukUfjViXiLKVzf2M=
Subject key identifier: C7:B3:A0:E8:27:A5:E7:C0:81:13:F1:28:90:D4:F9:7A:D8:3B:12:D3
Certificate issuer: /CN=732944a8538355b2aec76645fd9494488ae702e7
Certificate serial: 01856FF0358D5F74ABC8860588D6E390A941
Authority key identifier: 73:29:44:A8:53:83:55:B2:AE:C7:66:45:FD:94:94:48:8A:E7:02:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cylEqFODVbKux2ZF_ZSUSIrnAuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e2067c-5366-49f7-ac93-c2cf453c3e2e/1/x7Og6Cel58CBE_EokNT5etg7EtM.roa
Signing time: Mon 02 Jan 2023 00:44:51 +0000
ROA not before: Mon 02 Jan 2023 00:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200559
IP address blocks: 2001:67c:2edc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:35:8d:5f:74:ab:c8:86:05:88:d6:e3:90:a9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=732944a8538355b2aec76645fd9494488ae702e7
Validity
Not Before: Jan 2 00:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7b3a0e827a5e7c08113f12890d4f97ad83b12d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:91:82:64:aa:df:c7:d4:39:36:23:a9:95:83:
ce:54:8e:7d:b6:9f:33:23:df:c5:2c:05:4b:a3:9c:
a1:50:97:e3:43:f5:0e:f5:60:c5:3a:4b:d6:75:54:
eb:84:cd:43:5e:f9:ec:82:a1:2c:36:27:c7:1e:1d:
f8:ef:08:44:82:ff:41:c9:1a:aa:15:a0:b0:65:29:
66:64:e8:cc:d2:1b:04:36:91:43:e0:f1:cb:00:9c:
03:cf:dd:68:f5:55:5b:bc:a0:61:7d:75:e6:f9:e1:
88:f7:b5:32:e1:e2:9e:1c:02:a0:f9:10:9f:fc:75:
3c:72:0f:fb:ff:00:c8:f7:a2:9d:ec:fa:f3:2f:ff:
e8:52:c0:84:ae:fb:57:d1:6b:6c:c7:ff:78:ae:f1:
f6:8f:29:2a:06:7a:e8:e3:23:1b:0d:61:16:8f:46:
f7:2d:f3:13:49:3c:fb:51:35:28:52:4f:e5:31:6d:
3d:1f:18:ed:9b:e9:71:18:29:67:93:90:6d:fb:7a:
80:89:e5:9b:f1:85:fc:ca:56:2e:df:14:9a:cc:8e:
8d:6b:61:22:7a:3b:25:ba:b8:f8:f7:26:86:1d:5a:
bc:f1:87:5c:5d:b8:38:59:d7:2b:c0:38:7e:29:3d:
85:6c:1b:95:32:44:28:3b:8c:5e:74:b6:e0:35:4e:
c9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B3:A0:E8:27:A5:E7:C0:81:13:F1:28:90:D4:F9:7A:D8:3B:12:D3
X509v3 Authority Key Identifier:
keyid:73:29:44:A8:53:83:55:B2:AE:C7:66:45:FD:94:94:48:8A:E7:02:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cylEqFODVbKux2ZF_ZSUSIrnAuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e2067c-5366-49f7-ac93-c2cf453c3e2e/1/x7Og6Cel58CBE_EokNT5etg7EtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e2067c-5366-49f7-ac93-c2cf453c3e2e/1/cylEqFODVbKux2ZF_ZSUSIrnAuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2edc::/48
Signature Algorithm: sha256WithRSAEncryption
ae:b5:e6:63:99:04:47:d5:32:be:c5:2a:e9:70:52:1b:ce:cf:
d8:56:c7:ef:49:d3:f4:80:7b:66:6c:df:34:c4:7c:5e:5b:9c:
30:21:97:62:e5:15:58:72:eb:45:da:d3:c0:0a:06:7c:c9:72:
6e:0d:66:53:9e:6b:18:20:1f:12:a0:b3:1e:bf:b0:31:f4:c9:
41:93:5e:d6:a3:cb:62:52:1d:91:70:ed:33:f7:2d:df:e3:47:
1e:7c:41:3a:b5:cd:80:b8:1c:94:59:a8:8e:8b:1d:cc:d6:8a:
e6:16:23:51:5a:96:cc:82:f9:85:6b:7e:09:e4:1d:7e:24:89:
6d:1a:a8:b1:e7:18:5f:c8:c0:25:6b:12:df:a1:3a:3b:f7:fd:
2e:70:94:01:61:de:a8:f4:1e:cf:49:6c:bb:5e:e0:de:1c:d5:
d0:e5:8a:19:7f:5e:48:80:4b:2f:be:d5:26:6b:c1:b1:26:90:
57:ce:03:bc:40:24:81:bb:b4:3c:4f:2a:a5:58:16:44:ec:ea:
4c:4e:f5:47:bf:07:28:94:7e:0d:98:c8:1d:a2:2f:65:1d:f7:
ec:21:3a:3b:33:cd:2c:59:ac:8c:6a:7d:8a:c0:ab:e7:98:52:
22:f2:47:33:c1:f8:55:21:ad:12:7d:3e:14:8c:69:f5:d1:43:
7e:7b:1a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:48 2025 by rpki-client