Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/dfgMYstLCD97q7k4_Y6qkQI_Ev0.roa
File: dfgMYstLCD97q7k4_Y6qkQI_Ev0.roa (raw, json)
Hash identifier: okdKi4j6Bwmt/ccH2SUzk7laelupVQmv40qBa2SfAQM=
Subject key identifier: 75:F8:0C:62:CB:4B:08:3F:7B:AB:B9:38:FD:8E:AA:91:02:3F:12:FD
Certificate issuer: /CN=eeb59b791c7a11d232a95c7ef169285caea695bc
Certificate serial: 018C83EDEA7353BD77BFC34FBD57EC6A33F1
Authority key identifier: EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/dfgMYstLCD97q7k4_Y6qkQI_Ev0.roa
Signing time: Tue 19 Dec 2023 21:14:16 +0000
ROA not before: Tue 19 Dec 2023 21:14:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24641
IP address blocks: 2a02:6c20:819::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:83:ed:ea:73:53:bd:77:bf:c3:4f:bd:57:ec:6a:33:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeb59b791c7a11d232a95c7ef169285caea695bc
Validity
Not Before: Dec 19 21:14:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75f80c62cb4b083f7babb938fd8eaa91023f12fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0f:9c:47:27:76:33:f3:f7:f3:0f:27:3b:d8:
cf:31:03:44:47:2a:14:3e:d7:9e:09:a9:75:b1:eb:
d5:1b:99:a1:6e:15:50:9f:9a:a3:8f:6e:95:32:bd:
78:0f:b6:8f:b6:5f:49:65:a1:68:88:7f:cc:e6:0d:
29:82:03:4e:df:8a:e6:85:52:53:56:a2:cd:1b:df:
99:31:9c:07:15:df:f1:2b:5d:53:42:4a:1e:4f:28:
3f:35:bc:49:70:c8:20:a1:75:5d:14:48:c6:8d:bb:
2b:7f:72:c0:9e:4f:f9:74:28:71:1c:5c:62:b3:84:
1c:af:e3:96:14:99:91:e1:8a:53:6c:b1:11:d6:6a:
c7:02:91:18:50:5d:11:ef:dc:a6:92:ea:14:b9:8c:
60:30:a4:bb:15:7c:e4:03:03:75:41:90:6a:5e:2f:
17:d3:6d:47:e2:4c:c5:b3:09:94:59:b9:1c:33:b1:
09:4a:cf:27:87:87:7d:13:e7:54:4b:2a:28:f4:73:
87:b5:bd:31:45:72:d6:cc:23:c7:c0:e5:4c:4a:cf:
22:9b:33:d5:1f:70:95:84:c6:66:cc:4b:fd:95:41:
fd:af:1a:d6:bf:ae:9d:d5:f8:ff:68:79:6b:83:17:
2d:25:0f:7a:3e:30:9e:ef:7a:2f:e8:82:43:1c:45:
ef:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F8:0C:62:CB:4B:08:3F:7B:AB:B9:38:FD:8E:AA:91:02:3F:12:FD
X509v3 Authority Key Identifier:
keyid:EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/dfgMYstLCD97q7k4_Y6qkQI_Ev0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:6c20:819::/48
Signature Algorithm: sha256WithRSAEncryption
35:bd:74:d6:c2:83:5d:e0:ef:6d:56:14:1f:f7:3c:3d:38:0f:
54:c2:7d:e5:50:79:dd:e3:ec:37:e3:74:de:ca:ff:b8:c9:98:
99:1b:55:2a:27:72:37:d3:6b:2f:76:3b:14:3e:77:45:d7:bc:
61:69:bf:3d:29:89:cf:e7:86:2b:c3:ce:3e:b4:0b:d2:6f:b2:
71:fe:80:36:b4:ef:a2:18:e3:dc:22:65:9b:cc:73:95:e0:c0:
3b:b1:22:04:22:44:2b:f8:e9:9e:21:4d:25:8b:aa:53:ed:ab:
1d:5b:bd:e7:8d:8d:a2:b8:33:77:9e:f9:1f:58:b1:b3:15:c2:
0a:4e:59:50:f9:e5:5f:33:08:db:da:dd:07:90:6e:72:6f:ce:
2f:b3:35:cc:64:41:32:79:4f:bd:33:de:10:61:b7:b6:14:95:
fb:4f:44:48:2b:ef:e4:3f:e3:6a:01:61:ba:65:26:da:95:12:
25:e4:7a:c0:2b:31:54:a1:c3:24:64:d9:ac:a4:ad:15:5a:f6:
a8:1f:1d:8e:63:e5:a5:a1:a3:55:13:cb:66:10:e6:4e:23:8a:
84:bc:84:6f:b2:28:5e:76:74:80:5b:24:b9:36:92:b8:74:09:
51:94:6d:38:8d:c4:36:8c:3e:e6:8d:30:c4:aa:ef:20:8f:2d:
b1:ae:77:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:57:51 2025 by rpki-client