Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/75iNjWVG8lVPVQrUCV4AuI1j_Vw.roa
File: 75iNjWVG8lVPVQrUCV4AuI1j_Vw.roa (raw, json)
Hash identifier: CBAyVV5lrG3EeqRyeTlxkoaxN8rj/tLIv8xn03qIxFg=
Subject key identifier: EF:98:8D:8D:65:46:F2:55:4F:55:0A:D4:09:5E:00:B8:8D:63:FD:5C
Certificate issuer: /CN=4c81273dcb03c3457b79250be109e19a5e74f0fd
Certificate serial: 0189256174E6E9D6FC255D942A8EDDA9E7D5
Authority key identifier: 4C:81:27:3D:CB:03:C3:45:7B:79:25:0B:E1:09:E1:9A:5E:74:F0:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIEnPcsDw0V7eSUL4Qnhml508P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/75iNjWVG8lVPVQrUCV4AuI1j_Vw.roa
Signing time: Wed 05 Jul 2023 09:28:11 +0000
ROA not before: Wed 05 Jul 2023 09:28:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:85c0::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:61:74:e6:e9:d6:fc:25:5d:94:2a:8e:dd:a9:e7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c81273dcb03c3457b79250be109e19a5e74f0fd
Validity
Not Before: Jul 5 09:28:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef988d8d6546f2554f550ad4095e00b88d63fd5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:14:b7:d7:9b:34:fb:94:e8:97:1f:db:e2:9e:
b2:da:1c:70:51:d4:6e:6b:e7:08:1c:04:a9:3b:c1:
43:55:68:27:46:98:0e:32:4e:2f:97:ce:40:56:51:
24:ff:c6:29:2a:da:b0:97:1f:d1:6f:ff:cb:d8:49:
d6:65:24:1c:cb:e8:19:66:de:53:8f:b7:e1:2a:1b:
7d:a2:48:1d:32:ba:bd:47:b5:c1:d9:58:c2:27:f5:
b1:3f:7a:99:6f:93:a9:57:3f:3b:53:6c:09:63:ee:
b1:c2:67:fd:db:8f:40:83:dc:8b:6c:80:36:7e:60:
bb:ed:92:a2:f7:b7:e3:63:32:3c:f3:ad:5d:c2:c5:
b2:74:ec:24:a5:c7:6f:81:58:4b:6e:8c:ce:bb:ce:
88:b2:dc:8c:82:30:4b:cb:f9:87:27:e7:63:32:b4:
26:57:f9:24:40:4f:39:f9:84:f6:9e:14:2c:7a:04:
9d:70:dc:c4:8c:ab:ad:72:3a:9f:15:12:63:41:9c:
28:f7:7c:eb:36:37:e5:1b:69:87:02:6b:23:f2:85:
d3:ac:37:7e:7c:88:d8:3d:a6:27:a1:46:0e:c8:aa:
49:ec:55:10:b9:20:6a:fd:53:07:06:78:90:70:c2:
f2:b0:d4:b3:92:68:e6:12:fa:c7:5f:3e:d8:f5:9e:
b1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:98:8D:8D:65:46:F2:55:4F:55:0A:D4:09:5E:00:B8:8D:63:FD:5C
X509v3 Authority Key Identifier:
keyid:4C:81:27:3D:CB:03:C3:45:7B:79:25:0B:E1:09:E1:9A:5E:74:F0:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIEnPcsDw0V7eSUL4Qnhml508P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/75iNjWVG8lVPVQrUCV4AuI1j_Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/TIEnPcsDw0V7eSUL4Qnhml508P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:85c0::/40
Signature Algorithm: sha256WithRSAEncryption
96:67:2c:cb:88:0e:e9:6f:83:d1:9f:e4:d0:cd:dd:79:cc:d0:
37:31:8c:b4:83:da:46:37:91:5f:2d:20:c0:43:03:6c:da:28:
7a:7b:ec:6d:b5:1e:cf:bc:06:2c:31:7d:79:ca:02:86:44:b2:
22:90:2c:54:5f:f0:ab:7c:f5:b5:b6:fc:3f:c9:91:1d:b1:4b:
af:46:69:b3:db:97:ff:4b:54:91:9d:d8:4d:55:e3:13:21:1e:
95:3d:1a:c2:69:e5:14:16:79:6a:ae:00:c1:bc:2e:19:47:73:
76:c7:ad:1c:51:8a:c2:2c:8f:a7:40:aa:87:6e:e7:54:6b:16:
90:80:11:5d:24:e5:e7:5f:9b:82:f9:53:d6:1c:c4:99:d7:25:
2b:3b:8e:e9:7d:f5:90:da:f7:d6:00:e7:b4:29:a1:7e:94:3e:
15:d3:1c:78:b8:65:0f:a0:8e:07:c5:92:f3:46:78:f1:db:a1:
a7:61:fe:d6:77:36:e8:c7:eb:ae:0d:34:50:b1:17:49:e4:00:
04:d9:94:b3:8c:f0:00:4b:c0:c3:63:51:c2:ed:44:ff:5c:fd:
92:f7:78:34:ba:32:57:e3:40:f9:2c:b5:4d:58:31:2c:f4:7d:
41:3a:d3:c7:bf:c4:59:db:bf:c9:7b:be:b5:27:c4:b6:d1:1b:
82:dd:66:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:15 2025 by rpki-client