Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/4MoYmaSgWrH5xUsUwWkF51kBFY8.roa
File: 4MoYmaSgWrH5xUsUwWkF51kBFY8.roa (raw, json)
Hash identifier: Gv5qARZHRnQandTMMdMSLZ7ltRpc4Q9NwWX6d9g7Vso=
Subject key identifier: E0:CA:18:99:A4:A0:5A:B1:F9:C5:4B:14:C1:69:05:E7:59:01:15:8F
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 0759C7E3
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/4MoYmaSgWrH5xUsUwWkF51kBFY8.roa
Signing time: Sat 01 Jan 2022 04:57:15 +0000
ROA not before: Sat 01 Jan 2022 04:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60707
IP address blocks: 2a0f:6580:106::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123324387 (0x759c7e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 04:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0ca1899a4a05ab1f9c54b14c16905e75901158f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e1:e4:97:4d:40:f1:30:ae:46:bc:40:33:b1:
3d:66:dc:ef:01:1e:0f:e4:a3:a4:3c:9b:95:10:3d:
9e:91:a8:a6:c1:a3:fb:fb:c3:02:dc:2d:b3:da:06:
6e:c2:d1:13:5d:62:f4:30:0a:48:e1:5a:b4:12:b8:
3b:84:bc:21:d7:a4:4d:74:85:b4:9a:bb:65:19:67:
2e:6e:3b:a3:91:62:b9:00:17:78:2b:d4:7b:56:2d:
5d:6e:ab:fe:8e:71:0d:4b:08:5d:5e:a0:8e:d4:3b:
2f:ad:33:a5:c3:74:b0:ad:21:35:b9:6c:4c:d6:85:
b1:c3:f6:61:68:10:d9:6c:54:95:a3:6d:da:0c:74:
3a:60:6c:30:a8:62:cb:5c:ac:67:f8:8a:ff:c5:49:
50:8e:cc:1f:59:42:4e:12:69:d2:a7:d8:39:69:b5:
eb:59:b5:ec:3d:a1:2c:17:5f:9b:90:98:13:44:c7:
12:60:b7:8a:c3:aa:32:46:0a:d2:c8:4e:2d:2d:49:
db:43:39:e4:45:9a:46:18:c5:37:51:bf:7e:9a:46:
27:54:f8:f7:89:ef:af:87:67:f9:d0:ac:52:3c:09:
cf:e6:11:6b:c1:42:08:e0:b6:67:e9:b2:f0:74:6f:
75:fd:7b:6c:16:25:5f:5f:0f:bd:ac:fc:bf:32:a7:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:CA:18:99:A4:A0:5A:B1:F9:C5:4B:14:C1:69:05:E7:59:01:15:8F
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/4MoYmaSgWrH5xUsUwWkF51kBFY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6580:106::/48
Signature Algorithm: sha256WithRSAEncryption
13:a1:39:e4:e8:cb:a3:85:8b:30:04:62:2f:ea:1f:48:51:8e:
4f:0a:aa:74:42:d1:0e:7d:e2:e0:12:f3:f3:eb:3b:68:f4:38:
b3:52:c6:7d:fd:27:4f:bc:c0:7e:a1:55:5f:e1:03:79:89:c2:
dc:6d:3a:86:16:be:53:85:11:48:f2:b7:ed:21:c0:6f:85:a8:
40:50:ef:b4:45:fb:42:ad:21:91:62:16:b9:2e:e6:f9:34:22:
7a:00:5d:7f:fd:7a:5f:17:a0:04:08:02:06:85:51:a1:97:b1:
b5:24:ce:6f:0b:16:2a:99:b7:73:78:9a:8e:76:72:a3:a8:52:
63:2a:41:d7:e2:bd:97:64:87:58:11:09:dc:56:69:5f:74:dc:
62:a2:08:e9:13:e9:99:a1:5c:6d:e9:97:c3:66:ed:16:7b:83:
01:97:28:29:05:20:18:e7:a5:c2:17:78:73:ce:fd:6c:1c:36:
d4:8b:8d:69:30:4e:cc:63:e5:a9:ca:c9:ad:6d:2b:db:0f:bd:
dc:0a:8f:2f:83:4d:95:b4:04:fe:c7:9c:d1:04:00:34:36:d2:
d5:9a:ef:f2:9d:c4:e4:f4:51:49:f7:9f:9b:eb:41:8b:b9:8c:
16:56:6b:60:fd:d3:59:cf:6c:0d:6e:d0:4f:68:01:77:23:19:
c6:33:a7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:18 2025 by rpki-client