Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/rVn94E4Aa3-N4tmmJg1hI5xXMi0.roa
File: rVn94E4Aa3-N4tmmJg1hI5xXMi0.roa (raw, json)
Hash identifier: ++ddr5+muiH/yDcuZoYSQj0LTu3nI/KlP5zOU4vNJrU=
Subject key identifier: AD:59:FD:E0:4E:00:6B:7F:8D:E2:D9:A6:26:0D:61:23:9C:57:32:2D
Certificate issuer: /CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Certificate serial: 193E2085
Authority key identifier: 03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/rVn94E4Aa3-N4tmmJg1hI5xXMi0.roa
Signing time: Sat 01 Jan 2022 11:02:52 +0000
ROA not before: Sat 01 Jan 2022 11:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9199
IP address blocks: 2a04:7580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 423501957 (0x193e2085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Validity
Not Before: Jan 1 11:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad59fde04e006b7f8de2d9a6260d61239c57322d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:75:ee:48:6f:71:73:17:a1:f7:d0:2e:27:38:
99:24:07:03:7e:e2:f7:1b:ba:08:ee:67:91:db:dd:
e8:66:df:c5:35:b7:67:95:53:36:a8:91:7a:b7:70:
c7:82:3d:7b:08:dc:38:1c:86:c2:a4:cb:33:e3:23:
ac:f2:ff:33:ba:ca:22:47:79:5f:da:9d:1d:89:ff:
37:e8:1f:06:bd:48:68:56:41:e7:d9:d1:43:0c:ea:
7b:96:35:d9:e4:4b:22:5a:dd:25:4e:db:85:8a:80:
44:d9:34:b7:53:63:9b:96:c9:fd:2a:7b:37:59:d3:
19:27:b6:c2:b1:5b:b1:7b:8f:e7:87:e0:c7:d3:8d:
2d:95:8c:02:34:21:19:cd:d9:32:69:67:c4:36:ba:
20:46:fb:20:80:a0:06:0f:0a:01:ff:ba:a0:53:86:
f9:05:6f:0c:e3:68:f2:74:57:e9:e7:99:7b:4d:09:
85:48:e3:0a:e1:83:a8:30:e0:33:2d:ee:59:14:b4:
d9:30:94:76:8f:58:36:aa:95:b6:28:d1:9c:37:12:
b8:37:35:20:76:78:5f:0b:b5:22:af:6c:ef:15:02:
4f:ab:f1:df:67:f8:e6:ce:bf:5b:ad:07:11:75:77:
8e:a7:1b:07:d8:ad:ec:87:c9:43:e1:44:d4:d5:0b:
e2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:59:FD:E0:4E:00:6B:7F:8D:E2:D9:A6:26:0D:61:23:9C:57:32:2D
X509v3 Authority Key Identifier:
keyid:03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/rVn94E4Aa3-N4tmmJg1hI5xXMi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/A0sO7SxaeHrYf7SfBNP989D0nUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:7580::/29
Signature Algorithm: sha256WithRSAEncryption
a1:ab:ef:d0:c6:71:f9:1d:d9:f5:39:e0:37:ca:ae:dd:b5:da:
ff:6a:5f:25:8b:12:d6:ce:61:f4:6e:4d:ec:df:99:3f:f5:1d:
14:6b:3d:f8:af:01:98:75:5d:38:98:9c:91:39:29:96:6e:9a:
b4:df:b7:fe:9a:01:0f:63:af:4b:07:23:d4:64:65:a7:56:62:
1b:24:0a:f3:23:b2:71:be:31:c9:7b:00:ea:a8:d8:34:b6:19:
83:08:75:2c:07:fc:b9:d5:f4:25:43:73:83:06:41:df:8e:7b:
45:19:52:7d:8d:fa:a6:e3:38:2b:a1:ac:43:5e:22:35:03:b0:
7a:b0:72:73:f8:c9:06:51:42:1d:d5:f7:dd:e6:07:40:bf:39:
c9:78:b9:26:3c:70:ef:b9:e6:6a:51:34:21:eb:25:b5:0f:03:
c9:21:80:ef:a0:1d:d5:00:2a:24:a5:61:ff:2a:51:ce:d3:ca:
da:fd:73:5d:cb:ca:76:87:49:a3:27:7a:dc:06:65:26:d0:a4:
06:11:9f:d6:ae:8b:40:8f:3a:b6:72:b8:6d:ca:71:0a:22:4e:
d5:fb:81:23:1d:15:4d:05:c4:d6:8a:33:b1:cb:0c:d7:e2:de:
2c:92:b1:5d:85:2e:f5:7b:74:77:93:f1:ac:23:62:94:5c:5e:
7d:92:45:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:18 2025 by rpki-client