Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/eTaRJbBSmdXz_BO96Ub16tsiP0w.roa
File: eTaRJbBSmdXz_BO96Ub16tsiP0w.roa (raw, json)
Hash identifier: 3DZz0F9Pr9j9FB5tvnXygA8MghysdvmTNxWaK1K6kic=
Subject key identifier: 79:36:91:25:B0:52:99:D5:F3:FC:13:BD:E9:46:F5:EA:DB:22:3F:4C
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 0183D8D4EDB0823DBABA3F6E8787B909CC40
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/eTaRJbBSmdXz_BO96Ub16tsiP0w.roa
Signing time: Fri 14 Oct 2022 23:29:36 +0000
ROA not before: Fri 14 Oct 2022 23:29:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202348
IP address blocks: 2a13:141:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d8:d4:ed:b0:82:3d:ba:ba:3f:6e:87:87:b9:09:cc:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Oct 14 23:29:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79369125b05299d5f3fc13bde946f5eadb223f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:fe:19:21:11:fa:ce:07:c2:ea:54:7a:4b:
93:bf:9c:9b:35:cb:bf:1e:fd:d6:f8:21:fd:38:7c:
fc:f9:da:ff:29:64:6a:32:72:57:0c:10:21:d1:24:
01:7b:8e:f7:cf:aa:8d:84:47:64:b8:50:1e:e8:6f:
8c:4e:44:24:47:f2:7e:b2:59:2e:f7:1c:ae:9b:b1:
3f:16:41:b9:66:e1:29:28:ca:bb:1a:82:b3:1d:40:
2f:33:02:60:fa:9b:c0:58:ca:06:e4:c9:02:95:9c:
2e:60:d7:76:6c:bb:d1:ee:a3:14:40:cc:53:33:14:
a2:91:0e:c4:2e:98:7c:9c:bd:5e:03:8d:f2:f1:f8:
ae:83:01:b0:95:db:53:51:e5:32:87:03:19:45:f5:
ea:c7:f8:76:86:aa:26:6a:f8:f2:b0:28:8e:26:2a:
7a:62:4f:4a:93:c5:bd:c4:f6:5d:81:8b:b7:5a:95:
a2:9f:fd:04:5a:69:f0:0d:65:c6:6f:c6:36:99:d6:
0b:7f:9b:ff:ac:27:b0:d7:54:70:58:8d:a0:07:5c:
fb:5c:08:d4:6d:a5:51:b9:6d:24:3d:60:4e:41:c7:
5f:7f:4a:de:4d:86:5c:64:e5:e6:e3:2f:bd:80:0b:
38:cf:6f:81:60:e4:98:aa:6b:5c:50:f8:08:1f:a7:
0a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:36:91:25:B0:52:99:D5:F3:FC:13:BD:E9:46:F5:EA:DB:22:3F:4C
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/eTaRJbBSmdXz_BO96Ub16tsiP0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:2::/48
Signature Algorithm: sha256WithRSAEncryption
48:ae:8d:38:3c:73:96:f7:f8:ea:6b:2d:77:f5:45:b1:b7:41:
79:e2:fb:d7:09:7d:73:bb:10:ee:4e:eb:de:d1:10:c9:bd:77:
34:9b:11:53:c4:32:cf:45:d7:7b:e7:61:a3:81:c9:7b:b8:fa:
2a:15:80:cb:5b:e1:03:ee:02:42:a3:c4:3c:c7:06:81:be:f7:
ee:99:b9:f2:d6:b1:b6:17:fe:4c:8d:21:8b:64:9a:bc:ab:75:
f9:f2:8b:3f:0a:b4:04:b1:65:8a:79:74:c7:d1:6d:b7:7d:b1:
9a:a6:ff:9b:fb:2f:d7:1e:76:99:7c:4d:6c:e8:56:b0:be:d5:
f7:e2:63:09:36:94:79:27:a4:9b:37:90:63:9b:f7:3e:63:de:
9b:78:e3:7b:86:e7:d8:a3:e0:cd:31:1a:eb:41:40:bd:74:81:
4f:fa:62:08:55:6a:2b:b7:d5:d3:f8:a2:a2:1c:55:3c:c8:4a:
d8:bb:b9:b6:8c:61:4d:2a:b7:d0:eb:aa:98:54:69:a2:36:25:
59:98:b7:8c:11:b4:ce:83:f5:34:f7:8b:55:6c:86:5d:c7:f8:
7d:f4:a8:7e:d9:1a:61:11:fd:9e:25:e9:a8:9b:78:8d:08:50:
d5:ae:8a:be:f7:0f:f7:31:33:a6:06:fb:5a:06:aa:03:64:1b:
91:60:fd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:35 2025 by rpki-client