Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/e9OppV8ave4F-pDkT6-UjlX8uxw.roa
File: e9OppV8ave4F-pDkT6-UjlX8uxw.roa (raw, json)
Hash identifier: AJJLy1h0PZ8VeVIE7lImj1etUke4vxF60D2Jxjr036s=
Subject key identifier: 7B:D3:A9:A5:5F:1A:BD:EE:05:FA:90:E4:4F:AF:94:8E:55:FC:BB:1C
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 01F9EA
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/e9OppV8ave4F-pDkT6-UjlX8uxw.roa
Signing time: Tue 22 Feb 2022 22:59:28 +0000
ROA not before: Tue 22 Feb 2022 22:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56662
IP address blocks: 2001:67c:21ec::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129514 (0x1f9ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Feb 22 22:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bd3a9a55f1abdee05fa90e44faf948e55fcbb1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b5:f4:94:5b:be:2c:16:5b:6e:fd:c2:34:e5:
53:7b:64:b5:35:16:b0:46:48:85:cc:64:8f:80:9a:
cf:95:35:47:84:2d:5e:e8:00:c7:e7:0c:a6:9b:fe:
d0:fe:15:82:c5:23:81:ca:d2:ee:e7:e9:af:fe:f7:
ba:a7:a6:31:2e:91:85:5c:77:c8:b9:24:f5:5b:9d:
ab:ec:56:50:ea:d2:f5:c8:96:a5:37:eb:96:60:da:
17:0b:11:97:b7:e0:6f:03:25:bd:35:ee:ef:dd:59:
fe:95:8f:24:fd:f4:7c:09:39:06:14:fa:bb:3f:9a:
c9:87:ae:32:5e:7e:a2:b5:10:60:82:b2:5b:38:db:
62:3c:32:b1:dd:e8:39:c4:d5:e5:3c:05:7b:ce:33:
0c:b4:7e:91:d4:26:0b:3c:da:2f:e3:41:77:f1:3d:
59:b7:02:d3:99:9c:fa:8b:16:dd:b8:d3:33:cc:d6:
99:d8:71:c7:06:09:90:28:d4:8f:73:77:6d:e2:1b:
0a:7b:1a:e4:c7:c9:e6:22:51:97:42:24:d7:f8:75:
f5:c2:f7:ad:a6:4e:17:ba:ad:a8:9f:c5:cb:db:e8:
f4:16:9b:73:1e:c7:f2:56:c7:56:2f:95:10:23:6c:
db:88:c4:60:49:c9:cd:db:e9:39:0d:fe:42:31:6f:
db:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D3:A9:A5:5F:1A:BD:EE:05:FA:90:E4:4F:AF:94:8E:55:FC:BB:1C
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/e9OppV8ave4F-pDkT6-UjlX8uxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:21ec::/48
Signature Algorithm: sha256WithRSAEncryption
8d:26:47:12:7e:60:05:3d:c4:8a:40:b8:83:30:89:72:c6:f2:
9b:9e:1f:ee:09:be:9e:44:21:8a:02:8f:95:73:c8:84:bd:a6:
ba:74:af:27:5a:6e:4a:79:d5:f7:2a:ed:84:ec:76:e1:a0:b4:
16:5b:5f:8c:4b:45:05:41:86:8a:54:08:c2:92:c5:44:a2:1d:
29:f8:21:06:d2:96:25:90:5c:16:0a:33:5e:46:6e:05:ad:4c:
50:65:3d:c2:f5:53:f1:77:d9:ba:b3:f5:c6:49:3d:ed:94:23:
46:57:5d:5b:ef:c3:ed:68:61:c4:f3:00:77:5d:8c:76:24:26:
b3:fe:51:31:bf:a5:56:76:4e:7e:60:f8:a5:75:1b:4e:be:e2:
a9:99:fa:12:33:0a:f1:90:77:25:ba:98:13:b9:04:10:8a:08:
03:be:63:3e:3e:e7:c4:73:4b:2d:0c:b0:9a:b8:2e:49:69:00:
26:97:f3:29:cc:d5:94:1b:42:68:2b:a9:29:89:fc:f8:cc:68:
54:64:20:62:9e:44:36:37:2d:d7:5c:08:90:00:46:81:39:51:
11:ec:0c:cc:80:ff:96:3a:b9:e0:86:15:45:74:b8:4e:1a:46:
e5:d8:1b:29:37:9f:58:e2:60:86:3c:c3:d8:bb:d3:78:96:bb:
66:6a:9c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:39:57 2025 by rpki-client