Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/fIOo70LjJ4khdnjc4ikZhFcJ1yA.roa
File: fIOo70LjJ4khdnjc4ikZhFcJ1yA.roa (raw, json)
Hash identifier: Zq7c9IuYHvbg6AN0E/s5Efwh4g5hTWGJ2kJxFgY9aII=
Subject key identifier: 7C:83:A8:EF:42:E3:27:89:21:76:78:DC:E2:29:19:84:57:09:D7:20
Certificate issuer: /CN=7e39825b26775e1551072f457d1edfd9d0ebe2df
Certificate serial: 35CD326E
Authority key identifier: 7E:39:82:5B:26:77:5E:15:51:07:2F:45:7D:1E:DF:D9:D0:EB:E2:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fjmCWyZ3XhVRBy9FfR7f2dDr4t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/fIOo70LjJ4khdnjc4ikZhFcJ1yA.roa
Signing time: Sat 01 Jan 2022 01:59:38 +0000
ROA not before: Sat 01 Jan 2022 01:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61335
IP address blocks: 2a03:5a00:17::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902640238 (0x35cd326e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e39825b26775e1551072f457d1edfd9d0ebe2df
Validity
Not Before: Jan 1 01:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c83a8ef42e32789217678dce22919845709d720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cb:53:88:d0:8c:bf:53:c0:5b:2d:ba:5e:4a:
24:89:64:81:71:34:30:d1:5f:6e:94:5d:1e:a0:6b:
13:6c:26:9f:d0:94:77:ef:d9:bd:42:77:47:7c:07:
21:73:3c:64:76:43:1c:fd:2e:e5:f9:b9:71:d9:67:
6c:51:57:c3:8d:b6:c7:5e:73:4e:a3:8f:94:75:d5:
cc:b6:d6:a6:5d:09:44:ab:84:4e:5a:58:02:6b:72:
00:63:eb:d8:e3:0f:91:d3:6b:12:67:1b:0b:d0:0c:
b1:f2:98:1e:69:60:2f:e7:c7:b9:bd:de:a4:e9:47:
9a:6d:8e:79:35:24:41:41:b8:b8:fe:08:2b:e2:80:
b7:3c:9f:99:fb:21:4b:96:14:fe:bd:77:9a:88:08:
2a:10:fe:1c:75:5a:7d:2b:05:07:8b:9e:e5:75:10:
a6:b8:c8:59:75:64:fa:20:a5:65:91:e3:67:84:08:
4b:e4:1f:18:91:51:35:47:fa:38:17:89:c6:dc:59:
21:c7:f6:2d:f2:c0:6c:32:02:d4:1b:e9:4a:b2:8e:
ac:bf:ac:b9:9f:4b:30:28:56:b3:de:3c:5e:1f:ae:
af:06:eb:e7:ea:ec:05:8a:35:04:46:8c:0d:24:6e:
cb:87:29:ea:d8:dd:11:78:ee:a0:07:62:1a:9c:09:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:83:A8:EF:42:E3:27:89:21:76:78:DC:E2:29:19:84:57:09:D7:20
X509v3 Authority Key Identifier:
keyid:7E:39:82:5B:26:77:5E:15:51:07:2F:45:7D:1E:DF:D9:D0:EB:E2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fjmCWyZ3XhVRBy9FfR7f2dDr4t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/fIOo70LjJ4khdnjc4ikZhFcJ1yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/fjmCWyZ3XhVRBy9FfR7f2dDr4t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5a00:17::/48
Signature Algorithm: sha256WithRSAEncryption
a0:8d:bc:10:35:1c:3f:58:bb:c2:86:3c:c6:e6:51:72:3a:36:
da:58:11:97:7c:03:89:be:f5:81:e5:57:b9:34:be:60:e5:81:
b1:99:54:e1:fe:86:e2:b6:15:e0:9e:39:79:8f:08:ce:68:a7:
4a:81:1a:bb:04:30:49:f9:c6:2d:7f:bc:e8:5e:55:d5:54:a6:
a2:b8:14:10:a4:12:57:02:92:ed:57:3d:4e:09:eb:1a:49:b7:
5a:58:8b:f2:a0:2c:b6:32:54:cc:2a:f1:42:a2:31:76:c0:44:
be:eb:f7:48:54:cd:23:5a:ea:a9:25:06:98:46:6c:42:91:d1:
1e:82:5d:33:9e:56:08:da:2b:14:cc:e0:36:52:35:2e:5b:18:
14:6b:64:f6:ae:58:10:e9:dd:c2:87:41:ca:6b:1c:79:3f:6a:
15:ce:e7:e7:0e:63:3e:4b:3a:d2:37:e1:b3:c5:94:57:c7:6b:
7d:b1:0b:5b:d9:e6:01:b4:1c:f8:e6:df:56:02:6d:52:a8:32:
2b:9e:78:11:2e:0e:e7:00:bc:31:bd:65:9d:87:22:3c:a6:c5:
fc:ec:92:71:59:57:a1:d8:d9:d5:77:5f:cc:5f:3f:a3:2c:ab:
1e:6b:58:f6:6f:8c:74:7b:85:ed:2c:6f:4e:6d:be:5e:41:e0:
83:cf:11:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 19:22:35 2025 by rpki-client