Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/zUiAeGfpL-Uv7O-lpLJPV3LfBzg.roa
File: zUiAeGfpL-Uv7O-lpLJPV3LfBzg.roa (raw, json)
Hash identifier: HdSE3JYMtI3KVV5oGDNnU5zFoEo7U2yh+HwCZ5CSPIo=
Subject key identifier: CD:48:80:78:67:E9:2F:E5:2F:EC:EF:A5:A4:B2:4F:57:72:DF:07:38
Certificate issuer: /CN=7e39825b26775e1551072f457d1edfd9d0ebe2df
Certificate serial: 01856D5CFC3D7B3DEB8715DBCD00871F819C
Authority key identifier: 7E:39:82:5B:26:77:5E:15:51:07:2F:45:7D:1E:DF:D9:D0:EB:E2:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fjmCWyZ3XhVRBy9FfR7f2dDr4t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/zUiAeGfpL-Uv7O-lpLJPV3LfBzg.roa
Signing time: Sun 01 Jan 2023 12:44:48 +0000
ROA not before: Sun 01 Jan 2023 12:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61335
IP address blocks: 2a03:5a00:17::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5c:fc:3d:7b:3d:eb:87:15:db:cd:00:87:1f:81:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e39825b26775e1551072f457d1edfd9d0ebe2df
Validity
Not Before: Jan 1 12:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd48807867e92fe52fecefa5a4b24f5772df0738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bb:52:c4:dd:d5:8a:fb:dd:43:9a:04:93:91:
6e:ac:5d:2d:2e:50:38:0b:56:e0:12:e0:43:3e:68:
02:c4:3b:71:63:c0:f1:6b:ca:e8:ea:a2:84:fc:67:
1d:1f:88:47:16:db:27:71:99:2d:44:ae:0d:a9:8c:
5b:12:d0:83:f7:70:ad:e1:f3:8e:a9:5d:7a:d7:35:
06:5c:ff:2d:b6:f2:1a:39:26:cf:ac:88:d1:bc:6c:
6e:73:26:a0:cc:dc:02:32:b8:6b:fd:3a:96:38:f4:
09:c0:09:3f:88:fb:a6:ae:01:c4:1c:65:a3:6f:33:
01:dd:dc:a9:15:c7:1a:b9:53:d1:e2:68:ee:7d:fb:
60:30:29:24:f0:9a:87:5d:d4:17:57:62:cd:0c:47:
41:78:c0:04:9d:37:90:5c:b9:0d:40:71:80:f3:e1:
50:d6:9b:15:32:c6:b2:6a:1f:1c:6a:ae:cb:2a:36:
7c:07:09:7d:af:f3:da:61:44:d8:ed:33:89:e7:2a:
e2:39:05:43:d8:af:bc:b7:7d:c7:76:2b:c4:35:9c:
25:87:fa:e8:eb:ad:8d:64:b0:78:28:7d:95:56:ef:
a0:65:82:ca:de:53:42:1c:e5:72:46:76:4d:24:10:
3a:e5:48:8e:6c:da:80:7e:20:a8:a3:fb:05:36:89:
ed:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:48:80:78:67:E9:2F:E5:2F:EC:EF:A5:A4:B2:4F:57:72:DF:07:38
X509v3 Authority Key Identifier:
keyid:7E:39:82:5B:26:77:5E:15:51:07:2F:45:7D:1E:DF:D9:D0:EB:E2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fjmCWyZ3XhVRBy9FfR7f2dDr4t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/zUiAeGfpL-Uv7O-lpLJPV3LfBzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2166a8-357c-4cf6-b6f2-f8d6d1a74b1d/1/fjmCWyZ3XhVRBy9FfR7f2dDr4t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5a00:17::/48
Signature Algorithm: sha256WithRSAEncryption
62:03:10:86:91:2b:76:12:24:1f:27:46:90:f0:fc:a0:98:f5:
29:3b:d0:a6:3c:14:b2:48:8f:58:55:50:9f:fb:e1:81:cb:c0:
0e:95:c3:ff:07:9d:42:eb:40:fa:21:dd:f1:a9:08:e4:79:27:
39:79:90:12:35:0f:0f:9a:b6:31:b1:8d:47:27:5f:a8:eb:44:
e7:68:60:1e:c9:bc:30:30:92:4f:8d:07:ee:77:95:53:ce:2f:
dc:8a:b6:31:8a:11:fa:b1:b0:14:8d:0c:8c:80:25:93:c9:19:
bb:bb:f7:b3:7e:63:da:81:b7:41:d6:79:97:1c:ad:83:8f:a3:
ed:d5:33:c7:5e:32:b6:40:30:f9:f8:f1:47:3a:dc:a0:52:16:
b5:99:ed:9b:6c:d7:ee:cf:2a:f2:de:4a:0b:a1:46:2e:5f:cb:
95:93:01:4e:8c:14:36:52:41:3b:56:29:3d:32:f9:fd:1d:21:
c1:ec:9c:26:0f:13:16:67:12:2a:04:a6:01:95:80:ab:5a:51:
27:3b:e0:47:19:c7:16:36:9f:51:42:88:f1:64:d8:41:a3:4d:
2a:a0:8b:3a:34:57:9b:5e:b3:5c:22:3a:b3:01:da:5c:cf:75:
59:70:77:43:31:9b:3f:25:09:69:3a:8b:47:02:b8:86:46:4d:
49:3f:79:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 19:54:11 2025 by rpki-client