Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ec3284-3576-4ee4-93b8-1847cb88e83a/1/DVs-FJyKL3z9d2D4HmkmbWznCvc.roa
File: DVs-FJyKL3z9d2D4HmkmbWznCvc.roa (raw, json)
Hash identifier: 2/3FTdEmTQVwE8F6m9Z+hRzAwrVMoWo/6hHJEBVhIcY=
Subject key identifier: 0D:5B:3E:14:9C:8A:2F:7C:FD:77:60:F8:1E:69:26:6D:6C:E7:0A:F7
Certificate issuer: /CN=c2afc14dce450b05ec86c7c53070cd6bb6dbc7ee
Certificate serial: 01856F4B60D4F3E222B4C36843CE5CE1CDB5
Authority key identifier: C2:AF:C1:4D:CE:45:0B:05:EC:86:C7:C5:30:70:CD:6B:B6:DB:C7:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wq_BTc5FCwXshsfFMHDNa7bbx-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ec3284-3576-4ee4-93b8-1847cb88e83a/1/DVs-FJyKL3z9d2D4HmkmbWznCvc.roa
Signing time: Sun 01 Jan 2023 21:44:49 +0000
ROA not before: Sun 01 Jan 2023 21:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48809
IP address blocks: 2a05:36c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:60:d4:f3:e2:22:b4:c3:68:43:ce:5c:e1:cd:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2afc14dce450b05ec86c7c53070cd6bb6dbc7ee
Validity
Not Before: Jan 1 21:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d5b3e149c8a2f7cfd7760f81e69266d6ce70af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:90:73:1f:44:fa:ca:ad:fd:16:64:f5:08:4c:
c8:84:68:00:06:c0:3b:36:bf:9d:6c:82:3e:4c:13:
56:c4:2b:ed:4b:2d:22:49:75:c8:de:5a:98:9f:0f:
65:8c:ea:a1:d0:d0:a7:ae:bd:51:ad:9b:25:da:6e:
df:9c:91:c7:77:0e:58:d6:48:d2:95:2f:08:31:a1:
81:09:dd:21:55:88:ba:ae:d1:69:fa:de:00:18:c9:
7c:d3:84:47:ef:c5:be:80:ad:65:ed:0e:21:45:57:
00:30:7f:c0:de:ae:65:33:45:7c:3c:d3:78:95:e8:
cf:d5:41:94:a0:b0:5a:13:3e:0a:e1:a9:a6:9e:c9:
ff:66:f0:32:02:69:63:66:21:95:20:75:bc:34:ed:
b7:0b:f1:27:d0:c7:49:4e:cf:14:63:bf:5d:6b:e8:
74:05:ec:e9:ed:0b:b1:22:16:a3:a5:08:b2:41:aa:
f3:ac:69:59:d5:10:20:77:aa:be:29:9b:5d:77:42:
ee:37:85:81:50:ba:b6:9a:20:db:20:87:35:6d:48:
6b:c7:11:3e:fc:01:e7:53:6f:04:f2:a4:af:33:c7:
e7:f7:c3:16:b6:7f:cc:a5:ed:a7:7f:06:6c:22:a2:
d5:7f:60:11:d0:49:f8:7b:03:e0:27:a0:e0:74:6f:
3f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5B:3E:14:9C:8A:2F:7C:FD:77:60:F8:1E:69:26:6D:6C:E7:0A:F7
X509v3 Authority Key Identifier:
keyid:C2:AF:C1:4D:CE:45:0B:05:EC:86:C7:C5:30:70:CD:6B:B6:DB:C7:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wq_BTc5FCwXshsfFMHDNa7bbx-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ec3284-3576-4ee4-93b8-1847cb88e83a/1/DVs-FJyKL3z9d2D4HmkmbWznCvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ec3284-3576-4ee4-93b8-1847cb88e83a/1/wq_BTc5FCwXshsfFMHDNa7bbx-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:36c0:2::/48
Signature Algorithm: sha256WithRSAEncryption
7f:7f:67:96:b0:c8:1e:5a:fd:b8:43:07:40:b4:32:cc:0b:38:
9f:31:2c:e7:74:f5:63:d8:1a:9c:22:b7:b4:66:f0:a4:f8:4f:
6f:da:55:4d:53:bf:00:b0:65:03:ef:32:89:7e:4f:25:dd:33:
39:4f:7c:15:1a:94:34:b8:98:1e:e5:43:8c:21:b0:21:9f:a4:
6e:d3:88:42:9d:41:57:01:68:bc:5f:ec:51:a2:1b:cf:3d:7f:
ef:d1:cb:5d:25:d6:54:ff:bf:18:27:38:ea:74:82:6f:ff:78:
d8:4a:5b:bb:87:49:7d:f5:42:dd:ef:84:bf:ed:3a:e9:b6:ca:
7d:c3:04:a6:94:61:b2:ff:e4:19:2e:fa:bf:67:5b:56:71:ae:
42:cc:59:d4:e0:9e:1d:53:2f:ac:3f:aa:90:c9:3f:e4:77:e2:
07:fe:6b:0b:dc:0d:5c:5a:0d:0c:77:22:7e:d0:c8:39:57:9a:
8f:37:bc:4c:9c:62:f6:9f:d3:81:a8:28:21:e6:5a:78:2b:dc:
9b:9b:9f:c3:05:10:96:1d:e7:91:94:48:f8:0b:8c:50:e7:ac:
9b:5e:4e:55:e9:7d:41:11:f5:d1:6f:69:d5:fc:a8:c3:8c:4f:
15:e5:ff:05:68:60:0b:af:00:43:2c:2d:1d:61:26:f0:94:5b:
fa:e5:bd:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:18:42 2025 by rpki-client