Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-Uwz_i0m_SyVjgwjdW2kM77LSZw.roa
File: 1-Uwz_i0m_SyVjgwjdW2kM77LSZw.roa (raw, json)
Hash identifier: CUOCikhMgYBhkW5wyilfCI5KL3xkOc7ZRDxn0vktexw=
Subject key identifier: F9:4C:33:FE:2D:26:FD:2C:95:8E:0C:23:75:6D:A4:33:BE:CB:49:9C
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 012B785C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-Uwz_i0m_SyVjgwjdW2kM77LSZw.roa
Signing time: Sat 01 Jan 2022 00:59:47 +0000
ROA not before: Sat 01 Jan 2022 00:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209295
IP address blocks: 2a0c:b641:580::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19626076 (0x12b785c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f94c33fe2d26fd2c958e0c23756da433becb499c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:0b:6e:f1:7c:de:09:41:df:be:36:bb:96:
2a:ba:0b:7e:20:49:4c:61:2c:dd:2e:f5:e2:7f:c3:
23:7a:3a:47:0b:46:75:94:15:4c:e6:10:df:37:00:
7a:53:83:e9:0f:4b:6e:59:94:5b:d1:da:42:69:a4:
42:4f:97:71:09:74:4b:c0:e7:50:b9:b4:35:86:eb:
20:9f:eb:aa:ae:5c:59:69:68:57:c3:61:78:e6:6e:
80:4b:35:2d:b7:c9:72:46:e6:cd:36:40:93:6d:cb:
84:8b:33:d7:e6:3f:de:0c:4b:62:c5:b0:66:f0:47:
d2:05:8d:84:37:2c:b8:19:91:c1:f3:d3:7b:d3:8f:
c1:73:b7:85:0d:cd:db:4d:42:31:00:48:e7:ef:cf:
0f:65:45:9d:1f:27:be:76:06:6d:0f:d1:d1:21:5f:
98:d2:95:19:4c:7f:b7:a7:3b:dc:11:f5:01:c3:51:
7e:18:48:1d:0c:96:6f:72:84:9f:b0:fc:6d:9d:36:
01:e1:8a:74:b1:73:47:d5:51:63:96:2a:15:2e:9d:
f7:7c:51:6a:3d:7f:a3:b0:52:3b:87:53:d3:e7:2a:
c6:8a:54:ec:10:f4:7b:09:0b:32:ad:d0:d5:74:96:
6e:56:5c:52:49:3f:3c:00:4b:bb:fe:a2:06:a3:4d:
86:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4C:33:FE:2D:26:FD:2C:95:8E:0C:23:75:6D:A4:33:BE:CB:49:9C
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1-Uwz_i0m_SyVjgwjdW2kM77LSZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:580::/44
Signature Algorithm: sha256WithRSAEncryption
43:24:09:77:9a:0e:07:b5:e4:75:a1:d0:b7:19:97:be:a0:cf:
ef:6a:8b:16:82:9c:01:27:23:17:cc:ef:26:68:53:fd:6e:1f:
ed:cd:98:dc:ad:ab:91:93:f5:9d:74:61:da:5f:63:7d:16:3e:
51:86:46:2d:72:0a:df:19:3c:88:58:f2:75:b3:50:1b:35:c6:
86:4b:c8:35:23:f0:5b:ed:06:34:b8:e9:2c:e8:ee:53:34:a1:
18:30:12:04:31:6f:e2:6c:cf:50:98:ab:1f:9f:e5:cc:ed:aa:
3b:51:19:98:fe:38:b2:28:3f:0e:14:3a:fb:da:e2:23:33:49:
5c:ce:cf:d6:c1:af:a3:09:72:2e:99:14:54:cd:85:d8:d6:7f:
e6:4e:d7:df:80:2c:66:7b:1a:bd:e3:d2:e3:c0:92:19:e0:c0:
ec:c2:90:86:55:7d:aa:77:da:26:6d:be:cf:cd:76:ef:3c:7e:
77:7a:0d:fb:be:e4:78:86:e1:3d:22:0a:a2:6b:16:f8:7b:5c:
37:c8:08:61:e7:4a:9a:94:8c:99:6c:90:4e:e7:dd:1f:e9:fb:
d0:67:d5:b5:e7:ef:db:bc:e2:67:00:89:52:3b:e2:a8:4f:c5:
a0:db:b3:7d:b2:c3:24:6d:4d:46:8a:8b:9d:37:57:8d:6d:3e:
02:c7:70:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:59 2025 by rpki-client