Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1UmOmlVTQk3V23gs8KnyPp7ZAd0.roa
File: 1UmOmlVTQk3V23gs8KnyPp7ZAd0.roa (raw, json)
Hash identifier: XI0eHJNOWPaF+uFBIYkEwKcO+UceNIQjtomRdJ+21c8=
Subject key identifier: D5:49:8E:9A:55:53:42:4D:D5:DB:78:2C:F0:A9:F2:3E:9E:D9:01:DD
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 014ADA53
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1UmOmlVTQk3V23gs8KnyPp7ZAd0.roa
Signing time: Sat 01 Jan 2022 01:00:19 +0000
ROA not before: Sat 01 Jan 2022 01:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212044
IP address blocks: 2a0c:b641:120::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21682771 (0x14ada53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5498e9a5553424dd5db782cf0a9f23e9ed901dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:47:95:71:51:b0:97:48:2a:4e:36:96:ca:be:
29:40:4f:3b:0e:f8:da:2d:b4:bf:79:66:d7:ea:ea:
d3:57:55:5b:e8:df:64:8a:53:7c:32:3c:84:86:8a:
60:d9:47:e3:89:7a:5e:5b:e7:94:35:0b:26:ab:6e:
f0:8c:fc:72:1b:b5:17:44:61:91:55:9a:0b:94:ac:
ff:3e:00:3b:90:c4:ec:c3:a7:da:94:ec:91:14:77:
14:3a:fb:d7:4e:40:c5:42:76:6e:6f:f4:4e:40:e4:
63:c4:60:3d:f1:ac:3f:30:f0:95:0d:da:04:70:8c:
69:5d:35:cb:4d:18:3e:44:22:ba:0c:cb:2a:c7:c2:
03:f6:b0:fc:86:b3:47:94:f6:70:6e:25:0b:17:c0:
8f:92:1b:50:57:da:3f:85:7a:4a:20:58:79:27:53:
b7:62:18:af:1a:ea:e5:a9:e4:6c:8e:51:7d:86:76:
0e:d7:9d:66:57:c4:43:59:b2:ff:b8:6a:bc:b9:95:
e9:cc:ce:25:41:2c:19:3a:c9:24:99:4b:c3:53:1a:
86:8e:b2:fe:01:9d:15:07:a2:c5:6f:82:98:d3:62:
4d:b9:42:39:19:fc:06:46:cf:ca:8f:11:52:3c:50:
cd:24:4a:42:12:c6:c7:41:da:27:ee:70:db:d2:b8:
b6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:49:8E:9A:55:53:42:4D:D5:DB:78:2C:F0:A9:F2:3E:9E:D9:01:DD
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1UmOmlVTQk3V23gs8KnyPp7ZAd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:120::/44
Signature Algorithm: sha256WithRSAEncryption
84:46:ce:5a:22:58:26:3b:36:7a:e0:b5:f6:49:34:07:2e:6f:
94:d9:23:1b:8e:69:55:26:47:69:29:c5:69:7c:ef:fa:7c:74:
b0:4d:ba:29:5c:b1:b4:fd:99:0c:78:90:d8:9e:46:9e:07:5f:
f9:90:a8:76:fa:10:89:8e:a9:4c:7a:75:79:8d:d6:0b:f7:a2:
d5:92:ed:b7:1e:5b:08:1b:ec:a2:b4:f5:32:a6:b5:52:56:c3:
a2:e9:f1:14:ab:f6:74:04:b2:dc:8c:3a:32:1c:8a:ff:5d:ce:
8b:f6:04:db:be:59:6b:ed:c4:d3:2f:c8:6e:c6:91:b4:c9:cf:
b9:dc:6a:10:c4:1e:ef:e4:14:5f:21:35:98:6d:97:ac:33:03:
f1:64:59:30:d8:47:c0:da:a9:92:f9:28:8d:cb:ad:64:fc:50:
bb:3c:80:49:b4:5f:26:c7:d8:c8:0b:20:b4:58:a4:7c:4e:a4:
ef:0d:8d:43:a3:3e:6f:21:59:44:34:33:0c:02:b0:b0:1b:5a:
37:b5:f2:2d:50:cc:ba:02:8f:f8:ef:8c:52:75:be:4b:77:68:
94:97:a3:3c:2c:60:03:e8:30:69:1c:26:26:61:46:a7:11:e5:
e6:d4:cd:70:e9:21:ab:22:e8:84:78:eb:24:d6:fe:80:5e:14:
38:d5:22:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:55 2025 by rpki-client