Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/265pe1-GvmtZ5wAf5ZhNt6dkRhQ.roa
File: 265pe1-GvmtZ5wAf5ZhNt6dkRhQ.roa (raw, json)
Hash identifier: uBreoUoG4gIMD+dDGzMiH/Z5Gp24QAdLGUUuXA/tv28=
Subject key identifier: DB:AE:69:7B:5F:86:BE:6B:59:E7:00:1F:E5:98:4D:B7:A7:64:46:14
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0189D4FEF3C3AE9917010736D1D214B2066B
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/265pe1-GvmtZ5wAf5ZhNt6dkRhQ.roa
Signing time: Tue 08 Aug 2023 11:53:45 +0000
ROA not before: Tue 08 Aug 2023 11:53:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208885
IP address blocks: 2a0c:b641:a90::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:fe:f3:c3:ae:99:17:01:07:36:d1:d2:14:b2:06:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 8 11:53:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbae697b5f86be6b59e7001fe5984db7a7644614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:96:e8:85:7a:e4:62:dd:94:1b:24:d3:d1:6b:
8b:ef:b3:ee:47:c2:2b:33:a1:b1:da:6e:a1:fd:3d:
1d:cb:6d:1d:ca:f9:b8:1d:4e:9b:30:99:74:34:92:
0d:3e:8e:e9:f4:bd:1c:bb:93:64:bc:45:c0:08:e5:
10:b6:2e:a2:16:ef:13:f7:dc:8f:77:46:96:01:ba:
ac:e4:16:49:ca:f1:ab:52:0c:1c:f0:24:3d:cf:e6:
9c:0a:c9:f1:2f:ad:72:e1:68:cd:96:2f:8a:65:c1:
42:cb:4d:d0:d0:7c:2e:ca:4b:cf:cf:aa:0f:17:25:
d3:3f:60:92:0a:54:c0:f0:59:c9:6c:38:dc:bd:9c:
85:4e:5f:6a:4e:ee:b3:7b:f4:23:4c:aa:f2:f4:53:
dd:20:07:af:a5:8e:f8:60:3c:c3:ef:04:96:6f:f2:
62:3d:48:78:6e:7d:1c:7c:fb:38:c5:ad:81:a2:07:
72:26:ad:c0:0a:11:85:48:36:ed:bb:3c:85:50:74:
bd:0f:59:a4:17:7a:08:11:87:e7:b4:a6:31:c4:e7:
d4:d5:d4:75:df:97:14:1d:26:82:cd:1c:ce:54:d0:
25:fe:49:41:07:3c:04:d1:8a:c6:52:5b:20:96:bf:
e3:9b:14:82:07:3d:c3:d3:ae:7b:99:58:e3:a4:c3:
1b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:AE:69:7B:5F:86:BE:6B:59:E7:00:1F:E5:98:4D:B7:A7:64:46:14
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/265pe1-GvmtZ5wAf5ZhNt6dkRhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a90::/44
Signature Algorithm: sha256WithRSAEncryption
47:c3:14:6f:9d:53:fc:87:cf:53:ee:e7:98:44:f0:75:7c:f4:
d5:e1:4b:01:91:2f:56:23:85:cb:ff:22:b9:ba:c1:c2:9e:d3:
3d:d3:2c:8a:10:46:1c:86:56:56:2f:c6:db:2e:89:81:da:e4:
df:44:b5:7a:98:78:36:01:02:7e:cd:20:f4:1c:1f:d0:f8:f6:
e7:50:0d:d0:9e:f3:c4:20:d1:ab:6a:90:ef:84:40:c9:34:c8:
dd:a0:6f:02:31:71:dd:f9:e2:48:66:96:ee:d9:f8:ca:ba:54:
28:9e:6d:cb:31:0a:d7:09:18:32:e3:47:71:cc:5d:a2:4f:0e:
3f:f5:1a:a0:3e:58:18:0f:1d:a2:65:6d:3b:b7:51:e7:fd:10:
19:b2:b4:87:a1:21:f6:b8:1c:a8:2e:6c:6f:05:01:76:8c:14:
56:5d:ef:e2:02:b8:ad:ae:e7:be:5f:47:27:90:b5:29:2d:aa:
15:34:a3:40:de:43:15:8a:9e:2d:e2:d6:50:59:88:a2:15:ca:
cb:91:47:7c:84:69:ba:78:33:06:f9:fd:cd:d1:4d:86:55:27:
59:a0:2e:4c:d7:10:e3:59:87:6d:be:be:7a:07:7a:1a:79:d3:
79:65:99:fa:b3:95:6f:17:c0:5c:cf:58:03:36:03:c1:3b:b1:
47:6c:a8:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:48 2025 by rpki-client