Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3TUVsH_iUhbkGIFqY7MgXDHuZI0.roa
File: 3TUVsH_iUhbkGIFqY7MgXDHuZI0.roa (raw, json)
Hash identifier: GFw8XrOaa4CnBVTW2VVMvzYQewl4Mg5PNpbiJZDhkv8=
Subject key identifier: DD:35:15:B0:7F:E2:52:16:E4:18:81:6A:63:B3:20:5C:31:EE:64:8D
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 02881286
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3TUVsH_iUhbkGIFqY7MgXDHuZI0.roa
Signing time: Sun 24 Apr 2022 13:47:19 +0000
ROA not before: Sun 24 Apr 2022 13:47:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205539
IP address blocks: 2a0c:b641:840::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42472070 (0x2881286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Apr 24 13:47:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd3515b07fe25216e418816a63b3205c31ee648d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bd:4d:56:0e:f9:aa:37:bb:3e:22:b4:ac:36:
92:09:09:0c:71:7f:87:6d:e9:7f:6e:85:fb:25:84:
2a:04:2b:84:0f:f4:c0:9d:77:49:ee:c4:e4:ff:79:
1a:ae:58:dc:9d:28:1b:fe:c4:77:6a:42:5e:c9:6a:
b0:b9:42:3f:be:f9:15:92:43:66:39:f8:1f:ef:a9:
b4:9c:dd:1b:34:93:dd:3f:66:5a:c2:bc:3e:e7:25:
65:a3:c0:72:bc:2f:3c:78:86:9d:05:55:ff:80:0f:
74:68:f3:22:83:bc:e3:ff:6b:06:64:36:34:17:32:
9a:0a:5d:a8:ad:db:73:8c:e0:1b:e9:e9:69:ad:55:
c9:f1:e1:c1:ed:fa:ab:b5:20:77:b6:95:a9:a4:99:
cc:b5:f0:14:e5:9c:50:db:5d:d5:ca:fe:2f:e9:a4:
b0:9f:c3:a2:9d:1b:dc:95:d8:63:21:fa:16:b4:77:
2a:0d:c7:92:c7:f3:e1:97:fd:2d:e3:67:a6:69:d5:
75:77:0c:e8:92:99:de:aa:11:48:11:63:a6:de:7c:
1b:da:4d:2f:49:23:4d:4d:62:74:9c:24:62:ba:93:
90:24:8c:8c:f8:30:15:8c:8a:2b:cd:d7:47:22:57:
7c:c7:b2:17:b1:79:a4:86:52:c7:3c:f4:25:75:f9:
58:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:35:15:B0:7F:E2:52:16:E4:18:81:6A:63:B3:20:5C:31:EE:64:8D
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3TUVsH_iUhbkGIFqY7MgXDHuZI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:840::/44
Signature Algorithm: sha256WithRSAEncryption
09:69:70:44:ce:97:2d:0b:52:61:8b:ff:7d:15:0a:50:4c:c2:
58:d7:0e:b8:0f:49:ec:86:3c:21:70:0e:ec:20:b6:2e:66:c2:
a0:f1:7f:90:60:af:fd:36:04:2d:ae:61:5d:a8:3e:9c:61:33:
23:e0:e7:15:54:72:2f:27:5b:e0:4c:48:e6:2e:1f:44:0f:ab:
5a:9d:05:e1:73:48:d5:b0:25:d1:de:b4:f8:1a:1b:7e:fb:9f:
6a:df:45:08:df:ce:0e:2f:b0:e9:a3:b4:e0:56:a8:7e:4e:61:
32:56:23:1d:e4:ac:e4:d2:04:42:44:89:62:62:17:87:5f:43:
ba:24:dc:10:32:4c:ee:da:63:8d:99:cb:b8:1d:d6:08:19:32:
7e:41:08:a1:09:6b:07:4a:a8:a6:35:57:24:83:54:ee:88:62:
96:75:a7:2d:b5:f4:a5:f5:a8:4b:06:38:86:ba:3d:9d:1c:0d:
d9:77:92:89:60:92:01:4a:ec:99:fe:02:63:2e:4d:70:5d:51:
55:ec:3c:ae:38:b0:77:19:7e:68:81:58:a2:94:20:61:81:8a:
4f:eb:ab:43:d0:65:3d:24:7a:f6:f1:5f:9e:16:b2:88:ac:ea:
a4:9a:6f:7a:40:b8:ea:29:85:b8:79:7c:02:36:87:cb:ac:5e:
18:e9:3a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:45 2025 by rpki-client