Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5_7LPNnNWiOSMUVRhS-cHX6gOYE.roa
File: 5_7LPNnNWiOSMUVRhS-cHX6gOYE.roa (raw, json)
Hash identifier: B1p6wszQjQKe+AUaBGletPld8R8nulhwPKCMGaWtrD8=
Subject key identifier: E7:FE:CB:3C:D9:CD:5A:23:92:31:45:51:85:2F:9C:1D:7E:A0:39:81
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E779A859E2FA1158713F05635D0BB
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5_7LPNnNWiOSMUVRhS-cHX6gOYE.roa
Signing time: Mon 02 Jan 2023 06:14:59 +0000
ROA not before: Mon 02 Jan 2023 06:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210466
IP address blocks: 2a0c:b641:5c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:77:9a:85:9e:2f:a1:15:87:13:f0:56:35:d0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7fecb3cd9cd5a2392314551852f9c1d7ea03981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f5:97:dc:06:aa:0f:ba:fe:86:5d:61:5e:cd:
c9:0b:91:a4:7d:f1:10:5e:f9:67:28:0f:27:e7:a6:
df:11:88:1a:fc:ac:c1:98:51:0d:14:9f:3d:90:ca:
46:d3:94:0c:64:90:47:5f:4c:69:8a:54:22:27:e8:
22:de:05:33:a1:59:10:31:70:ad:e6:b0:e4:75:32:
37:11:e4:af:f8:5a:2b:af:9a:3a:53:67:bf:c8:35:
c2:63:e3:57:63:be:0c:a2:a8:51:b3:76:9d:38:3c:
0b:76:42:e4:7f:11:cd:42:1a:62:3b:08:09:88:0f:
23:c4:99:ae:26:7b:40:d4:80:7f:5e:4c:ed:8f:b2:
48:2b:76:58:e3:f2:d9:84:ef:74:e1:09:ef:ba:8e:
1f:e6:d3:ea:51:07:95:26:2a:67:4f:7e:c4:6c:1f:
3e:af:3e:74:bf:09:95:74:e1:be:c7:e3:21:97:04:
06:a7:9d:4e:38:c3:c3:c4:de:0b:22:82:9a:0a:9f:
75:6e:00:72:83:95:bf:41:22:f0:f5:a7:a1:58:d7:
79:fa:76:fb:f5:df:bd:48:48:43:79:13:34:86:0e:
b4:fe:5f:9a:91:3d:c3:c7:5f:81:12:98:3b:ed:5e:
b5:cb:b4:30:37:50:90:1e:f1:33:a1:a1:54:24:f1:
81:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FE:CB:3C:D9:CD:5A:23:92:31:45:51:85:2F:9C:1D:7E:A0:39:81
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5_7LPNnNWiOSMUVRhS-cHX6gOYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5c0::/44
Signature Algorithm: sha256WithRSAEncryption
98:be:47:67:8f:7f:f0:63:4c:1f:21:71:6c:82:7a:4c:92:bb:
f5:e0:12:f7:63:a3:aa:14:94:b9:14:7d:c0:1a:ab:92:80:a3:
e6:9d:14:27:28:f5:33:84:bd:3a:9e:9f:62:52:3d:f9:b1:ff:
33:90:25:0f:80:f7:32:d0:fb:f1:01:dc:17:4c:d9:9b:35:6f:
2f:92:e4:a9:d0:00:e5:67:f1:6e:b6:b2:31:01:c6:d5:f9:95:
64:61:78:c4:4f:26:87:75:02:6b:b0:b2:83:22:0e:20:33:1c:
27:aa:f6:0d:d2:95:04:e6:7a:cb:b7:45:31:4d:cf:1b:13:21:
a0:e3:24:f3:f9:5a:0b:69:72:19:95:35:2c:17:9b:9b:6e:0a:
28:6b:c8:e9:b5:69:dc:19:15:34:81:d0:24:96:6a:86:d6:b5:
56:54:bc:b8:29:90:8e:d3:9e:a4:da:5b:4a:4c:53:ef:69:71:
d3:2b:c7:9b:5a:9f:91:38:31:3d:74:04:8f:3f:53:be:26:25:
1d:3e:28:38:ae:8b:ef:76:46:d8:84:1e:72:fb:46:17:70:2d:
d9:5a:03:dd:98:d1:ee:a2:b1:e2:a1:d9:83:86:66:db:a7:b2:
cc:58:5c:d4:2d:99:93:2b:11:48:94:e5:50:bb:d2:ab:3e:6d:
4e:d2:cb:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:55 2025 by rpki-client