Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6L6h29AzazmxiX1eLKg_0pAtVjQ.roa
File: 6L6h29AzazmxiX1eLKg_0pAtVjQ.roa (raw, json)
Hash identifier: sxMHWbRofgENERvUVv9AoiEHsG+eLj6Mzxolhn/40Ks=
Subject key identifier: E8:BE:A1:DB:D0:33:6B:39:B1:89:7D:5E:2C:A8:3F:D2:90:2D:56:34
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E4AD3B3006D73F496BF7EB451BEBC
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6L6h29AzazmxiX1eLKg_0pAtVjQ.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141694
IP address blocks: 2a0c:b641:240::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:4a:d3:b3:00:6d:73:f4:96:bf:7e:b4:51:be:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8bea1dbd0336b39b1897d5e2ca83fd2902d5634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0e:ea:aa:1f:5b:0c:15:18:91:d8:76:c8:34:
e2:e5:16:2b:0b:18:87:1d:33:af:82:7c:43:d2:98:
03:54:a4:9d:74:2d:00:5b:cf:a9:44:fd:aa:26:a1:
cc:db:f8:0a:96:97:41:83:52:4a:90:e7:6b:24:cc:
be:c4:ff:2b:0b:4b:af:79:7d:77:9a:1a:a3:07:ed:
b2:c4:43:20:1c:70:da:6f:c1:14:c7:13:5a:88:1b:
06:21:14:8e:79:64:83:6f:30:50:b9:da:af:67:4c:
3c:aa:3f:37:44:10:54:46:a8:4b:aa:30:f5:83:9e:
9f:43:12:7c:e8:1f:6d:c8:e5:03:2d:99:6b:2d:39:
33:ce:17:33:97:a9:f1:0d:d7:a5:fb:d3:4c:1f:76:
40:fa:50:33:e6:d5:6f:37:0a:47:ed:29:b4:48:a4:
5c:e7:31:55:81:64:5e:1e:09:54:6a:4a:c6:d0:2e:
a1:29:01:54:48:5d:f5:5a:a2:70:7f:cc:8d:c9:a0:
16:4a:f3:64:e4:c7:18:8e:41:fe:57:c6:e9:7c:f1:
b0:c8:63:92:e3:1e:c4:1c:57:4d:88:e3:51:33:c7:
39:bd:8b:74:37:c9:e9:73:43:2c:1e:ef:cf:52:89:
3a:2e:8c:0b:83:bc:ed:44:5c:33:1f:36:4a:ed:4c:
ea:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:BE:A1:DB:D0:33:6B:39:B1:89:7D:5E:2C:A8:3F:D2:90:2D:56:34
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6L6h29AzazmxiX1eLKg_0pAtVjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:240::/44
Signature Algorithm: sha256WithRSAEncryption
3e:fe:62:ba:66:f0:d6:68:9e:5a:04:2e:4b:cd:5a:c6:cd:7e:
0d:a9:7e:84:a0:13:8c:7b:c4:5c:f6:7b:6e:43:74:a4:f8:2c:
75:d9:bb:2d:97:c1:9b:85:2c:6e:c2:81:74:86:c1:42:76:20:
f8:59:b6:14:37:96:15:14:2b:da:0b:5b:8a:73:48:86:f7:3b:
4e:bf:74:08:0e:c6:fa:f8:66:08:82:07:5d:a8:0a:c0:27:75:
87:9c:db:92:2e:b1:0f:e1:51:d2:45:65:27:02:30:fe:24:82:
ef:71:a8:84:17:d6:96:d2:6e:fc:f3:cf:af:33:b3:67:56:49:
d3:18:25:12:6f:84:b4:59:92:80:8b:af:c5:81:7a:b3:af:28:
6c:71:ea:9e:3b:f0:e3:a6:63:da:18:ed:bd:b7:84:cb:97:1d:
d2:68:80:9b:37:87:ec:ad:51:bf:d9:ee:10:e6:a7:2b:68:1f:
41:4b:66:04:4e:00:51:5b:9a:ca:99:09:c9:6c:16:04:fc:2d:
5a:be:82:69:51:e4:cb:69:3a:43:4c:3e:d7:a6:0a:23:bc:17:
20:fd:cc:5d:67:41:34:5c:e4:b5:cb:98:15:05:65:58:2f:0b:
6a:8f:f9:04:25:94:9d:8a:ef:24:ef:8a:d8:93:cc:64:54:aa:
4a:69:52:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:58 2025 by rpki-client