Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6tRElsr0RwLmL1KdYqJkDcNuXjs.roa
File: 6tRElsr0RwLmL1KdYqJkDcNuXjs.roa (raw, json)
Hash identifier: w8zwzsCO7sD4XuWcv2nOhYW8zwPmrod4SLCIVhrtbsM=
Subject key identifier: EA:D4:44:96:CA:F4:47:02:E6:2F:52:9D:62:A2:64:0D:C3:6E:5E:3B
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 013A254D
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6tRElsr0RwLmL1KdYqJkDcNuXjs.roa
Signing time: Sat 01 Jan 2022 00:59:59 +0000
ROA not before: Sat 01 Jan 2022 00:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210466
IP address blocks: 2a0c:b641:5c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20587853 (0x13a254d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ead44496caf44702e62f529d62a2640dc36e5e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fb:6a:39:5b:2d:6f:c6:8b:d8:20:ce:a7:57:
26:41:34:64:20:eb:df:6e:bf:e5:d2:c1:0d:cb:b8:
b3:83:df:8c:e0:92:14:f9:61:18:8d:0c:4b:93:2f:
97:e5:0b:af:d7:83:f8:8e:6a:2a:b4:19:8e:19:85:
bd:1c:e0:97:3a:83:1f:80:3c:af:25:d0:34:19:5c:
2b:cc:96:d9:5b:b8:eb:b6:68:bf:2e:ef:6e:83:2b:
79:f4:6d:6e:a2:81:7d:f3:6f:ad:f3:c1:90:8e:5f:
e2:02:c1:31:9d:21:2c:ed:d9:b2:b0:29:75:b5:55:
14:24:0b:2f:37:8d:53:3d:0c:3b:97:8b:75:f5:1c:
c9:dc:df:fc:29:03:b1:9a:23:0d:59:65:27:3f:d0:
78:f3:45:2d:7a:66:09:99:23:6e:5c:fc:a7:68:2b:
7c:50:02:07:b2:c0:c4:4d:06:c5:5c:da:20:69:ab:
d3:bf:90:5f:66:b1:94:9c:7b:86:2d:01:91:54:ca:
de:a3:ea:6a:37:aa:69:4f:80:cd:aa:43:33:24:2a:
54:04:a2:4c:77:0a:7e:64:7c:40:68:d2:e8:3c:03:
a9:16:c3:1f:42:03:89:53:39:71:80:01:2c:79:a3:
5c:7c:d8:73:e0:32:15:4e:04:c9:fa:a3:6e:ac:7a:
0d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D4:44:96:CA:F4:47:02:E6:2F:52:9D:62:A2:64:0D:C3:6E:5E:3B
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/6tRElsr0RwLmL1KdYqJkDcNuXjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5c0::/44
Signature Algorithm: sha256WithRSAEncryption
59:25:78:a0:f8:5d:a0:d4:98:ef:66:38:e8:70:7d:d5:67:b7:
c4:4f:ec:8b:a6:7a:2e:f1:d0:8c:36:d3:85:ba:7c:a5:26:80:
f2:08:21:81:df:c2:12:f8:01:50:2b:96:ba:db:f7:85:a4:d8:
24:fe:bf:44:d7:a5:95:ff:4c:5e:d8:e3:62:ff:47:85:43:2f:
bb:80:8b:f1:d3:52:e2:b0:5a:05:cc:80:7d:17:a9:0e:3c:71:
03:1c:bf:ad:6f:da:28:74:28:78:23:03:67:26:0d:b7:2d:c8:
42:d8:1e:ba:66:75:0c:97:04:f3:07:ef:9c:32:35:86:ad:2e:
4f:2c:8c:72:a7:67:3a:43:21:75:6e:05:ac:6e:d3:44:65:26:
74:aa:ac:6a:c9:c6:2f:a9:51:49:33:1e:a5:08:83:50:3b:be:
bd:fa:55:e1:5e:5c:ff:c5:c7:92:40:a3:28:7a:6a:f0:08:dc:
d8:82:de:2d:8d:fe:fe:41:e9:d3:97:47:57:b2:45:c1:a6:3a:
25:5a:02:52:ee:de:cd:d5:af:f8:76:1a:84:73:f8:bf:5b:db:
87:4c:06:6f:20:2f:5c:dc:58:47:33:06:ac:c8:b2:2e:30:35:
79:72:d2:de:77:74:f2:93:e6:61:07:25:83:b6:23:7e:b1:b5:
66:7e:35:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:56 2025 by rpki-client