Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/82PVxE1pU2-BU3hw_1c8CyEdOvs.roa
File: 82PVxE1pU2-BU3hw_1c8CyEdOvs.roa (raw, json)
Hash identifier: zt3dgz8zJNXbMkYqPU3eM9vptPw3UE+eKD/gfusarYY=
Subject key identifier: F3:63:D5:C4:4D:69:53:6F:81:53:78:70:FF:57:3C:0B:21:1D:3A:FB
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E491A931FAE29529A202F49C0C140
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/82PVxE1pU2-BU3hw_1c8CyEdOvs.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64473
IP address blocks: 2a0c:b642:fc0::/43 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:49:1a:93:1f:ae:29:52:9a:20:2f:49:c0:c1:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f363d5c44d69536f81537870ff573c0b211d3afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a2:19:1f:9e:ba:c6:4b:74:e7:de:c5:43:52:
4a:e3:28:1e:ff:62:b2:1d:28:78:95:5b:1f:de:3d:
c3:b8:8a:d4:02:a1:37:6a:5c:1a:80:39:48:5a:a1:
bb:59:11:d7:1f:e3:7c:f1:03:3d:64:89:1b:03:ee:
9d:ae:28:be:f8:e8:c9:73:50:30:78:48:b0:63:10:
ba:6d:87:c7:42:13:d4:a7:48:cc:cd:36:54:5b:25:
ca:6f:49:5b:1f:d9:3d:c1:10:ac:49:02:97:2e:c2:
1e:07:95:4f:c3:7c:d7:b5:09:c6:4f:55:8e:7d:4c:
9f:61:ab:e4:86:41:e9:c7:5a:1e:5e:c0:dc:80:8d:
1e:cb:bc:d9:4d:f6:d1:20:bc:9f:9a:d4:e6:d5:71:
46:9a:e5:e6:4a:9a:3c:a6:c1:29:6c:ea:83:f5:e6:
2b:cb:98:40:57:e3:fa:29:9b:15:e4:b9:1b:bc:d9:
a4:19:65:51:52:34:75:15:cb:02:2a:e8:74:63:38:
8e:18:9a:b5:30:a3:04:15:9e:e8:52:c1:38:9c:3d:
7e:28:c0:23:67:bb:28:22:6f:2d:ad:ea:28:c5:59:
10:3e:b0:7d:68:03:26:d1:6c:5f:a2:44:43:6f:29:
7d:59:19:dd:c6:0e:33:3d:91:91:57:a9:26:6a:85:
20:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:63:D5:C4:4D:69:53:6F:81:53:78:70:FF:57:3C:0B:21:1D:3A:FB
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/82PVxE1pU2-BU3hw_1c8CyEdOvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:fc0::/43
Signature Algorithm: sha256WithRSAEncryption
27:de:7c:03:ba:0a:8f:ed:47:e3:ce:30:41:a4:f8:2c:8d:18:
97:cf:14:cd:93:13:7d:8f:77:38:6d:d1:65:6d:18:21:f5:6c:
ce:26:ae:c1:8f:80:85:64:a2:12:d1:69:d8:18:46:f0:23:18:
63:ca:a7:c7:aa:ff:06:d7:ae:9b:31:d0:98:d1:ba:76:65:e1:
a7:71:97:1b:f5:d6:02:b0:22:a7:72:4c:a2:4a:98:09:7e:7d:
35:c3:66:c5:71:a3:de:9f:bf:5b:2d:7d:73:22:70:5e:ab:3d:
88:f9:7a:58:c2:91:47:c9:37:8e:1f:5a:17:af:cc:5b:c7:bb:
d2:2d:df:04:25:9d:47:0b:20:1d:84:bf:b6:8d:91:13:ad:29:
7a:b8:8c:ec:f4:59:c7:f9:dd:a6:67:c2:92:c4:a2:8b:ac:66:
30:8d:45:c4:7e:0c:2f:91:eb:90:e2:8c:8c:27:23:53:f3:de:
6d:36:4d:50:e7:97:09:41:db:c4:3e:d9:f2:04:35:0c:50:e6:
7c:17:96:fa:76:4b:6f:b3:d6:a8:69:79:cc:40:37:3e:6f:63:
e5:49:6d:f4:4d:e3:9a:10:e8:81:0d:26:9a:23:9d:d9:95:43:
68:5d:1b:79:c4:bc:43:b0:24:d2:46:11:79:52:a8:ff:99:1d:
61:47:3d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:41 2025 by rpki-client