Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/D3dRAh86CPocQqPhRiHn9u8gJ8M.roa
File: D3dRAh86CPocQqPhRiHn9u8gJ8M.roa (raw, json)
Hash identifier: rIuXl9cRDGud6h7nloCJFWOEM6D3dRpsaOO/4BpyZ5s=
Subject key identifier: 0F:77:51:02:1F:3A:08:FA:1C:42:A3:E1:46:21:E7:F6:EF:20:27:C3
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01828ECC39D1886E642DE9048F11FA197E23
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/D3dRAh86CPocQqPhRiHn9u8gJ8M.roa
Signing time: Thu 11 Aug 2022 21:25:24 +0000
ROA not before: Thu 11 Aug 2022 21:25:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203790
IP address blocks: 2a0c:b641:620::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8e:cc:39:d1:88:6e:64:2d:e9:04:8f:11:fa:19:7e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 11 21:25:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f7751021f3a08fa1c42a3e14621e7f6ef2027c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:94:86:6b:81:fd:a2:7f:d3:6d:3b:4b:f5:37:
0b:ce:34:aa:77:31:f4:b1:2b:57:18:b6:82:70:39:
0d:72:cc:f7:0a:7f:10:b4:46:14:02:9d:a8:20:fa:
24:e5:63:53:f3:79:7d:b8:47:8e:83:8e:29:be:b5:
16:4a:3b:05:2b:38:91:ba:29:3d:d5:03:7d:85:cd:
eb:44:58:a3:70:7c:00:48:a5:3a:91:e4:d4:ea:87:
00:36:f3:2d:92:3b:ee:b2:6d:3b:fc:0d:5f:4f:5e:
fb:3e:95:f4:01:37:31:fd:91:fa:d5:e3:58:b5:a0:
90:23:d2:ed:b4:0f:6b:a8:01:34:f7:f9:76:00:43:
be:32:55:8b:57:bf:af:b9:62:0f:3f:3a:66:cd:d2:
9d:c7:82:86:ee:1d:3f:30:86:d0:7f:ce:c8:0c:3f:
26:76:c0:3d:a6:8d:06:3f:8b:80:f8:fe:f4:62:e9:
09:e6:3f:77:7d:6f:81:fb:c9:f3:3d:4b:6d:87:67:
27:4e:f8:1a:fd:9d:a6:97:9b:e3:53:df:ae:ff:59:
d5:d1:51:cf:f1:9c:64:de:cb:76:12:f6:64:8c:40:
a4:4c:c0:d5:54:97:b5:d2:c6:37:2b:50:f7:48:51:
fc:21:99:90:6c:8b:aa:22:ab:de:58:51:a9:16:b4:
26:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:77:51:02:1F:3A:08:FA:1C:42:A3:E1:46:21:E7:F6:EF:20:27:C3
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/D3dRAh86CPocQqPhRiHn9u8gJ8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:620::/44
Signature Algorithm: sha256WithRSAEncryption
45:31:dd:fb:04:cf:08:ee:4b:e0:66:b6:50:9a:06:c1:09:f4:
08:e4:52:83:38:55:2e:4a:80:e0:3a:15:62:7b:2c:72:52:7e:
cc:61:6a:15:52:94:5c:6a:97:47:86:20:7d:d9:40:0d:bd:70:
f0:b1:7d:cf:9d:84:a3:3c:59:80:2b:68:94:38:11:a6:5b:5d:
25:68:97:63:a9:ea:4e:78:c7:1e:ba:d8:58:a9:19:c2:94:f6:
b2:72:1a:3c:d8:3d:40:64:3f:e2:e2:95:93:2a:9a:63:80:cd:
eb:19:89:d5:31:47:09:e6:cf:4e:2b:6f:d3:44:fa:ba:07:c5:
26:71:2e:76:22:9f:d4:55:2b:76:4a:5b:6f:c0:fc:f2:2a:4b:
26:38:32:d8:39:85:75:98:c0:ed:ee:85:15:1f:e4:5c:03:67:
0b:a3:f6:5e:a8:d7:7b:1f:44:dc:cb:9e:3e:bd:0b:64:72:27:
c1:c6:70:7c:58:02:bc:86:2b:65:d5:79:40:7e:a7:7f:89:c8:
55:b3:08:0f:26:d6:0b:ca:a2:53:28:1b:34:53:0d:6f:7b:f6:
86:f7:b9:e7:9c:b3:ed:a4:3c:f8:47:02:0e:f0:9f:c2:b1:78:
7d:11:8b:47:76:76:55:48:d9:9f:3c:d8:17:b5:f3:95:09:9f:
2a:33:7b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:43 2025 by rpki-client