Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FSgyaOkjIutzSw3lwEthM5TVwF4.roa
File: FSgyaOkjIutzSw3lwEthM5TVwF4.roa (raw, json)
Hash identifier: xlU4IlbGrPTZqVlZN1DQ2p9m6ol9aoeQbmpX0Rgk7lk=
Subject key identifier: 15:28:32:68:E9:23:22:EB:73:4B:0D:E5:C0:4B:61:33:94:D5:C0:5E
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01448787
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FSgyaOkjIutzSw3lwEthM5TVwF4.roa
Signing time: Sat 01 Jan 2022 01:00:15 +0000
ROA not before: Sat 01 Jan 2022 01:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211129
IP address blocks: 2a0c:b641:1f0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21268359 (0x1448787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15283268e92322eb734b0de5c04b613394d5c05e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6e:4c:48:cd:ec:c6:29:19:43:3e:40:a8:b5:
c4:c0:e7:a4:f3:b8:da:95:52:b2:5e:d1:a8:3c:f5:
10:55:0d:42:d9:7c:c9:62:f3:c5:fd:c0:98:19:56:
45:7f:b8:00:7c:83:bd:55:b0:39:f0:0c:60:f1:e4:
e6:7b:ba:82:4d:3a:8a:5c:06:93:81:51:d7:de:e6:
a5:db:21:e5:33:f0:52:f4:0e:5b:a0:7c:21:71:fb:
9e:f7:2b:b4:1c:a4:60:fe:42:14:0a:50:ee:95:1c:
13:8f:1a:ab:63:4a:39:a1:c6:fd:05:c9:7c:a7:38:
a3:5a:53:6f:c8:ba:20:b7:36:ef:0f:a5:0d:4e:24:
d2:4a:ee:4c:d4:d3:67:7b:f8:86:df:1d:ef:81:ba:
4a:ee:1e:cd:f5:84:db:04:af:5a:8f:73:ac:1e:cd:
ce:03:13:3d:b3:7f:b0:06:42:3c:13:63:e9:1e:97:
9d:d1:45:87:6c:32:57:97:45:22:d9:a0:64:0f:9c:
68:5b:e7:db:c7:d8:22:f9:6d:50:1a:2e:44:9d:ee:
4d:25:d0:c2:d8:c7:91:0f:2d:08:4d:63:a2:70:b7:
29:38:83:9c:7f:6c:55:8a:2e:8f:8d:ce:54:06:58:
be:be:2d:a7:9b:ca:84:9a:27:85:43:96:17:53:00:
83:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:28:32:68:E9:23:22:EB:73:4B:0D:E5:C0:4B:61:33:94:D5:C0:5E
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FSgyaOkjIutzSw3lwEthM5TVwF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:1f0::/44
Signature Algorithm: sha256WithRSAEncryption
59:73:21:a2:55:68:14:0d:fb:64:a2:99:8b:64:60:c4:dd:ff:
55:10:29:e5:70:4b:22:08:8e:e5:9e:5b:a6:a4:6a:21:2f:7b:
48:2b:81:a8:4a:22:53:9b:29:33:cf:12:76:9e:28:6f:19:dd:
ef:96:78:d5:9a:73:24:9f:af:1d:e5:97:7e:33:67:b7:e2:4f:
3d:cb:76:6f:fe:f7:a2:a5:55:f5:82:df:3b:bd:60:d1:8d:1e:
be:4d:84:79:ac:2d:e9:a0:d4:a2:03:fc:78:15:69:07:ca:15:
97:4b:86:c4:28:b4:03:75:bd:4a:8b:67:ae:84:6b:d5:0f:1f:
7a:49:ec:16:ba:92:e5:74:88:ca:e7:20:e6:e1:18:27:94:a8:
fb:b6:73:99:65:2c:e5:e2:be:c2:41:df:f3:15:07:58:a0:ab:
3a:8f:b7:dd:2c:cf:33:8d:95:81:8d:c0:ef:f2:bd:d5:4e:44:
02:50:23:bd:f2:98:f0:95:e2:2a:57:33:bd:32:5a:8e:28:27:
2a:76:09:26:ff:fe:0e:d9:0f:7e:ed:06:f6:ea:e6:7d:6b:f0:
b5:d0:cd:d2:ba:f1:e7:8d:59:34:da:89:14:79:fe:e6:30:c6:
bf:76:39:d9:5d:75:de:f8:3e:7d:ad:2b:40:45:93:76:6d:5f:
86:d2:57:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:09:51 2025 by rpki-client