Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/PV2YtefFUKdlZh3iBwtlPwTxifE.roa
File: PV2YtefFUKdlZh3iBwtlPwTxifE.roa (raw, json)
Hash identifier: dNNz7VDxN8TsWdJ0U0pHSvekYyD0SJIXPIjtAu9yBOY=
Subject key identifier: 3D:5D:98:B5:E7:C5:50:A7:65:66:1D:E2:07:0B:65:3F:04:F1:89:F1
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 012462EB
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/PV2YtefFUKdlZh3iBwtlPwTxifE.roa
Signing time: Sat 01 Jan 2022 00:59:45 +0000
ROA not before: Sat 01 Jan 2022 00:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207887
IP address blocks: 2a0c:b641:640::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19161835 (0x12462eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d5d98b5e7c550a765661de2070b653f04f189f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:02:74:c3:5e:d2:19:47:3c:21:aa:6e:bb:5f:
9b:f1:17:d1:48:f7:f4:3e:27:b4:99:e7:57:2b:0d:
ff:64:b8:20:95:06:66:07:8c:61:fe:bf:ff:a0:c9:
fa:94:2a:db:46:77:e4:72:94:63:64:ad:f4:97:59:
ea:31:c0:15:76:11:fc:e2:4e:e9:db:2c:ce:ce:51:
25:48:ea:41:9d:b3:9d:08:54:40:6a:ba:a1:50:cc:
bb:90:d3:46:7a:4d:f8:3d:19:90:d6:32:3a:9b:a5:
5a:19:6c:d9:54:44:9c:9f:bc:88:01:d2:dd:d1:8a:
78:04:3e:00:42:6b:6b:53:98:7e:b7:9c:91:85:9f:
f6:25:8c:8e:e9:51:47:d3:dc:6b:17:f9:27:93:0d:
b3:26:9b:ac:ca:ca:96:ee:cc:ad:d5:6c:27:58:81:
4e:de:ef:02:b8:c4:c4:18:18:47:6d:1d:cd:95:97:
38:c5:3a:27:4f:23:0e:48:49:e7:32:33:37:bb:0f:
ef:80:48:a2:b2:40:75:e7:96:b0:58:5b:45:66:9a:
91:07:cc:77:20:a5:04:38:e6:2a:95:fa:b4:0d:1f:
68:bb:20:72:a4:f2:43:41:61:cb:d4:86:53:34:6e:
55:36:1e:8d:fd:3d:9c:b3:d1:0d:2f:a1:b3:b0:3e:
5c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5D:98:B5:E7:C5:50:A7:65:66:1D:E2:07:0B:65:3F:04:F1:89:F1
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/PV2YtefFUKdlZh3iBwtlPwTxifE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:640::/44
Signature Algorithm: sha256WithRSAEncryption
41:15:f6:8b:05:f1:b4:e0:01:a9:c3:2b:4b:4d:ab:e9:8a:5d:
f8:5d:36:39:6a:62:31:24:97:b8:f1:9e:f9:83:8d:69:03:d5:
8c:05:b5:7b:15:60:29:c8:20:94:e7:95:d5:8e:ed:41:cc:b8:
8b:de:82:9d:d4:e6:e7:b6:cb:e8:33:fc:f2:c2:70:12:91:90:
6c:aa:50:1a:c9:3a:19:f9:75:ea:16:05:2f:ea:aa:c3:c8:b3:
92:f2:95:5a:d8:18:e0:34:86:f1:bc:50:a2:dd:7d:81:17:cd:
0e:f0:f5:92:09:f7:36:c5:45:21:20:ef:71:1d:eb:f0:f0:89:
f4:37:1d:6a:c0:c2:c0:f9:11:b4:c6:23:2d:83:3c:70:76:75:
bd:80:e9:3b:43:1e:ed:f3:d2:1e:ce:83:21:c2:4e:12:8b:55:
e9:8f:94:96:ff:dc:c1:5b:c7:f2:8d:a0:7f:bc:b5:d6:ff:d8:
b1:bf:de:a2:fc:4e:f4:98:2c:6e:cf:ed:eb:de:f7:41:94:74:
6d:6a:a1:1d:a5:61:18:7f:e1:e2:f8:90:3e:67:bb:60:9f:d4:
7e:71:cb:b5:be:b2:3f:a7:ec:17:02:00:bc:fc:1c:ee:47:d8:
86:68:e3:60:35:3f:9c:52:18:63:25:0a:93:29:72:fc:fb:0f:
a1:b4:a5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:43 2025 by rpki-client