Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/R2-w6h9PEr2QnHymboRZJMZ9kbI.roa
File: R2-w6h9PEr2QnHymboRZJMZ9kbI.roa (raw, json)
Hash identifier: E5B+5G0VfyGHqQiFntIdCw1CDPnfG9zjJ32kXcHhEEA=
Subject key identifier: 47:6F:B0:EA:1F:4F:12:BD:90:9C:7C:A6:6E:84:59:24:C6:7D:91:B2
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 011B2EC0
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/R2-w6h9PEr2QnHymboRZJMZ9kbI.roa
Signing time: Sat 01 Jan 2022 00:59:41 +0000
ROA not before: Sat 01 Jan 2022 00:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207292
IP address blocks: 2a0c:b641:760::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18558656 (0x11b2ec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=476fb0ea1f4f12bd909c7ca66e845924c67d91b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:fd:60:e7:1c:15:01:31:27:37:92:11:a3:9a:
14:d1:05:76:c4:44:4c:ee:34:83:ec:20:3d:cb:99:
3f:27:27:ef:07:62:6f:b5:9f:7f:b6:6b:ff:81:4d:
35:6c:0d:9a:b2:0a:2c:d2:dd:78:a3:b2:22:d4:32:
29:3f:94:01:66:dd:1d:00:25:16:aa:d7:57:e6:3f:
58:a9:ac:f6:cc:ea:20:3b:c6:99:fb:79:5c:a2:90:
a0:19:86:86:96:d8:8b:e5:e1:2b:9e:15:1f:e4:7c:
89:b3:db:f4:fa:cd:81:a7:8c:45:2c:aa:b7:f6:c6:
ae:d0:9d:50:e9:2b:5d:1a:68:7d:3f:e5:33:f4:ce:
3a:e1:1d:bb:6a:a1:c9:1c:7b:0e:19:63:1a:fd:02:
bc:2a:3d:11:03:e3:27:a9:2f:84:1b:dd:81:4d:6a:
c2:31:f8:5d:01:65:a3:35:1e:72:06:17:71:da:c9:
06:ed:e6:74:05:87:39:6b:cb:f0:ca:5a:21:7f:19:
b8:19:49:85:41:6d:65:fd:36:f5:ef:21:d8:d1:5b:
ba:32:fb:19:1b:4d:a9:94:43:3e:40:78:cb:c5:95:
a5:84:99:29:78:24:d1:77:52:74:5d:d8:a5:20:aa:
40:79:4d:fb:af:a9:2d:08:56:5b:f5:67:b6:f9:c4:
a0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6F:B0:EA:1F:4F:12:BD:90:9C:7C:A6:6E:84:59:24:C6:7D:91:B2
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/R2-w6h9PEr2QnHymboRZJMZ9kbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:760::/44
Signature Algorithm: sha256WithRSAEncryption
8e:57:6d:e8:42:ba:9e:fb:2a:79:98:a7:ae:c8:10:61:36:6f:
4e:ac:19:e3:e8:70:db:67:e3:01:7c:17:55:76:cf:e1:2a:8c:
75:b6:9b:90:12:eb:e5:e6:f5:4b:72:70:58:8a:8c:be:95:e5:
d9:53:3e:23:78:43:0a:7d:62:fe:77:18:db:d2:22:66:a8:25:
08:d6:75:8f:ea:65:b7:03:23:a4:98:6d:da:96:68:e7:eb:a0:
76:79:4f:c9:fe:58:cd:5a:18:4f:ae:3b:74:3c:6c:bc:c1:20:
7b:2b:dd:c5:65:39:38:b1:be:31:17:4b:d5:66:49:5e:e3:61:
c1:17:05:2a:f1:49:33:57:bf:41:a6:e8:8a:4c:23:b1:a1:03:
80:1b:3c:68:34:67:e0:89:fa:24:e5:41:8d:42:9e:4a:36:e9:
10:af:df:c8:9f:13:83:0c:0a:82:9e:66:e2:61:d8:a8:41:2a:
37:e9:25:2c:bf:47:28:ea:aa:0a:44:b6:56:cb:ec:8a:78:74:
d1:b9:ba:c6:98:da:1b:25:a2:97:b7:f8:ad:f8:f1:10:9b:56:
56:3f:25:e1:8a:e3:8e:41:e9:ed:de:57:af:7f:b2:c2:ad:9b:
cf:1e:e5:26:78:3f:00:ee:54:a9:58:95:29:90:80:24:e4:6e:
17:33:e9:a2
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEARsuwDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAwNTk0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc2ZmIwZWExZjRm
MTJiZDkwOWM3Y2E2NmU4NDU5MjRjNjdkOTFiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPH9YOccFQExJzeSEaOaFNEFdsRETO40g+wgPcuZPycn7wdi
b7Wff7Zr/4FNNWwNmrIKLNLdeKOyItQyKT+UAWbdHQAlFqrXV+Y/WKms9szqIDvG
mft5XKKQoBmGhpbYi+XhK54VH+R8ibPb9PrNgaeMRSyqt/bGrtCdUOkrXRpofT/l
M/TOOuEdu2qhyRx7DhljGv0CvCo9EQPjJ6kvhBvdgU1qwjH4XQFlozUecgYXcdrJ
Bu3mdAWHOWvL8MpaIX8ZuBlJhUFtZf029e8h2NFbujL7GRtNqZRDPkB4y8WVpYSZ
KXgk0XdSdF3YpSCqQHlN+6+pLQhWW/VntvnEoB8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRHb7DqH08SvZCcfKZuhFkkxn2RsjAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L1IyLXc2aDlQRXIyUW5IeW1ib1JaSk1aOWtiSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkEHYDANBgkqhkiG9w0BAQsF
AAOCAQEAjldt6EK6nvsqeZinrsgQYTZvTqwZ4+hw22fjAXwXVXbP4SqMdbabkBLr
5eb1S3JwWIqMvpXl2VM+I3hDCn1i/ncY29IiZqglCNZ1j+pltwMjpJht2pZo5+ug
dnlPyf5YzVoYT647dDxsvMEgeyvdxWU5OLG+MRdL1WZJXuNhwRcFKvFJM1e/Qabo
ikwjsaEDgBs8aDRn4In6JOVBjUKeSjbpEK/fyJ8TgwwKgp5m4mHYqEEqN+klLL9H
KOqqCkS2Vsvsinh00bm6xpjaGyWil7f4rfjxEJtWVj8l4YrjjkHp7d5Xr3+ywq2b
zx7lJng/AO5UqViVKZCAJORuFzPpog==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:54:16 2025 by rpki-client