Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/SuTu4PYqN5WdnIvc61oqeGhYGfI.roa
File: SuTu4PYqN5WdnIvc61oqeGhYGfI.roa (raw, json)
Hash identifier: Z3qOSa4xhYfd22PiYif6nK3rn0smTQmOsOymyzLxXLo=
Subject key identifier: 4A:E4:EE:E0:F6:2A:37:95:9D:9C:8B:DC:EB:5A:2A:78:68:58:19:F2
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7AF74A5EC3933AF00706BD2C06C6
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/SuTu4PYqN5WdnIvc61oqeGhYGfI.roa
Signing time: Mon 02 Jan 2023 06:15:01 +0000
ROA not before: Mon 02 Jan 2023 06:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210697
IP address blocks: 2a0c:b641:4b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7a:f7:4a:5e:c3:93:3a:f0:07:06:bd:2c:06:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ae4eee0f62a37959d9c8bdceb5a2a78685819f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:db:80:2a:51:62:d8:0e:71:96:a4:76:8e:c0:
c0:1d:86:a8:37:fe:1c:be:6b:95:6f:42:0a:9c:e1:
f0:55:6c:3c:a7:1d:77:1e:e1:b5:ac:da:db:b1:3c:
70:5c:bf:5b:0c:51:20:c0:5e:00:8e:bf:f1:26:2f:
61:f7:d3:56:b6:b6:40:2d:4d:09:55:fa:3b:f5:71:
a0:0b:89:35:dd:d9:91:36:07:30:b9:f0:bf:53:57:
32:76:eb:e3:bd:84:6e:65:d1:27:79:58:d6:b7:2e:
57:d8:9b:be:76:2b:09:ac:41:d2:9c:b2:10:b1:b0:
76:97:cd:d1:4c:22:04:77:ce:92:ea:e0:64:22:d4:
05:e7:63:70:e6:c3:a6:26:a3:f5:fb:fa:ed:02:19:
2a:b9:ae:e6:3f:22:34:ec:58:98:83:32:d3:a3:c3:
fe:42:a1:98:6f:48:8f:40:9b:ff:57:44:87:ed:20:
d0:0c:2c:05:cb:c6:7e:0e:85:87:c4:d2:27:3c:13:
47:70:7e:16:28:13:30:52:d7:54:54:09:54:94:0a:
b5:4f:c2:e8:7d:ec:7a:72:85:5c:d1:35:83:13:db:
02:6a:8d:8b:d3:40:84:4d:1c:fd:d9:5a:77:91:a5:
7c:bb:92:bf:30:b8:e9:f9:86:2a:42:d9:26:6b:dc:
de:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E4:EE:E0:F6:2A:37:95:9D:9C:8B:DC:EB:5A:2A:78:68:58:19:F2
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/SuTu4PYqN5WdnIvc61oqeGhYGfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:4b0::/44
Signature Algorithm: sha256WithRSAEncryption
5f:98:75:44:ab:aa:30:9e:6b:78:e7:cb:00:88:2e:06:6d:df:
08:2f:39:c6:1b:2c:34:1c:73:df:0c:6b:e1:c1:3c:55:3b:54:
05:92:ea:c8:dd:b4:5f:65:09:e8:66:c7:58:aa:0d:de:2c:05:
85:6d:0f:25:17:9e:d2:eb:e4:b8:a2:52:67:d8:58:3f:23:02:
e7:87:36:a9:09:68:b1:02:82:dc:39:88:07:d7:62:be:17:44:
47:ad:1a:30:cd:f5:98:62:d0:bc:fc:d4:d9:cb:51:1f:38:78:
1c:ba:d6:09:3d:d6:aa:3e:0b:14:c8:7d:cb:02:aa:54:4f:59:
d4:00:71:c9:97:0c:97:2e:1c:8a:42:40:c3:1f:6e:63:af:fd:
06:41:0d:8b:16:96:bb:3e:da:c2:c4:24:87:ff:38:62:5a:00:
87:f2:23:a3:00:99:97:98:be:84:a0:f5:28:88:cd:62:76:32:
0c:d6:5e:8e:5e:fa:e7:a7:2d:34:5f:8b:b8:24:a2:ed:e5:de:
f2:38:f9:ad:b8:8c:fd:9b:e1:2f:11:c1:43:4e:6a:64:ac:47:
7c:ae:ed:ca:c6:42:2a:e5:14:05:1c:86:44:1f:e6:10:c1:e8:
93:8a:9d:72:d6:6d:93:c3:fb:9b:63:1a:58:af:7c:f8:2c:c5:
57:30:b5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:59 2025 by rpki-client