Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_Xs1FuYZab5zF2p8Ez3v6TD5jDE.roa
File: _Xs1FuYZab5zF2p8Ez3v6TD5jDE.roa (raw, json)
Hash identifier: 2u4bJ/3+569dDn8AgIYVrzs6LUOfC3JMHQIz+FYOk78=
Subject key identifier: FD:7B:35:16:E6:19:69:BE:73:17:6A:7C:13:3D:EF:E9:30:F9:8C:31
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01589548
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_Xs1FuYZab5zF2p8Ez3v6TD5jDE.roa
Signing time: Sat 01 Jan 2022 01:00:28 +0000
ROA not before: Sat 01 Jan 2022 01:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212980
IP address blocks: 2a0c:b641:5a0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22582600 (0x1589548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd7b3516e61969be73176a7c133defe930f98c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7d:a4:e0:0a:94:28:10:9e:36:26:6a:b7:06:
3b:f3:31:4b:26:11:65:2e:bc:ac:f0:71:8b:30:aa:
ed:e8:dd:24:c6:b2:5f:4a:15:18:af:e5:1c:90:71:
6b:9e:b2:6f:74:0a:cd:a1:0a:a6:e0:9c:59:c3:4c:
ca:85:93:ce:1c:8c:52:65:2e:ee:7f:25:6c:29:72:
d1:28:01:5e:ff:76:10:b1:a4:d8:9f:d8:90:84:7a:
ae:3d:1b:49:53:6f:5f:a9:95:ba:6c:2c:50:51:fb:
aa:a0:98:0c:22:85:11:f5:dd:0c:0a:23:8d:86:31:
07:f6:0b:6d:92:1c:1d:b1:b5:d2:dd:48:ff:95:c1:
a2:76:6e:c0:01:2d:e7:06:97:a9:e4:de:a8:96:9d:
7f:ce:50:cf:2c:93:fd:1d:34:94:26:f8:1d:a1:93:
c4:67:ec:ef:2f:c5:cc:94:da:7b:a0:64:78:1c:69:
c4:98:e5:2c:d4:d4:6f:7d:0a:f1:db:bc:a5:5f:f7:
ba:07:07:f0:7f:0f:b3:80:bd:bd:5f:d8:a0:b5:03:
81:9c:64:51:9b:fa:0c:66:b3:2e:cf:09:c6:95:af:
cc:08:0f:23:a8:2c:d3:28:a2:d9:e9:24:f4:2e:38:
7a:32:50:3d:5d:57:85:bc:2d:24:90:99:42:e4:3a:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7B:35:16:E6:19:69:BE:73:17:6A:7C:13:3D:EF:E9:30:F9:8C:31
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/_Xs1FuYZab5zF2p8Ez3v6TD5jDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5a0::/44
Signature Algorithm: sha256WithRSAEncryption
1f:9c:5b:59:b5:f7:a4:6e:27:06:27:78:b4:08:1f:d8:b0:cc:
30:8e:56:68:54:69:ad:23:77:c3:ad:3f:2d:f5:77:78:79:a3:
f1:15:b7:dd:f5:4e:2f:1c:f0:0c:70:17:da:96:63:a7:d1:54:
44:34:07:fe:12:0d:db:a7:7b:7c:4e:ed:87:10:34:b7:df:a4:
dc:11:ba:82:98:09:a5:36:2d:9b:8e:b4:b1:8e:bc:62:6f:52:
1d:ba:67:2f:71:2b:48:f9:9a:aa:e9:5d:38:cb:04:1a:1d:6e:
41:83:b0:ef:a4:45:89:41:8e:43:cc:ab:7f:1c:21:9b:f2:6c:
ed:1d:74:16:ce:e9:29:61:20:fa:92:49:f2:54:ba:2e:23:18:
f1:61:48:03:20:49:6b:d9:5d:e7:95:df:63:71:58:db:fa:34:
a2:3c:21:3a:67:3c:83:c9:ba:6f:99:90:bc:43:16:71:09:1a:
b5:a0:24:8d:49:54:4d:8c:19:e5:13:24:fd:64:7c:c1:b7:b6:
8f:22:45:87:25:0c:33:6d:41:64:a0:bf:e8:6f:2c:60:b7:61:
ef:cc:78:14:7b:e0:ad:ad:dc:89:3b:27:53:e4:24:f6:26:1c:
46:bd:45:ad:cf:af:a9:d9:90:8c:67:e8:85:e3:09:57:ea:b8:
5e:fd:c9:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:19 2025 by rpki-client