Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/deJP-mEip9gnum_oppGTMtH6JQI.roa
File: deJP-mEip9gnum_oppGTMtH6JQI.roa (raw, json)
Hash identifier: YyfxO3uZ+Xs9OZiCjROq+y8K3AfVAc0O3YCqX0BMLB4=
Subject key identifier: 75:E2:4F:FA:61:22:A7:D8:27:BA:6F:E8:A6:91:93:32:D1:FA:25:02
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0144BC08
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/deJP-mEip9gnum_oppGTMtH6JQI.roa
Signing time: Sat 01 Jan 2022 01:00:15 +0000
ROA not before: Sat 01 Jan 2022 01:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211139
IP address blocks: 2a0c:b641:160::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21281800 (0x144bc08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75e24ffa6122a7d827ba6fe8a6919332d1fa2502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:85:56:a4:07:96:b9:b1:d5:82:d6:93:a1:77:
5d:fa:2b:d2:ff:7b:95:3c:c1:60:0f:79:c9:30:2f:
24:5a:9f:1f:91:fc:a3:8c:89:e7:23:5f:2d:10:38:
61:95:71:8d:1e:86:4c:0d:d9:07:dd:18:bb:98:42:
e4:62:70:5b:35:3b:e3:c8:57:ca:ef:3d:96:bf:f2:
de:79:e2:18:0e:f2:89:1b:13:63:67:80:3b:c8:b0:
63:39:42:5c:7e:1e:3d:e2:c0:d5:fd:08:41:97:62:
82:12:16:0e:9f:70:35:23:71:34:c4:1a:ed:fb:de:
7f:53:2e:32:01:38:fb:7d:7c:37:e4:1a:03:20:ff:
e5:a5:86:ef:f6:1a:6a:1e:f1:18:71:f3:10:93:ce:
67:01:70:50:81:2e:52:37:e7:3a:83:40:21:fd:fc:
10:70:55:55:3e:00:f8:9b:29:8c:92:f0:57:64:a1:
44:2c:b3:37:28:b0:58:35:2b:33:e2:54:5c:ae:54:
f3:f1:8c:bc:5b:f5:d8:4f:d8:12:68:2f:99:02:d9:
ba:b4:4a:b6:76:52:b7:d3:cf:0a:c3:d9:c4:11:ed:
ed:d0:e6:5a:52:67:e2:7f:49:6d:6e:55:bd:b1:58:
68:91:b0:89:ca:57:88:f4:f2:f1:1c:63:e7:3a:51:
4d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E2:4F:FA:61:22:A7:D8:27:BA:6F:E8:A6:91:93:32:D1:FA:25:02
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/deJP-mEip9gnum_oppGTMtH6JQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:160::/44
Signature Algorithm: sha256WithRSAEncryption
1f:4a:dc:f5:d9:d9:1f:fe:e0:86:7c:83:01:05:3e:fc:dd:b7:
d9:d4:4f:87:21:4b:ad:91:20:c5:ea:d7:88:fa:dd:e8:49:5d:
3b:1a:fa:6c:b8:6e:91:91:e9:57:49:ca:de:4c:ff:de:35:cb:
a9:18:d7:70:e5:8e:8e:7b:03:88:e3:13:1b:d0:e7:6a:90:73:
9b:2b:ee:79:d7:e4:bf:1d:5d:86:ca:24:e6:fc:46:cc:8b:cd:
e8:fe:8f:99:a7:83:a9:12:17:a3:06:21:d5:df:1f:56:97:37:
99:24:67:73:5f:09:db:a3:f4:84:10:53:91:0a:f6:61:d5:80:
9d:b9:5e:5d:03:cd:90:2f:24:42:75:05:9f:19:3e:fc:84:0a:
a7:3e:73:05:2d:32:7b:06:5e:d0:11:f3:d6:bc:88:64:69:9d:
13:0d:92:8b:b5:1c:7e:4a:c1:7a:0c:5c:c1:14:1e:e0:d6:03:
9d:c3:9a:5e:66:3f:3c:b9:93:1c:cf:7e:bb:4b:40:e6:f9:42:
f7:a2:3b:63:b4:20:e2:ab:b2:6c:3a:15:0a:be:27:c5:2a:19:
19:9a:87:8f:3d:c8:4d:70:52:38:71:e3:09:cf:a3:c4:26:05:
25:a0:15:80:3d:e8:00:1d:4c:a6:43:c6:18:d3:21:5b:81:16:
f2:9b:14:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:09:26 2025 by rpki-client