Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/dqoxTZCgiv8tt70y0KwcjVOX6Cg.roa
File: dqoxTZCgiv8tt70y0KwcjVOX6Cg.roa (raw, json)
Hash identifier: VqPjgs8vyHspiff7dy96EN80e7QTwj4PmSLJgPX/s1Q=
Subject key identifier: 76:AA:31:4D:90:A0:8A:FF:2D:B7:BD:32:D0:AC:1C:8D:53:97:E8:28
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 02058B8D
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/dqoxTZCgiv8tt70y0KwcjVOX6Cg.roa
Signing time: Mon 07 Mar 2022 01:30:23 +0000
ROA not before: Mon 07 Mar 2022 01:30:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49519
IP address blocks: 45.13.117.0/24 maxlen: 24
2a0c:b641:470::/44 maxlen: 48
2a0c:b642:5000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33917837 (0x2058b8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 7 01:30:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76aa314d90a08aff2db7bd32d0ac1c8d5397e828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a0:a2:f6:66:c5:cd:d1:7b:f1:b9:29:5d:e1:
c8:e1:8a:11:cf:23:7f:7a:6f:4a:63:6f:97:0d:76:
3e:5f:ea:6e:1c:07:7c:37:51:9d:1f:ab:71:a4:51:
d7:c9:52:af:12:9c:d6:27:88:6f:96:65:7a:97:1e:
00:71:4c:84:53:ff:ca:5d:b5:a9:ed:5e:63:f8:0e:
9c:cd:4c:02:f1:31:c5:2e:50:3c:7b:87:0e:11:4a:
5b:72:11:da:8c:70:bf:23:29:91:20:fe:6d:6c:16:
12:1b:74:40:98:f7:01:9d:b1:99:e8:c1:b7:5c:ab:
6c:20:07:59:5c:97:0e:10:8b:40:26:b1:43:50:66:
bf:84:26:47:b7:4f:04:b4:66:5c:45:4e:e3:46:d5:
5f:27:c5:d1:a4:45:eb:6f:16:34:46:35:01:a2:af:
66:42:6f:0d:a3:8c:8e:dd:0c:d1:c3:d0:16:74:ad:
00:cc:1a:6e:61:4b:ed:9d:61:62:a0:aa:12:4f:35:
e5:18:f7:9e:30:53:5b:87:14:f3:39:25:2c:07:b8:
4a:57:ee:9b:d2:be:c2:3c:76:d5:fc:a5:d2:d4:c8:
19:ca:f8:8c:37:8e:d8:d0:90:a4:89:9b:8e:65:06:
27:45:82:1c:84:82:86:e9:49:e5:18:1c:a5:29:c2:
6f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AA:31:4D:90:A0:8A:FF:2D:B7:BD:32:D0:AC:1C:8D:53:97:E8:28
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/dqoxTZCgiv8tt70y0KwcjVOX6Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.117.0/24
IPv6:
2a0c:b641:470::/44
2a0c:b642:5000::/36
Signature Algorithm: sha256WithRSAEncryption
3d:7b:28:7f:20:a5:06:35:65:1c:51:6e:fe:85:50:eb:16:09:
3c:7c:83:a1:b2:6f:73:28:e1:2e:dd:65:a8:62:0f:54:4b:82:
c0:68:b2:23:7b:f1:41:de:33:c5:27:6a:a1:fb:35:50:63:75:
c5:0b:b9:99:d8:06:8d:f6:f2:f2:8b:9e:1a:1c:70:b0:77:3e:
b4:50:e4:bc:a3:7a:37:cb:20:08:a2:1a:63:ac:ff:3f:fe:c5:
20:22:43:45:20:f8:a7:95:78:7a:42:e8:50:d6:24:98:6c:1b:
98:5b:be:b8:f8:74:98:f9:35:03:61:3a:a1:2d:d9:fe:91:05:
c8:7d:25:77:7d:c2:3b:52:06:08:da:e2:66:9e:d1:df:94:cc:
d7:19:76:95:ef:5d:a8:4f:5c:37:6d:da:db:3b:8b:62:bb:a0:
53:8b:49:6c:28:db:01:36:5f:41:64:49:dc:e0:92:83:dd:c6:
28:f3:3d:e5:a9:33:77:b3:c5:78:30:ca:80:9b:52:34:33:ea:
93:a2:ca:10:50:b9:b3:6b:e1:19:52:c7:f0:12:0b:3c:f5:77:
cd:08:14:fb:d6:f6:2e:6f:ee:04:ff:40:58:5c:81:07:63:dc:
dd:ee:3c:64:04:bd:d7:8b:88:30:e3:79:ed:fb:db:52:9d:7d:
03:6d:8d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:51 2025 by rpki-client