Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/eVuUWfmXJIGInk-zMu1Sm3i_dPc.roa
File: eVuUWfmXJIGInk-zMu1Sm3i_dPc.roa (raw, json)
Hash identifier: 9D+/1ExwL8a6cz8PysnP1BrGFu0Tpm6UCvANXV81o/U=
Subject key identifier: 79:5B:94:59:F9:97:24:81:88:9E:4F:B3:32:ED:52:9B:78:BF:74:F7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E38811293992227A6732380D1D009
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/eVuUWfmXJIGInk-zMu1Sm3i_dPc.roa
Signing time: Mon 02 Jan 2023 06:14:44 +0000
ROA not before: Mon 02 Jan 2023 06:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34641
IP address blocks: 2a0c:b642:2000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:38:81:12:93:99:22:27:a6:73:23:80:d1:d0:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=795b9459f9972481889e4fb332ed529b78bf74f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:18:fa:65:5b:d0:a7:f7:9d:80:b7:1e:fb:76:
ab:13:48:48:13:93:b1:69:f3:e0:3c:51:fc:5c:23:
ce:95:f9:60:5a:2f:70:35:3a:b1:74:f4:cb:2e:74:
ec:bc:39:55:94:6a:7e:ab:85:a8:a1:ce:e3:98:62:
0f:2c:58:f2:b5:43:5b:7c:5f:4e:5a:3f:79:64:82:
15:af:06:1b:84:ef:49:11:66:ac:b9:c5:b1:f0:17:
2a:52:40:6c:f2:2f:e6:25:c1:b1:b8:d6:00:7a:2c:
7d:57:cd:fd:f9:e8:b9:16:27:de:b5:09:42:df:97:
06:48:a3:23:28:80:e3:2f:90:2f:7a:3d:41:87:f1:
90:80:a1:cc:0c:ec:c7:49:5b:85:eb:96:d6:84:78:
b4:74:4e:7d:ce:f5:91:21:79:b9:78:74:5d:4e:83:
2d:39:45:b7:24:3f:c5:37:72:17:2a:2b:0b:15:9c:
40:dd:5a:76:aa:45:88:11:d2:f9:1a:a4:20:61:83:
c2:1a:f8:fb:9b:fb:9f:51:81:be:42:c3:83:3b:db:
c6:b9:1a:c4:e5:a8:e6:7d:de:7e:35:3e:cc:28:95:
e3:65:cb:53:b3:5b:fa:27:cb:17:0b:15:39:06:fb:
ee:14:af:8c:5a:e5:4a:74:3a:34:9f:73:dd:c7:e5:
6f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5B:94:59:F9:97:24:81:88:9E:4F:B3:32:ED:52:9B:78:BF:74:F7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/eVuUWfmXJIGInk-zMu1Sm3i_dPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:2000::/36
Signature Algorithm: sha256WithRSAEncryption
76:5a:84:64:d0:30:f2:4d:ba:d5:f0:26:06:a4:7f:19:31:44:
de:7a:8a:e4:bc:61:6c:b1:61:3d:50:c0:27:93:fb:f5:2b:df:
9f:84:f1:ab:1d:13:5b:81:bf:6f:21:5f:47:3b:6a:29:52:69:
0b:29:6a:4c:4b:cd:1f:49:b7:67:a4:b7:5f:0d:d7:a3:43:92:
ab:a9:3c:88:a4:c5:5a:29:a3:c9:bf:5a:47:3b:09:f7:53:df:
36:45:83:dc:6f:50:2b:eb:2e:1b:84:6a:87:25:08:30:5b:c6:
29:81:0c:d2:d1:74:1e:fb:dc:31:cd:3b:f0:65:2d:91:eb:ca:
dd:ea:5f:ca:b4:75:ae:87:c3:85:bb:9f:85:3d:12:b6:fa:d8:
44:3e:95:b6:25:95:aa:6d:9a:1b:db:c6:80:47:03:56:7f:e8:
97:fa:be:78:d8:70:f5:18:8c:ea:09:99:63:b0:dd:40:8c:ed:
5a:cf:28:e7:e1:88:67:84:a6:69:9b:9f:b2:1b:d6:da:c9:71:
86:4f:65:bc:e6:78:a6:d2:7f:ca:51:d3:87:be:d1:19:9c:5a:
09:05:ed:b5:58:79:f4:09:fe:38:20:50:b8:45:73:89:30:0d:
11:84:3f:e1:22:f1:ed:34:01:9b:64:4a:35:14:5f:63:52:38:
45:5e:10:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:46:23 2025 by rpki-client