Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gotpIvpndlnZ0wEmc6ggXbqXYSg.roa
File: gotpIvpndlnZ0wEmc6ggXbqXYSg.roa (raw, json)
Hash identifier: j9Zrm8xIELEB9n9GMeF8a1ADyLn24Ch1uX4ssKATIVk=
Subject key identifier: 82:8B:69:22:FA:67:76:59:D9:D3:01:26:73:A8:20:5D:BA:97:61:28
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E52DC1491CD08718C5751DFC4A175
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gotpIvpndlnZ0wEmc6ggXbqXYSg.roa
Signing time: Mon 02 Jan 2023 06:14:50 +0000
ROA not before: Mon 02 Jan 2023 06:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204655
IP address blocks: 2a0c:b641:3c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:52:dc:14:91:cd:08:71:8c:57:51:df:c4:a1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=828b6922fa677659d9d3012673a8205dba976128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6a:03:a2:1c:4d:b3:3a:32:a4:6b:3a:f3:69:
6a:25:15:02:cd:b1:ff:46:81:3f:80:fd:de:dc:fa:
ee:02:f9:2b:c7:cd:32:e7:11:c8:f6:0a:57:5b:17:
33:6d:a3:ed:7e:61:d1:ae:91:fc:5c:e1:9f:45:5b:
99:fa:ab:2b:0b:1b:73:47:e8:d7:ec:4a:33:dc:e9:
2d:d8:e5:2b:ab:d7:55:65:7a:b9:25:ec:2f:56:a4:
04:9e:6c:78:91:70:29:eb:cb:87:73:d4:83:17:49:
4c:8c:b4:5e:7d:6d:3c:5b:97:3b:5f:fb:a5:50:f0:
f0:dc:96:47:73:26:1a:08:a6:13:78:42:0a:3c:31:
fa:ae:3c:9f:3d:33:14:e6:ed:2a:97:a5:53:fd:35:
6a:68:62:c8:c6:1f:42:47:ea:c1:15:2c:cb:76:bc:
e1:c2:04:6e:3f:c5:ba:32:da:30:e7:32:ec:e7:5a:
f1:d8:5a:13:d9:6e:2e:b9:d1:25:8b:76:4c:8c:7c:
e4:93:48:9a:d4:30:d2:4e:96:5c:3e:f2:5e:6f:32:
3d:19:f8:9d:9c:e6:8a:5d:36:d1:73:dc:aa:56:f1:
f3:f3:aa:a1:54:c5:13:9f:9a:c7:e5:15:4e:5d:9d:
57:fe:a2:14:a4:81:40:53:04:84:c7:3e:a0:9f:b9:
d8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8B:69:22:FA:67:76:59:D9:D3:01:26:73:A8:20:5D:BA:97:61:28
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/gotpIvpndlnZ0wEmc6ggXbqXYSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:3c0::/44
Signature Algorithm: sha256WithRSAEncryption
68:e4:f4:17:af:06:ba:85:82:cf:d6:b3:3d:5b:23:e0:50:c2:
57:81:e7:01:7d:1b:ce:43:fa:c6:c7:c3:f4:d9:53:b8:58:6f:
03:53:6b:a9:4b:4e:c0:16:bd:69:e7:a3:1e:39:b6:61:67:ac:
f1:06:3e:c7:84:64:96:3a:00:b8:51:f6:11:37:bc:6f:57:fb:
88:0d:f7:77:4b:e0:43:72:22:43:b2:82:1a:4f:dc:4c:d0:6a:
35:d9:ab:c4:aa:48:ae:1d:f5:90:1c:25:4a:d5:15:6f:29:63:
6d:ba:97:9f:39:62:bf:58:3e:55:78:fe:66:ea:26:73:dc:0f:
46:e2:7c:72:c8:a7:d5:5d:70:5c:85:35:bf:b5:2a:d3:ec:92:
8d:c8:2c:fa:95:d8:36:b9:33:01:3a:2c:34:7c:8d:3a:73:72:
ee:e6:0f:e9:f9:16:8d:46:6f:ce:1b:5f:d0:02:fc:ad:27:e1:
7f:06:9e:30:f5:70:e1:a7:a2:21:d6:b5:44:72:f3:e2:16:55:
a9:91:08:0c:89:85:ae:4d:fc:ba:85:78:31:78:65:db:37:27:
b8:f9:f4:83:96:cf:c8:b7:5d:05:b1:b8:0c:7d:82:3f:42:19:
8b:01:38:12:20:f2:04:1b:e2:bd:16:74:17:c8:ca:60:4d:4a:
60:38:fe:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:13:07 2025 by rpki-client