Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/qZYiPhMgRblyvIC8ZEyC343Z4mM.roa
File: qZYiPhMgRblyvIC8ZEyC343Z4mM.roa (raw, json)
Hash identifier: mBUXGmX9ZzKUD/S4tKUM+En0QP2hWrlvUsTSOjjmuzw=
Subject key identifier: A9:96:22:3E:13:20:45:B9:72:BC:80:BC:64:4C:82:DF:8D:D9:E2:63
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E46CDD538F167D5B39CCDBC80031A
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/qZYiPhMgRblyvIC8ZEyC343Z4mM.roa
Signing time: Mon 02 Jan 2023 06:14:47 +0000
ROA not before: Mon 02 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60240
IP address blocks: 2a0c:b641:280::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:46:cd:d5:38:f1:67:d5:b3:9c:cd:bc:80:03:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a996223e132045b972bc80bc644c82df8dd9e263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8e:25:24:10:a6:a9:5b:dc:51:e0:8b:f7:70:
ab:b9:8e:9d:8f:43:a3:09:b6:0d:7e:f4:4c:f7:47:
1a:52:b6:2c:78:88:db:b0:b4:18:fc:14:22:75:1a:
94:f2:c3:81:72:87:04:c4:91:5b:0c:fa:21:6e:a3:
d2:c1:0b:a3:c6:3c:cc:6c:a2:e4:fb:1a:61:c8:c9:
c5:a2:fc:c5:e3:8d:a0:69:b2:49:d6:52:19:0f:cf:
07:3e:14:72:de:17:f0:c6:44:92:68:ff:2a:49:23:
00:b3:f8:60:cd:b7:e1:c2:85:21:17:08:ba:17:2f:
b5:a4:b5:e3:99:57:3a:d3:8d:1f:89:d8:67:60:77:
40:be:1c:e3:a8:9b:45:62:61:4b:c6:a1:d9:65:b1:
9c:65:32:c0:e3:7b:da:03:f7:8b:31:5f:82:ab:b5:
eb:14:e6:dd:e5:d6:00:97:e5:43:36:b1:0f:42:ab:
49:da:e4:e1:8f:06:2c:fa:5a:cc:e8:3a:6c:f3:3f:
c2:8d:5b:79:8d:c5:e4:9a:73:58:fe:b2:49:26:cd:
2d:d4:51:75:4b:96:69:fb:76:0b:d3:e9:36:93:3d:
ae:60:82:d8:fc:21:54:b3:3b:4a:f1:a5:d6:39:af:
af:ce:76:12:0a:ad:91:9c:14:64:a0:f6:ea:f7:ad:
b6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:96:22:3E:13:20:45:B9:72:BC:80:BC:64:4C:82:DF:8D:D9:E2:63
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/qZYiPhMgRblyvIC8ZEyC343Z4mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:280::/44
Signature Algorithm: sha256WithRSAEncryption
50:01:b5:b2:cc:a6:6d:3c:2a:74:a2:a4:73:88:17:35:7a:8e:
55:61:84:7a:d1:bc:16:9f:cf:ce:f4:08:89:71:40:9e:b5:7c:
39:f3:79:64:04:47:97:9d:0a:b7:f8:49:26:c3:95:ab:6e:39:
34:26:86:cf:dd:8c:59:10:af:8a:78:26:40:56:93:d7:6a:53:
c3:46:50:8f:f4:8f:3b:b4:35:01:70:38:f4:e9:f2:34:87:be:
42:7f:47:dd:aa:85:08:c3:85:f4:67:65:28:52:d9:d5:0a:5e:
23:9f:62:a1:ae:69:cd:6b:19:68:be:29:b1:65:a9:7d:76:aa:
d4:3a:61:5c:c0:be:46:a7:38:4b:92:a1:82:b4:e4:a4:65:5d:
b7:dc:41:20:73:3a:1c:65:06:c4:c0:d0:70:4b:77:9f:19:55:
47:f9:70:d6:1b:ae:46:df:9a:9f:1e:10:1d:00:cb:95:2e:d3:
27:24:95:f1:ae:bf:bd:b2:f0:25:77:b2:50:3f:bd:c4:ce:bb:
d2:df:19:94:98:81:0b:3c:46:ee:c0:82:7f:2b:ed:b4:76:37:
d2:2b:a0:ec:c3:c2:80:7e:e7:5c:ff:4c:3f:94:c9:bd:e8:24:
d8:66:e3:35:6e:2d:62:ca:34:50:f6:e5:71:72:64:c7:44:8a:
26:c5:eb:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:47 2025 by rpki-client