Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/t4ifh1sdLs0APT6uZ9btzsMyBX0.roa
File: t4ifh1sdLs0APT6uZ9btzsMyBX0.roa (raw, json)
Hash identifier: yB0hcRMlKDCtrmj9gBrnmFt8OoHFVp6fhv3L/MHGdRs=
Subject key identifier: B7:88:9F:87:5B:1D:2E:CD:00:3D:3E:AE:67:D6:ED:CE:C3:32:05:7D
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 02D7BDF2
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/t4ifh1sdLs0APT6uZ9btzsMyBX0.roa
Signing time: Wed 25 May 2022 19:18:14 +0000
ROA not before: Wed 25 May 2022 19:18:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210233
IP address blocks: 2a0c:b641:870::/44 maxlen: 48
2a0c:b641:30::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47693298 (0x2d7bdf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: May 25 19:18:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7889f875b1d2ecd003d3eae67d6edcec332057d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d3:72:96:81:e1:17:0b:77:44:7b:87:c2:26:
a5:76:82:db:26:69:e5:af:e4:db:52:be:b7:3f:cb:
eb:52:12:e0:c8:64:04:31:f9:ec:f1:db:0f:8d:1d:
a1:36:07:4d:fc:29:4f:77:98:b9:7b:e4:ac:dc:b3:
02:80:ba:4a:d8:29:a8:bb:2e:1c:bd:65:3b:ad:13:
17:80:1e:71:9d:69:ed:b7:33:3d:84:df:af:bb:77:
6c:19:ee:9f:b8:66:94:2b:bc:d6:9b:9c:2f:13:17:
64:17:67:02:62:81:9a:62:06:df:ec:c8:ae:ad:0d:
cf:4f:69:6e:b9:e6:a4:e8:b0:42:20:91:fe:7f:9a:
50:b2:50:61:cf:7e:e3:74:d7:ca:04:6b:cc:1a:5f:
17:4c:bf:1c:37:9c:79:95:e8:76:0a:81:30:5f:98:
18:e4:02:81:6c:68:fd:a3:99:46:ef:c6:c1:fc:20:
80:0d:49:cb:65:d8:95:ac:2a:77:58:e5:cf:a9:4e:
fc:25:c7:fb:09:96:7b:ab:e1:dc:15:3f:55:c7:02:
0d:0c:ee:07:32:f1:dd:48:da:fd:84:f9:ec:dd:66:
77:4a:79:6f:c6:46:14:cc:bc:45:58:db:9f:01:a4:
e7:61:c7:b0:6e:4e:6e:88:98:e6:03:be:be:57:3c:
66:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:88:9F:87:5B:1D:2E:CD:00:3D:3E:AE:67:D6:ED:CE:C3:32:05:7D
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/t4ifh1sdLs0APT6uZ9btzsMyBX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:30::/44
2a0c:b641:870::/44
Signature Algorithm: sha256WithRSAEncryption
54:e8:de:c9:eb:be:f3:15:c0:46:3c:49:73:3e:8d:14:a3:26:
d6:80:53:de:c3:d3:4e:ad:13:b4:99:4f:49:48:b0:69:43:de:
97:6e:f7:ea:41:1f:f9:17:0a:a1:09:4f:70:e5:9c:0d:19:ef:
7d:b8:7a:e9:ef:cb:00:b2:bf:2d:ff:82:ba:74:63:4d:42:e7:
4c:6f:1d:88:0c:38:6d:ca:4b:ec:c4:81:6a:d2:a1:28:c7:48:
52:b2:0c:64:b5:11:d9:23:d9:02:e8:51:7f:35:de:c3:08:88:
1e:55:8b:c0:c4:be:3a:be:dc:58:23:7d:3e:36:95:70:4f:b3:
3c:b5:80:86:d8:bb:60:be:a6:19:6d:24:fe:13:4d:96:74:49:
95:3f:3f:6d:46:0c:a7:6c:59:d6:1a:08:ba:8d:36:51:ab:be:
ad:c2:9e:3d:c6:3e:bd:21:ed:1f:18:2e:c2:ba:c3:9c:e7:1e:
a0:8f:4b:4f:26:d9:d7:e0:45:4e:4c:5a:06:14:c2:d8:32:a7:
6b:75:2b:a8:a3:b7:e1:4f:cc:9f:38:4a:17:d5:5f:d2:b2:02:
e1:0e:0b:9a:3c:2f:14:9c:4e:af:2c:a2:dc:06:bc:17:f0:c4:
f1:b9:4b:06:62:63:4f:9c:4c:5e:d2:35:42:18:49:e5:79:c1:
b1:37:59:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:17 2025 by rpki-client