Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/t53-Y6G17BTjqT8ULt0KcUSPgkk.roa
File: t53-Y6G17BTjqT8ULt0KcUSPgkk.roa (raw, json)
Hash identifier: 1PqbyDzd77vjK13VPzDryEGGzwhLbI+kOoWMEmTm3WY=
Subject key identifier: B7:9D:FE:63:A1:B5:EC:14:E3:A9:3F:14:2E:DD:0A:71:44:8F:82:49
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0187051706312999295273F412080A92729C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/t53-Y6G17BTjqT8ULt0KcUSPgkk.roa
Signing time: Tue 21 Mar 2023 16:53:27 +0000
ROA not before: Tue 21 Mar 2023 16:53:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199258
IP address blocks: 2a0c:b641:9d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:17:06:31:29:99:29:52:73:f4:12:08:0a:92:72:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 21 16:53:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b79dfe63a1b5ec14e3a93f142edd0a71448f8249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3d:80:5a:be:ec:c8:2b:28:a7:83:54:60:35:
cd:6c:9b:71:9f:da:65:09:65:bb:f6:fa:7a:ef:4b:
b0:88:96:09:cd:14:3b:c0:af:aa:ef:6d:8c:ef:c8:
3c:f9:8d:db:6c:2c:53:f3:76:c1:cc:d7:de:57:5f:
de:28:8c:16:da:27:84:f8:b1:4d:c5:3a:aa:09:cc:
7e:88:4e:6e:9b:75:38:69:23:5e:c6:05:e8:64:d4:
80:b6:8a:dc:13:65:45:d3:e7:58:e3:98:d4:75:10:
fd:5c:cc:5c:6c:07:62:c8:4f:eb:65:48:06:a5:76:
55:bb:7f:28:71:11:02:bd:7e:c0:2b:2d:9f:81:bf:
7a:c2:6e:38:94:45:23:d9:fb:29:a2:90:bd:c9:8e:
c7:6a:3a:3a:e7:c1:3c:ba:e8:5f:d0:39:f8:21:dd:
1f:73:e6:15:13:8e:55:2e:fa:c7:8b:1c:e9:8f:c9:
c5:d7:bf:d5:7a:63:bb:82:b9:59:18:de:d8:60:22:
9d:3a:11:03:4f:8c:bd:60:70:18:15:9d:ae:76:50:
28:70:bb:79:74:47:1b:f9:03:fe:cd:e7:3d:d9:f6:
fc:b8:14:46:83:9d:b5:81:8b:06:ef:c6:a2:0a:aa:
d4:5d:74:64:4b:e8:c5:a6:1f:da:97:b6:bd:29:eb:
24:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:9D:FE:63:A1:B5:EC:14:E3:A9:3F:14:2E:DD:0A:71:44:8F:82:49
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/t53-Y6G17BTjqT8ULt0KcUSPgkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:9d0::/44
Signature Algorithm: sha256WithRSAEncryption
46:3f:28:b9:d5:83:6f:90:16:b8:ca:c0:79:fa:b9:42:0d:c8:
32:b9:2a:20:29:7a:2c:2d:d0:8a:13:b6:b8:56:4f:90:ac:e9:
dd:af:7b:fa:4b:9b:b4:ec:22:6d:17:ee:1a:bc:3e:9b:4c:72:
f9:11:1a:c8:2f:7f:d0:8e:f2:21:ca:50:15:8a:08:83:d7:b4:
17:bb:ad:af:84:79:ef:4b:b6:47:95:91:b1:1b:9a:59:61:77:
ac:c1:e4:cd:a4:66:21:04:5f:62:d4:9a:42:4a:1e:ae:f4:de:
98:56:7e:81:8e:89:8e:3b:b9:67:39:3b:48:22:9b:4d:73:c4:
bc:d3:e7:8c:4b:3b:0f:7c:18:fc:e1:b4:c9:99:02:f3:84:a6:
4d:96:2c:20:6c:b8:cf:b5:99:0a:6b:9b:5e:07:e4:ea:07:be:
36:9d:d8:49:6e:47:24:21:bc:1b:6c:9f:63:b9:63:fa:10:28:
54:35:d4:c8:9f:84:c3:96:ef:b7:2a:33:98:85:d0:82:89:0e:
18:35:a1:c3:61:1b:3d:bd:50:89:8e:e1:d8:05:dd:84:f0:2c:
2c:54:a4:9c:54:09:56:f9:65:9c:c3:7d:3a:bc:a6:f0:4e:c3:
3b:a5:63:45:60:4c:1b:71:06:6d:19:db:3b:ad:e4:04:aa:0b:
c4:cc:de:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:01 2025 by rpki-client