Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/xRtVMzkekxZoTHit5xEbkRoFfLc.roa
File: xRtVMzkekxZoTHit5xEbkRoFfLc.roa (raw, json)
Hash identifier: XQdmWHo0NRCgUhrPX51iRrJNPsdBce3eFsKywKY3xAs=
Subject key identifier: C5:1B:55:33:39:1E:93:16:68:4C:78:AD:E7:11:1B:91:1A:05:7C:B7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0157718C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/xRtVMzkekxZoTHit5xEbkRoFfLc.roa
Signing time: Sat 01 Jan 2022 01:00:27 +0000
ROA not before: Sat 01 Jan 2022 01:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212952
IP address blocks: 2a0c:b641:5d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22507916 (0x157718c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c51b5533391e9316684c78ade7111b911a057cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:15:98:6a:7d:ca:0d:d4:4d:e1:15:b2:b9:c4:
ba:44:9b:91:97:33:38:39:03:69:57:3f:3b:02:08:
bd:8d:52:2b:f4:fb:e2:3a:1f:d2:be:1f:0b:31:d0:
dd:3a:4c:11:8b:8f:36:63:b1:77:b3:9e:5c:a4:08:
69:12:60:b9:94:98:57:5e:fa:c5:b7:16:f8:d9:d1:
63:56:e7:c7:ed:b2:09:10:5a:cb:36:da:11:1a:d7:
fd:9a:46:5e:66:ae:72:0d:96:ff:2a:a4:b0:66:96:
cb:cd:4f:76:f4:14:da:69:15:74:4f:28:cf:83:e1:
45:29:79:bc:f7:34:d7:89:2d:55:e1:22:63:20:9a:
6d:68:fd:4e:26:35:08:e9:af:90:8e:d0:51:e9:2f:
04:b6:63:29:51:98:a5:eb:fb:76:99:b0:55:b1:75:
09:16:84:01:4b:8f:22:fa:97:c1:aa:24:77:f7:45:
95:3d:52:2a:cc:b4:c6:1d:5f:2f:15:8c:14:be:fe:
80:a3:66:bb:4d:fe:82:73:50:d9:ea:66:3c:ed:74:
50:a0:ae:d6:81:9b:61:46:b3:67:f0:4d:31:b7:ed:
c9:75:40:8b:4e:aa:9c:f1:47:be:8c:08:47:45:1f:
e1:8c:1a:ce:00:70:dd:f3:0f:ed:44:2d:b4:c0:30:
87:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1B:55:33:39:1E:93:16:68:4C:78:AD:E7:11:1B:91:1A:05:7C:B7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/xRtVMzkekxZoTHit5xEbkRoFfLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5d0::/44
Signature Algorithm: sha256WithRSAEncryption
67:b6:69:6d:1e:d6:6c:27:92:23:f1:94:9b:22:19:cc:45:1b:
c4:ab:ca:13:a6:15:d2:03:6b:52:c5:c3:84:43:53:03:c7:53:
46:5e:18:91:2c:f1:f8:8d:da:03:d5:55:c1:22:09:f3:53:12:
d2:c6:c3:05:26:66:32:86:d5:8e:5f:23:4d:0a:48:25:a1:17:
fb:2a:ea:97:12:94:cb:ba:58:2b:b7:10:57:1a:b1:f8:d9:5d:
7f:05:96:70:b4:4e:6c:7f:6a:92:86:e2:57:6f:be:ae:17:b8:
08:7a:59:64:18:29:4c:da:da:bf:60:1f:7c:73:34:b4:e5:b0:
fa:6a:65:b8:90:59:59:50:5f:00:1e:07:05:fb:6d:bf:dd:bf:
a0:fc:ec:f3:96:0c:56:ca:76:a4:0f:92:4e:bc:bf:ea:82:8c:
f9:ad:1e:e2:b0:23:55:fb:a6:d0:77:d1:e9:22:92:52:d0:40:
bd:be:1d:e5:5d:9f:4e:a8:93:00:26:55:08:80:a3:03:d4:1d:
19:81:90:08:d3:db:c8:26:c8:d1:3c:96:4f:69:9c:58:ab:4a:
49:1a:48:0c:2a:a3:bf:5c:9d:32:87:69:be:5c:83:ca:27:a8:
ad:8f:28:c0:1a:61:2a:5b:6d:24:3b:95:60:09:50:27:cf:c2:
7d:07:ff:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:32:40 2025 by rpki-client