Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/XAWKB1eCSJuPHeQ-WH-o7S6b0n0.roa
File: XAWKB1eCSJuPHeQ-WH-o7S6b0n0.roa (raw, json)
Hash identifier: iicsNbOh586kqiXa/8bwN7vwDeyLnWsJaU5s+86c8Lo=
Subject key identifier: 5C:05:8A:07:57:82:48:9B:8F:1D:E4:3E:58:7F:A8:ED:2E:9B:D2:7D
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 018BA06ACFC3126F374FF941D90292FDE918
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/XAWKB1eCSJuPHeQ-WH-o7S6b0n0.roa
Signing time: Sun 05 Nov 2023 16:57:16 +0000
ROA not before: Sun 05 Nov 2023 16:57:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 2a05:541:135::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:140::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:136::/48 maxlen: 48
2a05:541:137::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:132::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:138::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:139::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:134::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a0:6a:cf:c3:12:6f:37:4f:f9:41:d9:02:92:fd:e9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Nov 5 16:57:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c058a075782489b8f1de43e587fa8ed2e9bd27d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:10:e8:ab:5b:69:f1:bc:bb:01:40:92:62:d9:
b2:03:43:cb:af:d0:cc:bc:eb:76:83:1b:85:59:e1:
4d:18:3d:af:13:dc:07:d2:a2:f4:49:ab:22:b0:95:
f3:18:04:71:29:b2:a8:6e:df:2e:91:78:56:ff:7a:
2f:c1:7b:ec:ae:35:a1:df:d2:85:61:69:1f:fa:5f:
56:0e:c5:f8:52:58:56:41:a1:0d:12:7e:49:99:9a:
bb:5c:3b:d6:ec:49:8d:ae:48:5b:ac:4e:f9:3a:41:
4b:1c:80:ed:3e:c8:87:e3:31:b9:0a:0a:6a:88:91:
f1:63:6c:89:98:84:00:c2:e7:57:77:80:6e:aa:15:
77:cc:6b:13:d4:46:ba:78:d1:33:74:b9:d0:e9:c9:
0f:7a:8d:fb:43:68:fa:c3:2c:1c:02:3b:04:26:02:
2a:11:40:5d:3b:a8:85:eb:41:a2:2f:a5:3c:78:54:
da:ad:0e:ac:2e:48:ea:da:57:1d:87:2d:7f:32:61:
7b:b8:58:c2:ac:b5:5a:2c:e2:cb:92:16:29:a9:48:
ad:0c:c2:2f:fd:11:11:a7:04:74:01:55:3e:ce:91:
ac:51:93:72:16:a4:2f:5c:76:09:d5:5b:27:e3:a2:
e7:95:68:4d:70:5e:0f:a1:78:e9:34:16:cb:00:07:
7d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:05:8A:07:57:82:48:9B:8F:1D:E4:3E:58:7F:A8:ED:2E:9B:D2:7D
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/XAWKB1eCSJuPHeQ-WH-o7S6b0n0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:109::/48
2a05:541:114::/48
2a05:541:119::/48
2a05:541:121::-2a05:541:123:ffff:ffff:ffff:ffff:ffff
2a05:541:125::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::-2a05:541:139:ffff:ffff:ffff:ffff:ffff
2a05:541:140::/48
Signature Algorithm: sha256WithRSAEncryption
4a:0f:1b:10:dc:6c:38:5b:83:d7:83:f9:70:2a:18:89:6f:11:
38:48:d6:ca:a7:07:cb:19:92:fe:e1:63:18:4e:73:be:ac:2e:
3d:35:f0:0c:9a:b2:f6:f6:94:bf:0f:97:89:cb:93:29:77:81:
b4:0f:13:9b:d9:d7:7c:c9:ec:d7:4c:f8:9e:46:80:84:87:05:
fd:de:17:8c:f9:56:aa:62:ff:11:d7:a8:89:e6:d9:c4:44:8f:
31:e2:e4:ab:44:5e:27:db:c4:4c:ac:33:8f:6e:14:08:76:bb:
a0:c3:ea:25:f7:31:e2:7f:a9:1f:e5:8c:a3:6a:9c:d3:d5:1d:
9f:0d:b7:61:97:7e:51:a0:fc:fb:6c:a7:f1:0d:40:05:8f:14:
ee:8b:fb:45:73:4c:94:ee:81:5e:b5:fa:f9:10:4a:0f:2d:a1:
08:30:2e:11:67:fa:cc:21:68:6e:18:5c:83:59:a9:84:bd:6f:
43:e2:25:ee:e7:a8:13:04:e1:32:66:30:a0:42:c1:16:97:82:
12:c9:e5:28:4e:89:34:e2:84:a2:6e:fe:fd:23:7d:c8:99:88:
2e:cf:cf:5b:41:44:aa:28:a6:cd:2e:64:47:93:45:b9:9d:9b:
46:85:ca:22:9b:ed:65:ed:4c:17:92:e4:3b:3f:b9:8a:a9:44:
e4:20:80:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:14:24 2025 by rpki-client