Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/6_0ITJ4XKkO5Ftp2YUFWT7j-mJE.roa
File: 6_0ITJ4XKkO5Ftp2YUFWT7j-mJE.roa (raw, json)
Hash identifier: YSPyGztmUm4z0X5Ll/+l8zj43B+6EOm1zQPzaCr6Eeo=
Subject key identifier: EB:FD:08:4C:9E:17:2A:43:B9:16:DA:76:61:41:56:4F:B8:FE:98:91
Certificate issuer: /CN=6177c580926599e83ab735ba2e04fc108778c441
Certificate serial: 01856E266E77628EBE23E576E66DC39623F4
Authority key identifier: 61:77:C5:80:92:65:99:E8:3A:B7:35:BA:2E:04:FC:10:87:78:C4:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YXfFgJJlmeg6tzW6LgT8EId4xEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/6_0ITJ4XKkO5Ftp2YUFWT7j-mJE.roa
Signing time: Sun 01 Jan 2023 16:24:50 +0000
ROA not before: Sun 01 Jan 2023 16:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207131
IP address blocks: 2a12:af40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:6e:77:62:8e:be:23:e5:76:e6:6d:c3:96:23:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6177c580926599e83ab735ba2e04fc108778c441
Validity
Not Before: Jan 1 16:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebfd084c9e172a43b916da766141564fb8fe9891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8a:7c:c8:e5:ca:d3:62:d7:7e:64:34:38:d1:
dc:77:24:fb:46:df:f2:9e:2c:3e:a7:59:c7:36:2d:
0e:cc:59:82:cb:77:16:f6:19:cc:7a:55:bb:28:de:
cc:07:61:5f:41:23:07:3a:b6:29:75:10:a1:e6:58:
ab:f9:54:b2:50:78:32:c0:1c:34:8f:72:80:f9:48:
26:13:51:8c:cd:64:d6:f9:71:4b:61:3f:48:5d:77:
f2:c5:39:a0:1f:ce:b4:69:4f:ff:f5:b4:52:27:18:
4e:d2:03:6b:64:83:24:62:48:05:d9:b6:da:0c:7e:
8f:6e:ab:9b:8b:39:48:0b:76:e6:c1:2b:bb:b9:82:
49:d6:1d:9e:95:8a:a3:81:e7:78:8f:c9:1b:ef:58:
da:c3:41:9b:02:37:af:f1:34:43:20:0e:ca:74:a0:
89:5d:e0:5c:c4:b2:c3:13:68:ae:ca:b3:04:c8:a1:
40:61:21:ba:fd:88:c8:ae:fb:ba:f7:67:c2:0a:59:
9b:b0:cc:04:7b:52:0f:35:09:33:a8:91:4b:a1:4e:
fa:6c:e9:de:50:3d:bf:e4:70:a4:61:c1:bf:3e:4d:
ce:44:68:8d:8b:ae:84:d3:79:17:e0:dc:df:d5:d2:
72:2a:6a:71:4b:11:4e:30:2b:c0:09:a2:29:d7:2b:
9b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FD:08:4C:9E:17:2A:43:B9:16:DA:76:61:41:56:4F:B8:FE:98:91
X509v3 Authority Key Identifier:
keyid:61:77:C5:80:92:65:99:E8:3A:B7:35:BA:2E:04:FC:10:87:78:C4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YXfFgJJlmeg6tzW6LgT8EId4xEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/6_0ITJ4XKkO5Ftp2YUFWT7j-mJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/29bf7b-4745-4423-a8fa-a32e2ed0cfd3/1/YXfFgJJlmeg6tzW6LgT8EId4xEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:af40::/29
Signature Algorithm: sha256WithRSAEncryption
42:33:fe:8c:56:68:c6:57:91:34:81:a9:92:86:a8:57:c5:7e:
cc:db:ce:11:12:a9:08:7f:d6:ea:2d:eb:55:35:99:96:7f:7b:
e4:51:92:8e:3d:29:ae:ba:54:62:b4:29:4e:20:76:5d:f9:6a:
bc:22:ad:6e:ee:1a:8c:a6:bf:3f:67:a7:a7:0c:4d:60:6a:88:
c2:8d:3f:4a:d3:a6:f7:f3:8f:0e:80:9b:d1:6f:f1:e0:8b:63:
3c:58:b8:ed:b4:71:77:2c:76:65:ad:17:cd:b6:6a:0a:02:68:
14:27:97:5c:5f:8e:42:84:cb:f0:8d:21:e3:01:cb:b9:68:7b:
81:ab:8e:c7:a8:f6:e6:95:c0:6d:78:3c:78:7c:f2:b9:98:4d:
a8:af:20:42:c4:1a:02:e5:cd:d1:64:fb:22:58:dd:f1:8f:51:
73:a1:0b:1c:fa:69:db:1c:e5:5a:07:61:e1:66:db:40:0f:a1:
c2:18:d9:85:b6:0c:11:8b:2e:4d:1e:c4:b2:eb:56:5b:32:11:
03:59:ca:2f:51:da:7d:f0:0b:26:e1:56:b8:d3:8c:eb:4e:b9:
da:7d:31:e8:da:13:51:dd:e8:04:15:f5:ae:b3:2b:57:a0:fa:
02:2b:19:60:19:ee:d0:81:05:8d:25:17:0e:ec:6f:9a:3b:55:
e8:b6:c0:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:56 2025 by rpki-client