Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/9B2X5ClmQk8F6BYXeOo_wj-wkJw.roa
File: 9B2X5ClmQk8F6BYXeOo_wj-wkJw.roa (raw, json)
Hash identifier: JdMEeEjg2yWCNt3QDejbmYeXBp49Zit8F0NKKLPBYoo=
Subject key identifier: F4:1D:97:E4:29:66:42:4F:05:E8:16:17:78:EA:3F:C2:3F:B0:90:9C
Certificate issuer: /CN=5e399fba9aae9d2d6ffe52ae8c74ae38fc6c1af1
Certificate serial: 01B89F5D
Authority key identifier: 5E:39:9F:BA:9A:AE:9D:2D:6F:FE:52:AE:8C:74:AE:38:FC:6C:1A:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XjmfupqunS1v_lKujHSuOPxsGvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/9B2X5ClmQk8F6BYXeOo_wj-wkJw.roa
Signing time: Sat 01 Jan 2022 03:51:40 +0000
ROA not before: Sat 01 Jan 2022 03:51:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212895
IP address blocks: 2a11:6c7::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28876637 (0x1b89f5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e399fba9aae9d2d6ffe52ae8c74ae38fc6c1af1
Validity
Not Before: Jan 1 03:51:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f41d97e42966424f05e8161778ea3fc23fb0909c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6f:7a:b8:22:5f:4a:c9:af:86:87:b6:b0:71:
01:0d:59:ca:b8:80:16:b8:30:d0:7e:5d:28:40:df:
4b:86:a3:fb:7d:3b:db:43:56:92:96:6f:ba:e9:a1:
fa:3e:e8:e7:4b:9c:3d:2b:12:7d:9e:14:f1:4e:cb:
d7:cd:2d:14:04:21:b6:bf:71:7d:32:ba:80:fe:1c:
c0:ec:66:db:3c:a7:a8:26:58:fe:f8:12:77:b2:01:
42:c3:d4:76:79:87:7c:7b:d6:87:fc:b8:b9:ad:d9:
f6:80:09:75:bc:87:92:86:62:59:ad:29:e2:94:88:
1f:8f:52:59:5d:f2:d8:8e:b3:60:bb:15:10:ca:ba:
01:7d:c7:43:46:27:a1:6b:76:20:fc:09:d0:99:34:
14:86:d8:e9:55:2a:f9:aa:01:6d:26:9b:66:93:96:
d3:e2:18:48:ee:43:9d:69:bc:73:1f:70:6e:51:ef:
bb:a4:90:7c:ca:d2:c1:e0:dc:1e:21:87:5c:4d:82:
1d:13:b2:3f:fb:6d:d6:09:46:6c:0c:c3:b0:9b:3a:
48:92:4f:d7:1c:ea:a6:15:81:0d:f2:15:17:50:c8:
42:25:1c:72:f1:5b:1c:8c:60:cf:24:ce:75:70:69:
46:d2:89:84:3a:e6:0f:d9:30:27:ec:b3:ce:03:d5:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1D:97:E4:29:66:42:4F:05:E8:16:17:78:EA:3F:C2:3F:B0:90:9C
X509v3 Authority Key Identifier:
keyid:5E:39:9F:BA:9A:AE:9D:2D:6F:FE:52:AE:8C:74:AE:38:FC:6C:1A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XjmfupqunS1v_lKujHSuOPxsGvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/9B2X5ClmQk8F6BYXeOo_wj-wkJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b91d05-6a03-40ed-a983-bd809d9dedb9/1/XjmfupqunS1v_lKujHSuOPxsGvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:6c7::/32
Signature Algorithm: sha256WithRSAEncryption
1e:1d:ff:e8:aa:7b:db:06:ce:42:50:cf:e8:af:d7:44:06:9f:
0f:ad:32:c7:34:56:bb:56:e7:29:e7:48:13:b0:53:a8:70:4a:
63:fb:04:b2:42:3c:0b:79:e8:c7:9c:ec:ba:3a:f3:fe:62:f9:
f9:40:b2:87:1e:d3:62:c6:31:13:d0:fe:eb:61:ce:a6:f8:01:
fb:8f:c9:69:30:44:9f:7f:05:9a:8e:e0:56:ff:77:c5:54:dc:
bc:ad:0e:9e:24:b6:d1:4c:07:fb:5e:e7:91:65:0f:db:c7:88:
42:68:f0:ad:fa:02:7b:dc:02:d1:3b:5f:57:32:a4:83:44:2c:
49:2d:fa:4c:b6:c8:4f:10:d7:0d:36:d4:9f:59:83:87:45:d7:
c8:63:b8:6f:44:fb:37:c7:39:31:af:2f:4d:fa:3c:4d:68:24:
c8:0f:f6:74:5d:65:ca:e3:50:4a:0c:bf:5e:e0:a0:36:81:ce:
d5:e5:d1:51:ab:d5:1c:b5:f2:c1:72:9f:fb:0f:f9:d7:2e:52:
06:57:f2:9f:e1:41:c5:cc:52:88:b6:a1:93:49:27:f5:e3:db:
76:27:5b:b9:81:f5:76:65:22:e1:c7:97:12:51:97:ac:04:42:
af:b0:96:a4:63:91:49:e7:e9:81:c4:87:fd:b6:11:17:f5:bb:
a7:a3:a4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:00 2025 by rpki-client