Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/7_W_DsTS2yEejf1vFNKlk904CJ4.roa
File: 7_W_DsTS2yEejf1vFNKlk904CJ4.roa (raw, json)
Hash identifier: F7Bz5v2TtIwHGF38v7MI5JN4LJHDrKWjIR4IyNZ9mEY=
Subject key identifier: EF:F5:BF:0E:C4:D2:DB:21:1E:8D:FD:6F:14:D2:A5:93:DD:38:08:9E
Certificate issuer: /CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf
Certificate serial: 0870AFEA
Authority key identifier: 2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/7_W_DsTS2yEejf1vFNKlk904CJ4.roa
Signing time: Sat 01 Jan 2022 05:59:52 +0000
ROA not before: Sat 01 Jan 2022 05:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34182
IP address blocks: 2a00:5647::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141602794 (0x870afea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf
Validity
Not Before: Jan 1 05:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eff5bf0ec4d2db211e8dfd6f14d2a593dd38089e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:df:24:ad:0a:06:38:79:33:6e:ba:9c:60:2b:
8c:8f:a0:b7:e8:9b:7e:9d:c8:a7:eb:1a:31:1b:f7:
52:13:e9:50:80:55:8b:68:d1:c6:81:2c:25:db:98:
7a:21:cc:2b:53:cb:7c:a2:81:69:1c:73:ac:27:79:
5a:e3:41:3f:d2:9d:a0:28:50:3d:81:6e:94:52:f4:
34:bf:d0:ca:d7:82:71:36:fb:f6:1d:54:eb:80:2d:
a5:27:18:74:22:38:5b:13:b9:1c:66:5d:68:74:d7:
db:e2:e7:ce:1e:2b:bf:20:55:14:52:7e:d3:58:9b:
e8:c2:1e:16:7e:e6:27:7b:a0:b3:61:07:c2:58:5d:
55:32:de:79:96:9b:d6:82:bf:31:60:e5:36:17:ad:
0e:ac:e5:ab:9a:e4:c7:f7:3e:e8:5f:5f:53:65:53:
eb:7f:69:c3:2c:f0:74:60:34:69:c4:29:5a:6a:bc:
ad:03:ee:3f:dc:fc:5f:26:b7:5e:6e:f2:51:4e:80:
81:0c:68:d2:ec:58:f3:92:96:5d:fb:70:60:d5:72:
c6:92:81:de:b0:22:40:d7:ea:fc:1d:d5:24:b0:e7:
9a:e9:af:e2:32:42:09:81:09:c3:f8:1d:05:6f:3d:
43:5e:d7:f0:d6:af:c2:aa:4b:56:86:39:07:a0:b0:
da:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F5:BF:0E:C4:D2:DB:21:1E:8D:FD:6F:14:D2:A5:93:DD:38:08:9E
X509v3 Authority Key Identifier:
keyid:2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/7_W_DsTS2yEejf1vFNKlk904CJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:5647::/32
Signature Algorithm: sha256WithRSAEncryption
60:f2:7a:9a:82:84:31:ca:3a:58:5f:39:13:9f:de:67:60:eb:
e3:26:e1:df:e1:74:35:0d:6a:52:33:a0:c1:52:89:44:0a:f3:
9a:86:3b:8d:d1:1c:09:f9:b5:f7:79:82:8a:ec:7f:c2:a9:35:
16:7b:51:68:67:a8:b9:31:36:e9:67:07:2e:b1:5d:2a:65:f5:
93:86:e2:a2:52:77:98:99:19:af:7b:68:03:46:1e:a3:c3:c6:
d4:e4:3d:3c:eb:c5:bb:0c:54:9f:22:7a:9a:e6:5e:01:18:6d:
58:98:c0:9f:19:64:71:de:08:80:21:5c:af:8e:62:93:c4:6e:
1c:fa:05:ff:b1:ba:6d:0b:07:02:66:33:7d:e2:e4:6e:c7:30:
e1:89:ab:cf:76:30:01:2c:26:cd:f0:35:0e:4a:ff:38:62:22:
71:19:d7:52:ba:3b:81:7e:16:db:07:f4:7e:db:1e:47:8c:94:
ad:f2:f9:b0:ad:cf:f5:8c:79:20:59:2d:25:7b:a8:15:c0:d7:
95:88:af:84:29:44:ae:3b:dc:a3:3b:9d:0a:53:24:61:34:01:
d5:5f:72:2b:d8:5d:46:48:86:b2:47:5a:fa:67:72:6e:fc:63:
aa:b8:0b:dc:73:09:f7:db:e1:78:88:9f:87:f0:47:22:a0:85:
42:6d:f1:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:12 2025 by rpki-client