Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ewxKEInpWyUVqpD_5nyjcHfVdfI.roa
File: ewxKEInpWyUVqpD_5nyjcHfVdfI.roa (raw, json)
Hash identifier: cuQ5znjV62ZPL9A8Kl/IZwYPXyKx7xmhfIosyTsS/dQ=
Subject key identifier: 7B:0C:4A:10:89:E9:5B:25:15:AA:90:FF:E6:7C:A3:70:77:D5:75:F2
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01841ADC882B257B746AB29FB8B61C6F6EF2
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ewxKEInpWyUVqpD_5nyjcHfVdfI.roa
Signing time: Thu 27 Oct 2022 19:12:51 +0000
ROA not before: Thu 27 Oct 2022 19:12:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39355
IP address blocks: 2a0c:6dc0::/29 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1a:dc:88:2b:25:7b:74:6a:b2:9f:b8:b6:1c:6f:6e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 27 19:12:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b0c4a1089e95b2515aa90ffe67ca37077d575f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f9:39:e5:ee:d4:63:f9:f0:24:06:f6:9b:5c:
33:98:5f:d2:3d:8c:fb:fb:9d:5e:1f:74:d5:15:4a:
1b:d9:07:f5:f6:11:c2:48:13:2d:60:91:66:fb:49:
8a:22:40:b5:18:c3:ef:bd:8a:10:0f:27:d2:3a:7d:
8f:f3:5b:da:28:51:cc:5d:50:cd:d4:31:c4:87:29:
58:46:7a:03:c0:06:e2:f0:b9:79:1b:5e:3a:65:02:
2b:a8:d4:40:1c:3a:e6:aa:52:0f:e3:54:5b:c1:f1:
ae:5a:eb:bd:84:93:76:51:b9:0b:bd:43:79:cb:73:
35:7e:e6:52:86:bf:ed:ea:a2:14:ce:aa:c0:91:52:
d0:8a:62:97:91:b7:34:4c:0c:21:e7:33:7d:42:d6:
bc:a8:f1:b8:82:c5:8d:9d:52:4a:09:9f:77:95:5b:
a8:da:5c:ca:58:b9:7a:3a:ca:3f:3f:b7:e1:6f:37:
73:90:15:47:be:b4:98:a1:c3:e7:ab:27:88:25:5d:
7c:4b:eb:f7:92:0b:6b:9b:54:13:10:d6:2c:17:7e:
d7:e6:80:c6:95:e2:0a:cf:e2:74:35:97:d4:8b:15:
83:18:ef:d0:ed:a0:9c:c7:15:70:30:e6:a9:95:cb:
98:3b:60:d3:15:5d:26:7c:df:71:b3:18:f6:69:4d:
f8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0C:4A:10:89:E9:5B:25:15:AA:90:FF:E6:7C:A3:70:77:D5:75:F2
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/ewxKEInpWyUVqpD_5nyjcHfVdfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6dc0::/29
Signature Algorithm: sha256WithRSAEncryption
48:0f:cf:85:38:50:b9:94:01:8e:a7:91:04:b5:66:55:7a:6b:
50:57:1b:2e:14:13:cb:7f:d6:64:c0:2a:e9:9c:d9:29:71:49:
6c:77:bf:87:37:00:ea:df:ec:34:e8:0b:5e:2f:cd:c0:23:fd:
fd:80:11:bf:31:7a:a2:35:4e:fb:b9:8d:03:41:0d:e5:57:13:
61:46:67:2e:87:02:40:7b:85:67:3d:de:19:13:bc:13:db:e4:
b3:32:39:24:20:61:85:1d:31:3e:63:11:3c:d1:e8:6e:51:f6:
b7:0e:02:fa:ed:0c:7f:2c:03:76:49:f1:11:cd:39:b1:97:b3:
67:b8:86:4f:3e:c2:3b:d3:c6:08:cd:83:3b:be:65:f9:7d:f5:
92:48:37:e7:e6:69:b8:45:85:48:49:99:7e:56:1f:79:7c:18:
02:e9:a2:f8:ca:aa:37:3b:4b:8f:8b:8d:1d:ff:bc:e1:9f:ea:
c9:da:aa:7d:d5:04:a9:36:45:67:34:c9:9a:e0:0d:7f:4b:4c:
7c:ed:07:e8:32:6f:5b:bc:80:2a:17:97:db:56:91:4d:06:3f:
97:61:83:5e:ba:9e:84:21:af:35:33:03:3f:55:80:b3:df:71:
f0:73:ca:06:f6:6e:59:6c:11:ca:08:55:f9:86:9b:f6:22:89:
4e:eb:b6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:26:50 2025 by rpki-client