Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/AUdgVgUKm3VZfktan4Cf4mk8r5Y.roa
File: AUdgVgUKm3VZfktan4Cf4mk8r5Y.roa (raw, json)
Hash identifier: H6hY/vRE2RTXWWJXIUfsvio0s+yFvXxcKKfy6ZakuJM=
Subject key identifier: 01:47:60:56:05:0A:9B:75:59:7E:4B:5A:9F:80:9F:E2:69:3C:AF:96
Certificate issuer: /CN=e4b1306101cc9ec9fce985280c1db0f37c135a3a
Certificate serial: 018570396EF5290356F34DB831DF213F78B4
Authority key identifier: E4:B1:30:61:01:CC:9E:C9:FC:E9:85:28:0C:1D:B0:F3:7C:13:5A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LEwYQHMnsn86YUoDB2w83wTWjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/AUdgVgUKm3VZfktan4Cf4mk8r5Y.roa
Signing time: Mon 02 Jan 2023 02:04:50 +0000
ROA not before: Mon 02 Jan 2023 02:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47246
IP address blocks: 2a02:ddc3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:6e:f5:29:03:56:f3:4d:b8:31:df:21:3f:78:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4b1306101cc9ec9fce985280c1db0f37c135a3a
Validity
Not Before: Jan 2 02:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01476056050a9b75597e4b5a9f809fe2693caf96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:32:ce:52:f1:26:d7:48:48:79:3f:de:f9:e5:
b8:3a:60:27:1b:ca:e0:f3:fa:d1:5f:73:6b:11:eb:
e4:30:21:d1:b7:ee:71:ae:71:de:c3:1a:f1:4b:3d:
95:8f:62:53:9d:6a:ff:f3:31:5d:36:10:95:b4:e1:
6d:ed:1a:85:ab:5b:f3:da:98:59:26:44:6d:99:98:
3e:81:c2:97:1c:84:29:0e:65:0e:42:91:02:90:75:
0c:b0:f4:59:c5:68:e5:8a:df:9b:26:86:5c:b1:b2:
52:6c:6a:cd:18:f0:71:6e:a8:be:44:d9:2d:dc:9f:
0d:6f:9d:03:f4:22:f0:e8:e8:83:45:06:cb:24:4e:
c4:6c:0d:45:63:0c:ac:21:c1:22:c9:65:8c:f4:e1:
19:6e:97:7c:06:2b:6f:ba:e6:3f:75:dc:1b:9c:56:
2c:c2:23:37:d6:bd:ad:a1:44:20:fe:53:fc:2d:b6:
ce:db:e4:ce:c8:f1:10:8d:d1:b3:98:69:f5:66:95:
c0:c6:42:43:9d:9b:3d:aa:01:0f:bb:90:0e:99:2c:
c8:10:ea:2a:15:76:f7:7d:7d:64:43:15:4d:9c:bf:
1d:55:ba:db:98:a4:5b:a7:64:f1:8d:04:5b:1b:7e:
2b:de:b6:52:41:5d:f2:8b:de:e4:8b:e3:24:14:a4:
47:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:47:60:56:05:0A:9B:75:59:7E:4B:5A:9F:80:9F:E2:69:3C:AF:96
X509v3 Authority Key Identifier:
keyid:E4:B1:30:61:01:CC:9E:C9:FC:E9:85:28:0C:1D:B0:F3:7C:13:5A:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LEwYQHMnsn86YUoDB2w83wTWjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/AUdgVgUKm3VZfktan4Cf4mk8r5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/5LEwYQHMnsn86YUoDB2w83wTWjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:ddc3::/48
Signature Algorithm: sha256WithRSAEncryption
a6:98:73:99:9e:f0:8b:30:c2:4c:73:41:73:cf:28:94:95:f5:
e2:29:0f:9e:9d:3f:7d:f9:9a:3a:ac:f4:64:f8:c4:68:88:49:
7e:99:c4:bb:02:9e:c2:de:53:ce:1b:51:2b:f9:96:4d:06:89:
0e:85:87:32:88:24:8f:25:b1:6d:13:c5:45:7c:e8:99:69:29:
0c:31:97:d8:8a:99:33:ea:3e:8b:a9:30:f2:52:e7:9d:f1:b0:
25:c4:b4:a9:69:e0:c9:8f:88:40:54:ec:c9:0a:24:c0:89:4b:
2d:5b:08:4d:cc:3d:15:83:93:6a:db:a6:33:45:ac:7c:18:d4:
aa:ef:49:94:e7:e5:92:7f:66:5f:3b:6c:fd:da:e6:cb:8a:0a:
f3:f6:16:38:ec:08:0b:a3:42:f6:cf:c8:6a:1d:e7:86:2b:02:
43:1f:17:34:75:6c:b7:37:f5:a0:19:07:23:94:b9:87:d9:86:
ac:6c:a1:09:36:b2:81:78:c1:34:48:72:d8:62:d3:db:9e:64:
64:28:65:64:ee:e8:d7:a2:e7:ff:c6:b5:da:bd:75:d4:de:24:
ce:46:fa:ce:70:53:01:c6:16:b8:df:21:96:75:82:73:79:e5:
4b:f9:1b:c0:08:e6:67:9f:ba:6e:68:42:07:39:bd:21:9a:20:
a9:9b:f0:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 21:01:56 2025 by rpki-client