Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/da66bb-174f-4918-9a3a-ba4fbd8d5d8e/1/SMx8W6Fy93VvTOJvtKUlShK7JCk.roa
File: SMx8W6Fy93VvTOJvtKUlShK7JCk.roa (raw, json)
Hash identifier: 86N2xsVc/rxv+b0+NHV5g/v3UDnpPuQeJYKNeM2IIzY=
Subject key identifier: 48:CC:7C:5B:A1:72:F7:75:6F:4C:E2:6F:B4:A5:25:4A:12:BB:24:29
Certificate issuer: /CN=0ce2dc71f9ec1a9b2781077f3ad2981c4b872b05
Certificate serial: 01880123785BA073B6C6019E3EAC569E6D7F
Authority key identifier: 0C:E2:DC:71:F9:EC:1A:9B:27:81:07:7F:3A:D2:98:1C:4B:87:2B:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOLccfnsGpsngQd_OtKYHEuHKwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/da66bb-174f-4918-9a3a-ba4fbd8d5d8e/1/SMx8W6Fy93VvTOJvtKUlShK7JCk.roa
Signing time: Tue 09 May 2023 15:31:21 +0000
ROA not before: Tue 09 May 2023 15:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198627
IP address blocks: 2001:67c:ca0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:01:23:78:5b:a0:73:b6:c6:01:9e:3e:ac:56:9e:6d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce2dc71f9ec1a9b2781077f3ad2981c4b872b05
Validity
Not Before: May 9 15:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48cc7c5ba172f7756f4ce26fb4a5254a12bb2429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:80:7d:e8:27:0e:3d:59:97:ad:cb:a6:1f:ec:
4f:9d:2c:b1:e7:fa:f3:ed:7b:ba:2b:7c:ad:48:5f:
09:e8:1a:bf:33:33:ee:bf:16:d2:0a:be:75:15:7d:
0f:dc:44:38:c3:b7:3c:77:3a:d3:7d:e0:70:2d:b1:
f1:6b:17:9f:1e:50:f2:d8:e0:68:a5:64:30:89:fe:
f0:de:f9:4b:51:be:66:59:64:76:be:4d:e4:60:05:
3f:71:3d:45:4c:ae:08:3a:9d:85:1e:dc:85:69:22:
9f:a2:64:ca:aa:1d:d6:d8:b1:69:57:a9:a3:08:52:
7c:35:ab:43:e9:ab:cb:44:67:55:8a:83:3f:d3:a2:
39:e3:f6:6b:a0:45:8f:89:70:26:b4:60:c1:13:c5:
d8:86:0a:46:10:20:a5:cf:9e:c8:33:10:e7:f4:0c:
0f:c5:99:40:63:d5:70:98:69:50:da:74:29:16:37:
2c:10:a6:03:51:f8:fe:37:eb:9b:36:ba:be:75:bb:
ed:1a:7a:98:93:08:f1:f1:6d:21:6c:66:e7:0f:31:
ff:81:35:31:1b:90:30:3f:df:80:70:1b:74:99:c4:
53:b5:d4:a1:54:05:dd:e6:8d:e2:74:8c:1c:aa:6e:
97:c8:e1:4c:f4:c3:2f:d7:43:c9:06:34:7c:86:65:
21:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CC:7C:5B:A1:72:F7:75:6F:4C:E2:6F:B4:A5:25:4A:12:BB:24:29
X509v3 Authority Key Identifier:
keyid:0C:E2:DC:71:F9:EC:1A:9B:27:81:07:7F:3A:D2:98:1C:4B:87:2B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOLccfnsGpsngQd_OtKYHEuHKwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/da66bb-174f-4918-9a3a-ba4fbd8d5d8e/1/SMx8W6Fy93VvTOJvtKUlShK7JCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/da66bb-174f-4918-9a3a-ba4fbd8d5d8e/1/DOLccfnsGpsngQd_OtKYHEuHKwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:ca0::/48
Signature Algorithm: sha256WithRSAEncryption
96:0c:aa:8a:89:7c:75:0a:dc:83:f8:01:94:86:04:49:19:e8:
cd:19:37:33:e0:3c:c2:39:32:a3:49:47:fd:ed:96:a9:fe:28:
d6:c3:8d:f5:9d:6b:83:12:f3:68:47:ca:1d:0e:c4:35:39:4e:
25:37:8b:bb:55:8d:f6:13:a1:6f:4f:db:0f:89:91:09:eb:cd:
48:45:46:05:d4:c8:2f:1a:8f:38:6b:04:4b:37:d8:73:73:cd:
80:47:7e:ac:2d:33:c1:82:39:fd:36:65:0b:98:5a:c2:89:9b:
29:b5:3a:3f:66:e6:3d:23:9c:1b:d9:90:67:bc:aa:0f:e7:c8:
8f:50:b0:b6:b9:27:09:e3:4a:da:3b:a1:ec:6a:e8:8d:1a:74:
30:8a:98:3d:ae:9d:10:15:f6:ff:e4:88:f4:44:32:a0:16:11:
3f:da:d0:cc:90:b9:62:0d:31:b4:04:3a:c0:cf:be:e8:b4:58:
7e:c8:cc:97:86:39:cc:8c:1c:ef:d3:42:ed:b9:64:23:e0:73:
7c:41:b4:41:19:b5:41:34:ae:57:2f:ed:c8:c2:39:36:51:64:
5b:7e:74:30:fa:fa:de:f1:65:ce:fd:51:73:7a:db:94:53:64:
c7:82:8c:6c:49:ea:2a:1e:54:1c:97:d8:8e:f3:9e:71:9c:4c:
55:50:82:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 00:29:51 2025 by rpki-client