Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/BPwQPzh3SWeZazR9jZKt3jGR1uE.roa
File: BPwQPzh3SWeZazR9jZKt3jGR1uE.roa (raw, json)
Hash identifier: JOARftsXopzxK331PuA3/R7ZsvWJiFbihr5wv6zphIE=
Subject key identifier: 04:FC:10:3F:38:77:49:67:99:6B:34:7D:8D:92:AD:DE:31:91:D6:E1
Certificate issuer: /CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Certificate serial: 03341B26
Authority key identifier: EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/BPwQPzh3SWeZazR9jZKt3jGR1uE.roa
Signing time: Sat 01 Jan 2022 15:03:10 +0000
ROA not before: Sat 01 Jan 2022 15:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136620
IP address blocks: 2001:67c:17fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53746470 (0x3341b26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Validity
Not Before: Jan 1 15:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04fc103f38774967996b347d8d92adde3191d6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a5:b4:a6:85:7b:aa:66:14:d9:e8:a1:5d:92:
40:fa:bd:71:86:35:d3:8e:3b:0a:5b:9d:83:81:8e:
fd:c3:c8:e8:15:8a:d2:57:3d:ef:a3:c5:31:e4:66:
78:79:c9:d3:01:60:6d:a8:92:6c:25:96:98:56:db:
df:07:09:63:73:87:0e:95:29:a7:b9:6a:8d:68:a8:
95:28:bc:eb:59:d3:5d:2c:10:e6:04:5a:96:e4:d5:
b1:46:ee:63:e3:d6:3c:2f:a7:b8:48:6e:ac:12:1a:
84:fe:4f:7b:69:2e:4f:56:45:64:dc:f8:d8:a1:e8:
ee:0b:52:e8:60:8f:f9:aa:1a:dd:5c:32:8f:64:5c:
2d:96:70:ff:a1:60:f0:22:4a:6c:4f:71:6d:4f:d9:
8d:34:2d:0e:74:e0:f6:9b:0b:96:f7:ae:83:56:af:
27:2f:e6:42:9f:a6:ce:10:bb:9a:50:35:80:d5:af:
59:6b:d1:4f:66:c1:e9:97:ef:94:ba:b2:87:ea:c8:
d2:df:8d:81:7e:7d:36:af:81:92:a3:6c:e6:5f:ab:
d0:a8:33:0f:c9:8c:14:e1:33:52:76:d0:b0:2c:f0:
e2:93:37:d6:b9:96:59:45:49:8f:8f:4a:5d:9e:64:
fb:af:5b:58:33:1c:70:27:c0:3d:99:ad:06:a0:ac:
17:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FC:10:3F:38:77:49:67:99:6B:34:7D:8D:92:AD:DE:31:91:D6:E1
X509v3 Authority Key Identifier:
keyid:EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/BPwQPzh3SWeZazR9jZKt3jGR1uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/7gc50FKNy0_OV40R9-w0sON0Us8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17fc::/48
Signature Algorithm: sha256WithRSAEncryption
22:8f:c9:58:1c:36:f0:da:d4:56:a5:8d:e2:06:a6:b8:fd:a3:
b7:af:b5:3a:59:4c:14:4f:66:45:de:8f:c5:81:45:09:2b:5f:
be:e8:36:df:d6:8e:f1:4b:d9:62:1b:f6:17:a4:e5:ae:ba:c1:
89:e7:9f:25:c0:24:f2:6e:52:80:e7:a2:d2:c3:d3:70:8d:a5:
2e:bb:13:7f:df:c5:34:ae:dd:de:be:08:ab:80:1a:ed:74:ea:
21:56:e0:56:3c:7a:77:52:87:e3:9d:2f:62:25:8f:07:39:c7:
ea:f5:4d:c0:42:46:ad:1d:3a:1a:9d:24:ef:1a:3d:29:09:b6:
5c:f4:ca:31:06:57:a0:68:08:fa:7c:74:9e:01:7a:da:8d:da:
66:c1:e6:9c:d9:85:0b:05:45:41:b1:03:0c:79:9c:07:d4:b9:
c5:c5:80:10:58:8a:c7:04:7c:a0:43:70:13:09:f9:c9:92:14:
09:04:37:77:85:50:19:d7:6c:58:0a:75:fd:35:4c:6d:ae:ac:
7f:a7:bf:51:f8:dd:de:11:e4:e9:35:94:a2:3a:ac:37:48:6d:
6d:ae:c8:82:24:20:ab:47:99:23:b7:57:04:eb:33:f3:32:fc:
d2:db:ec:cc:33:5f:a2:a8:3f:35:ad:35:32:4f:aa:82:5c:52:
8b:94:66:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:56 2025 by rpki-client