Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/64d505-2204-4dca-a95e-8b5372584acd/1/5EzDX63u4uP7Ijgxx2U-E6fYdZs.roa
File: 5EzDX63u4uP7Ijgxx2U-E6fYdZs.roa (raw, json)
Hash identifier: rc+JcUsXoy9ryJ1boSeyp7jlytbb73ANIqzD0g5h6aY=
Subject key identifier: E4:4C:C3:5F:AD:EE:E2:E3:FB:22:38:31:C7:65:3E:13:A7:D8:75:9B
Certificate issuer: /CN=7f5689de4a7ce768bf3ab5d9f8546e856ccb1936
Certificate serial: 06940C73
Authority key identifier: 7F:56:89:DE:4A:7C:E7:68:BF:3A:B5:D9:F8:54:6E:85:6C:CB:19:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1aJ3kp852i_OrXZ-FRuhWzLGTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/64d505-2204-4dca-a95e-8b5372584acd/1/5EzDX63u4uP7Ijgxx2U-E6fYdZs.roa
Signing time: Sat 01 Jan 2022 08:55:16 +0000
ROA not before: Sat 01 Jan 2022 08:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59990
IP address blocks: 2a00:1d60:f000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110365811 (0x6940c73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f5689de4a7ce768bf3ab5d9f8546e856ccb1936
Validity
Not Before: Jan 1 08:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e44cc35fadeee2e3fb223831c7653e13a7d8759b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:05:4c:6a:5d:90:98:e1:57:fd:45:47:b5:4e:
54:38:a7:e7:ed:88:2d:0f:8e:6a:3f:27:35:73:69:
78:1a:01:af:1d:94:52:98:d9:47:dd:97:9b:cd:ce:
d4:89:5f:01:35:80:a1:9a:d7:20:09:fc:ee:20:7f:
a1:96:e8:fc:5c:4c:f3:97:79:1a:a6:41:fb:c5:4a:
5c:db:d6:1e:bd:fb:45:66:82:8a:80:02:19:b1:d6:
b4:6d:b1:38:c5:22:ee:fc:09:ae:e8:0e:cc:3c:6c:
b6:3d:ca:84:01:38:1d:f1:a6:54:b1:96:ea:eb:47:
39:0a:98:2d:75:f1:cb:a5:4f:72:99:67:a1:82:30:
23:b7:84:c2:8b:bf:89:f2:df:e3:bf:7e:86:bc:ad:
90:ed:8a:d6:01:a4:cc:5c:85:44:d4:c8:b4:c9:fd:
28:24:db:c8:6b:f8:8f:d2:19:36:7f:77:fa:06:ad:
17:33:53:aa:a4:1d:80:ac:03:4e:3d:b3:cc:8b:70:
96:b8:b7:89:d0:a6:77:e3:68:cb:2f:e1:73:fa:02:
13:31:48:6a:c7:03:b0:3c:d7:18:4a:0c:02:ee:96:
e3:45:b7:65:ca:d8:ff:af:40:38:ce:7d:e2:c3:0c:
33:88:97:cf:fb:d7:5b:b0:96:e0:98:fa:b4:85:bc:
a4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4C:C3:5F:AD:EE:E2:E3:FB:22:38:31:C7:65:3E:13:A7:D8:75:9B
X509v3 Authority Key Identifier:
keyid:7F:56:89:DE:4A:7C:E7:68:BF:3A:B5:D9:F8:54:6E:85:6C:CB:19:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1aJ3kp852i_OrXZ-FRuhWzLGTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64d505-2204-4dca-a95e-8b5372584acd/1/5EzDX63u4uP7Ijgxx2U-E6fYdZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64d505-2204-4dca-a95e-8b5372584acd/1/f1aJ3kp852i_OrXZ-FRuhWzLGTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1d60:f000::/36
Signature Algorithm: sha256WithRSAEncryption
87:4c:8d:12:a2:c9:d4:a3:f9:23:59:cf:f2:0d:1a:87:e9:e5:
c9:18:ba:46:77:f7:6d:5a:8e:95:da:ec:f2:47:c6:31:c7:20:
bc:5f:7e:28:53:cd:7a:2f:24:4d:e5:bd:af:5b:71:e3:c4:66:
3f:86:9f:c9:58:69:4a:92:90:86:58:dc:86:70:98:e0:12:43:
96:04:41:9c:5d:cd:87:95:e3:7d:aa:5b:46:08:bb:63:6a:2c:
14:0e:76:ff:0d:52:ae:df:f8:66:6a:eb:1b:5b:88:65:ad:5d:
45:b9:a1:d6:fb:db:b7:99:33:78:f7:da:d7:fb:0e:5d:01:60:
e8:ca:d2:8b:25:4b:6a:bc:ca:af:4e:fa:34:31:4a:3e:df:b0:
d7:c8:23:52:27:2c:b7:9e:59:7c:76:49:5e:fb:f8:f1:9e:77:
6e:d0:a0:24:61:4c:94:84:f7:8d:4d:62:80:11:8b:98:27:39:
35:0b:8c:55:d8:da:a5:c4:15:a4:de:45:3a:54:b2:0d:96:77:
42:e6:c4:b7:9a:9d:ab:65:a7:61:0d:05:27:c8:8d:a8:e3:0d:
50:b4:5f:86:36:59:72:17:4a:cd:99:51:6b:ce:e4:65:2a:a3:
1f:9f:28:37:59:a0:35:a7:76:b5:90:9a:0c:1e:6f:fe:f9:dc:
c6:52:10:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:28:54 2025 by rpki-client