Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5d5d42-e843-4411-90f9-015f7664b9d7/1/8nMzLMWAEP44eDCcDAgWDAP7vCE.roa
File: 8nMzLMWAEP44eDCcDAgWDAP7vCE.roa (raw, json)
Hash identifier: EqR9pC4dlB35ljorp0/fgnmoxabO9iiAM7OnLgOOuxk=
Subject key identifier: F2:73:33:2C:C5:80:10:FE:38:78:30:9C:0C:08:16:0C:03:FB:BC:21
Certificate issuer: /CN=1532415c319fad65875bd1aa035a55888ceb733e
Certificate serial: 0185715564E1B2D539CED0EAB8167A6D2E8B
Authority key identifier: 15:32:41:5C:31:9F:AD:65:87:5B:D1:AA:03:5A:55:88:8C:EB:73:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTJBXDGfrWWHW9GqA1pViIzrcz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5d5d42-e843-4411-90f9-015f7664b9d7/1/8nMzLMWAEP44eDCcDAgWDAP7vCE.roa
Signing time: Mon 02 Jan 2023 07:14:59 +0000
ROA not before: Mon 02 Jan 2023 07:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207455
IP address blocks: 2001:678:c24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:64:e1:b2:d5:39:ce:d0:ea:b8:16:7a:6d:2e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1532415c319fad65875bd1aa035a55888ceb733e
Validity
Not Before: Jan 2 07:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f273332cc58010fe3878309c0c08160c03fbbc21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ed:26:4b:0e:af:af:7f:05:62:5e:b8:6c:83:
50:63:8e:42:1f:fb:ba:f4:54:6c:0a:ef:1b:f2:39:
59:5c:f5:79:61:4d:ee:30:8b:9b:a9:e1:9b:6e:b2:
e0:5a:98:33:76:6b:a2:2f:43:e5:59:70:88:46:61:
8d:4c:26:17:44:b7:47:7e:5c:2c:0b:67:b7:c2:37:
03:e3:96:34:07:70:52:7d:b7:f4:77:61:a9:d9:65:
ed:01:9c:0f:77:4f:19:9c:c2:51:2d:40:95:15:26:
7d:73:1c:c0:75:32:40:4d:c1:68:01:6f:19:56:3a:
a6:bf:e9:0d:8f:e9:44:af:ee:35:32:1c:67:7d:c6:
fd:d3:76:e6:42:70:ec:b2:28:aa:e9:90:2f:8c:87:
37:62:56:2d:01:89:00:30:ae:16:99:d4:39:6a:08:
4b:22:24:a6:98:64:04:7c:56:45:d3:cd:88:67:ef:
73:53:6d:fe:d3:f2:0e:85:1d:9e:25:06:0a:48:6a:
9d:84:4d:9e:2c:a9:c7:a4:ca:e8:2c:2d:47:bb:e3:
f1:f6:b4:4e:fd:1a:00:fd:ff:16:1b:4a:5c:5d:97:
88:90:a3:31:09:8d:c9:8b:70:6b:26:f0:83:13:78:
7f:11:dd:78:71:b6:2e:d5:65:06:02:f1:88:87:f4:
b4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:73:33:2C:C5:80:10:FE:38:78:30:9C:0C:08:16:0C:03:FB:BC:21
X509v3 Authority Key Identifier:
keyid:15:32:41:5C:31:9F:AD:65:87:5B:D1:AA:03:5A:55:88:8C:EB:73:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTJBXDGfrWWHW9GqA1pViIzrcz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5d5d42-e843-4411-90f9-015f7664b9d7/1/8nMzLMWAEP44eDCcDAgWDAP7vCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5d5d42-e843-4411-90f9-015f7664b9d7/1/FTJBXDGfrWWHW9GqA1pViIzrcz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c24::/48
Signature Algorithm: sha256WithRSAEncryption
30:32:78:5f:d0:d2:78:a8:73:ef:59:f5:47:a1:68:ae:0c:c7:
2f:2a:02:d1:dd:90:39:be:80:c1:3c:88:cf:45:ee:45:7b:2d:
5c:74:18:93:47:e0:7d:bb:c5:fd:9e:37:8b:ee:05:da:c0:d1:
bc:7a:ed:04:b5:db:c8:3c:7e:58:8a:d7:e8:53:02:8d:98:5d:
f1:6e:06:1b:c4:92:29:b3:88:3d:84:58:27:b9:14:45:94:2d:
5b:cd:ed:40:82:90:f6:a7:5f:64:8b:14:ae:78:a5:9c:0d:0c:
dd:7f:74:e8:f9:7c:ff:b5:a6:ed:17:5d:3b:e1:9c:f8:9e:86:
cd:5e:81:d1:35:4c:33:b8:8b:b2:05:6a:9c:9c:a6:95:5f:82:
1c:5c:60:b7:dc:84:fa:5d:17:e3:21:14:03:70:74:20:62:79:
fa:9b:11:c8:bd:58:c8:76:1d:e3:97:0a:6c:d8:c5:f8:73:14:
63:83:85:c0:6b:db:f6:61:e0:23:10:62:e7:83:06:c8:cc:7c:
50:54:18:57:ba:c5:f2:11:61:5c:b2:3e:46:09:35:fe:a2:6e:
a5:b3:1b:f4:32:ff:0e:ba:46:52:ce:0c:42:d8:ef:ad:68:d0:
bc:aa:95:63:5c:b3:53:99:db:01:81:ad:d8:0d:52:e3:f0:31:
c3:0c:3f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:47:27 2025 by rpki-client