Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/7db061-0bca-4b0e-9483-e775d5faa9e3/1/GXQAAdINXMBtXzWvQ0kh9wC9Ho8.roa
File: GXQAAdINXMBtXzWvQ0kh9wC9Ho8.roa (raw, json)
Hash identifier: VU2ceVeq0IV5U/q/sfufKfMWYB0UzGgZMyGgM+wth4E=
Subject key identifier: 19:74:00:01:D2:0D:5C:C0:6D:5F:35:AF:43:49:21:F7:00:BD:1E:8F
Certificate issuer: /CN=162af3302f6a49f7eb691ac4959e1acf95db6ce7
Certificate serial: 05E57511
Authority key identifier: 16:2A:F3:30:2F:6A:49:F7:EB:69:1A:C4:95:9E:1A:CF:95:DB:6C:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FirzMC9qSffraRrElZ4az5XbbOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/7db061-0bca-4b0e-9483-e775d5faa9e3/1/GXQAAdINXMBtXzWvQ0kh9wC9Ho8.roa
Signing time: Sat 01 Jan 2022 06:03:46 +0000
ROA not before: Sat 01 Jan 2022 06:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48025
IP address blocks: 2001:678:c98::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98923793 (0x5e57511)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162af3302f6a49f7eb691ac4959e1acf95db6ce7
Validity
Not Before: Jan 1 06:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19740001d20d5cc06d5f35af434921f700bd1e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9a:d9:37:e6:f9:2e:f8:5a:c2:1d:6a:cd:78:
58:c6:14:88:f6:86:72:af:5b:e0:af:e1:ce:30:3b:
6b:91:99:37:a2:84:df:80:7c:02:e8:12:11:4b:2b:
d3:58:0f:17:76:9b:30:43:35:be:17:c7:f0:c6:98:
0b:dc:93:9f:64:16:31:eb:ea:7a:d1:21:2d:9e:3d:
5f:9a:6d:51:f8:f7:b3:36:90:e4:ef:50:c1:41:38:
5b:2a:bd:d0:25:46:35:6d:14:6b:9d:9e:5b:06:85:
71:87:72:de:57:6b:b2:41:a1:9c:47:20:10:cd:46:
ba:3a:a3:f6:21:58:38:b1:22:4e:42:88:52:99:3d:
66:66:c2:1d:ef:45:84:77:82:ab:a7:df:4a:74:21:
5d:64:a9:1e:b7:13:a6:50:20:ab:57:f0:7e:71:9b:
93:fd:f6:c1:27:b5:ab:e1:67:52:e9:ad:19:bc:7a:
39:da:04:b5:c2:b1:5e:f7:f6:65:1d:59:33:d8:b0:
91:f1:49:d0:f1:f1:c7:52:04:3a:d7:ea:55:fa:da:
63:a1:87:6d:5a:0f:f7:42:00:3d:5c:04:79:2c:cf:
76:ca:9e:04:30:08:f1:1c:63:6f:bc:47:95:dc:c1:
27:8c:75:d5:d6:f5:19:a6:a2:03:9d:81:df:36:57:
fb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:74:00:01:D2:0D:5C:C0:6D:5F:35:AF:43:49:21:F7:00:BD:1E:8F
X509v3 Authority Key Identifier:
keyid:16:2A:F3:30:2F:6A:49:F7:EB:69:1A:C4:95:9E:1A:CF:95:DB:6C:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FirzMC9qSffraRrElZ4az5XbbOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7db061-0bca-4b0e-9483-e775d5faa9e3/1/GXQAAdINXMBtXzWvQ0kh9wC9Ho8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7db061-0bca-4b0e-9483-e775d5faa9e3/1/FirzMC9qSffraRrElZ4az5XbbOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c98::/48
Signature Algorithm: sha256WithRSAEncryption
28:22:2c:01:b7:68:67:00:b9:10:d2:00:44:a9:32:19:d0:e0:
a1:b9:0e:0d:8c:9b:0d:85:d7:fd:67:c7:95:e3:9d:8b:d3:45:
2c:a9:d2:e9:f2:35:d9:d6:6f:59:6a:92:5b:d8:38:f5:b0:73:
4b:c0:2e:8a:8a:4a:ca:fd:2a:e2:b3:b1:16:25:d5:cb:6a:5c:
86:7e:bc:5d:6e:03:4c:59:94:91:49:2f:7b:04:15:f6:4d:6c:
29:21:48:50:3b:cc:d6:db:6d:c6:b6:3c:55:fa:51:9a:3c:89:
3e:c1:df:77:a8:19:96:ab:33:c9:7b:6e:70:98:ba:29:37:32:
24:cc:c4:67:86:8c:92:c9:f7:9d:6b:98:29:b5:bd:b1:36:3c:
81:e4:6e:63:b8:e0:d9:85:09:e0:15:61:42:6a:fa:84:ef:eb:
0d:39:4e:e6:5c:2c:e1:62:0f:76:9d:56:7f:48:20:af:bd:19:
7d:40:b6:4b:ce:f3:0b:9c:38:06:c8:35:cb:96:96:8d:cc:75:
b0:68:f9:3a:b9:8f:98:be:63:06:b2:b6:b7:72:0e:bf:7c:57:
7c:38:90:25:5f:71:bb:fb:49:ac:fa:6e:0c:92:96:2f:76:72:
e7:f2:95:8d:1f:1c:d4:df:6f:59:d0:2c:6d:d7:03:25:5f:7b:
cb:81:0a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:18:11 2025 by rpki-client