Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_tBe74srwvnhTxU4wTUjpcimdCc.roa
File: _tBe74srwvnhTxU4wTUjpcimdCc.roa (raw, json)
Hash identifier: U7J9yHHPGxfOvY9SGrTGQ/Sbncr/aRV4xBkWf1OVHj4=
Subject key identifier: FE:D0:5E:EF:8B:2B:C2:F9:E1:4F:15:38:C1:35:23:A5:C8:A6:74:27
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018650170B0B3811045502347F28CF187712
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_tBe74srwvnhTxU4wTUjpcimdCc.roa
Signing time: Tue 14 Feb 2023 13:22:12 +0000
ROA not before: Tue 14 Feb 2023 13:22:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199884
IP address blocks: 2a03:5840:320::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:17:0b:0b:38:11:04:55:02:34:7f:28:cf:18:77:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Feb 14 13:22:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fed05eef8b2bc2f9e14f1538c13523a5c8a67427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d2:42:ce:bc:01:a0:d5:92:70:d3:c9:df:88:
b4:4a:69:50:16:7a:0c:5b:c0:73:b9:92:26:58:10:
72:49:26:c6:ca:fb:f1:d2:9d:63:f8:89:5b:ef:91:
50:7b:f7:77:f8:75:62:37:ae:ea:82:0a:cf:5b:05:
45:82:9a:36:f9:1d:bb:ca:dc:8c:c2:42:35:40:22:
9e:c4:3e:84:3e:3e:36:57:c1:12:4d:23:f7:32:ac:
af:4e:e5:46:b2:9d:3a:7d:6c:1d:22:16:ab:7c:79:
04:5b:b0:e4:4d:16:15:52:90:c0:6b:f9:44:22:41:
14:2b:a8:f5:21:d5:14:c9:88:27:d1:6b:3e:91:af:
f0:8c:95:28:18:45:76:12:5b:54:a2:e5:6a:88:c0:
aa:15:51:80:82:c3:15:b7:13:4b:09:9f:3d:a9:1f:
9c:31:62:8b:7d:a4:9f:e3:d6:ef:f7:ae:30:cf:ca:
fd:c2:89:d6:77:24:07:e6:87:fe:c5:a6:b9:7e:be:
14:0d:6c:45:ef:ca:84:78:d5:a6:97:f8:b4:39:8a:
02:b5:44:91:17:e7:e5:5d:68:d1:1d:4e:07:37:9d:
19:b8:6d:f1:97:1d:ef:a2:80:d5:65:7a:c0:24:11:
52:48:da:46:d0:ec:9b:19:19:06:cc:92:75:c4:10:
0c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D0:5E:EF:8B:2B:C2:F9:E1:4F:15:38:C1:35:23:A5:C8:A6:74:27
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_tBe74srwvnhTxU4wTUjpcimdCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:320::/44
Signature Algorithm: sha256WithRSAEncryption
46:10:e7:b2:66:da:7f:23:0e:25:16:52:58:a2:b2:55:5c:40:
ec:35:77:66:c9:73:a5:5c:c6:de:8d:db:81:aa:c1:dd:d8:1a:
f6:a1:67:a9:1e:0c:b4:8b:df:ed:b3:b2:ad:1e:33:0f:8b:82:
03:12:c3:44:90:db:58:53:88:43:63:ad:ae:36:dd:6d:95:54:
5d:12:de:f0:68:3b:05:20:b1:64:e0:1a:0a:9c:3d:52:a9:61:
71:58:b4:f7:a3:21:f4:f2:44:ad:ba:ae:bf:d4:1a:87:1b:09:
23:25:5e:d9:a0:c0:87:0b:fa:74:a1:f8:73:8d:6b:a2:34:b5:
b7:a6:4a:98:77:70:e2:e5:5c:7f:f2:a7:54:cb:c2:4c:1b:da:
b8:72:a0:2b:fd:1c:3a:08:0d:be:21:99:12:55:ec:8f:66:7e:
b5:9a:de:8b:e9:e6:3f:ec:d5:cd:22:4e:36:cf:ee:71:3f:f6:
ee:fd:4e:be:2f:e9:39:b0:a8:4e:52:fd:dd:36:94:e7:76:da:
a1:a4:77:e9:d1:87:88:58:14:35:dc:2d:52:0e:7a:57:5c:9f:
7f:01:5e:99:db:10:50:b6:60:46:32:92:84:96:77:93:29:4a:
ee:8a:b8:68:69:08:b3:6c:41:6f:73:50:bd:17:09:a5:41:a7:
38:05:61:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:11:47 2025 by rpki-client