Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/r8U3XvI3bbfDUBWHcl9BwnH-DE4.roa
File: r8U3XvI3bbfDUBWHcl9BwnH-DE4.roa (raw, json)
Hash identifier: v6jSg5V/AaOB46wTOrSL9oezSnmYhhjdFMUyNcYolKM=
Subject key identifier: AF:C5:37:5E:F2:37:6D:B7:C3:50:15:87:72:5F:41:C2:71:FE:0C:4E
Certificate issuer: /CN=75245438a2b6209c81675ef35783d89a19b707fa
Certificate serial: 15050F84
Authority key identifier: 75:24:54:38:A2:B6:20:9C:81:67:5E:F3:57:83:D8:9A:19:B7:07:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/r8U3XvI3bbfDUBWHcl9BwnH-DE4.roa
Signing time: Sat 01 Jan 2022 01:59:55 +0000
ROA not before: Sat 01 Jan 2022 01:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199852
IP address blocks: 2001:67c:197c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352653188 (0x15050f84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75245438a2b6209c81675ef35783d89a19b707fa
Validity
Not Before: Jan 1 01:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afc5375ef2376db7c3501587725f41c271fe0c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:48:7d:57:50:5f:42:36:8d:fa:b7:ba:58:b2:
93:76:24:d3:db:5c:a7:fa:af:88:43:a8:10:5a:21:
0d:b2:d3:12:19:8c:3d:65:01:3a:f4:7e:87:be:39:
2d:88:f8:6f:da:3b:97:4b:89:78:88:23:3d:88:11:
d3:04:5e:3b:4f:c9:37:4c:3f:ff:40:6a:28:cb:7e:
d0:73:10:39:44:2e:54:ad:6d:d8:05:d0:2c:a4:e0:
75:c0:63:2b:8e:93:27:e4:c3:ab:85:58:4e:ca:9d:
da:90:02:ec:73:a3:6f:68:14:ac:0a:e5:2b:33:6f:
1a:86:a9:a4:1c:8d:06:30:67:2c:1b:57:b3:a8:d8:
ba:b9:03:ce:a4:a4:d4:e8:db:c8:c7:9e:0e:33:03:
34:9a:c3:58:e2:3d:ed:0b:93:24:a2:d8:47:01:66:
75:52:5b:eb:6e:c2:7f:d5:76:25:90:38:73:dd:ff:
df:3e:9e:17:19:22:ae:d8:d6:6d:5f:ca:b7:16:d8:
65:60:b4:a8:d1:a7:90:0b:be:c3:22:56:f7:da:c9:
46:0f:94:ba:72:4d:63:9d:16:3e:c5:1c:f1:bf:c3:
07:49:0e:f4:58:19:cc:0e:a4:de:6e:a6:cd:f1:15:
68:bb:75:0a:01:26:0d:5a:04:8c:3b:20:3b:e7:bc:
91:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C5:37:5E:F2:37:6D:B7:C3:50:15:87:72:5F:41:C2:71:FE:0C:4E
X509v3 Authority Key Identifier:
keyid:75:24:54:38:A2:B6:20:9C:81:67:5E:F3:57:83:D8:9A:19:B7:07:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dSRUOKK2IJyBZ17zV4PYmhm3B_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/r8U3XvI3bbfDUBWHcl9BwnH-DE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0eed2b-2057-45e7-9f00-5ee18588df59/1/dSRUOKK2IJyBZ17zV4PYmhm3B_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:197c::/48
Signature Algorithm: sha256WithRSAEncryption
4c:47:97:c1:c6:ed:42:f3:92:5b:82:3c:16:26:09:90:80:df:
4c:d8:39:0c:12:ec:5d:2d:5d:75:8b:90:28:a8:9e:82:6f:e9:
ef:38:6f:7f:ca:4d:fd:18:44:b6:af:97:cf:69:f1:eb:27:18:
8e:3e:b6:15:bc:56:c3:85:56:09:eb:13:c0:6f:c3:6b:b7:48:
cd:35:ec:d0:b0:15:00:69:a6:f8:ce:ad:6e:d0:53:fe:74:2d:
3b:1b:62:ab:a3:7d:a3:f2:06:4f:61:81:ee:00:8e:d7:25:14:
f5:83:4a:c6:e2:eb:37:34:b2:9d:99:14:a0:c7:e5:b9:12:09:
73:49:0c:04:44:0f:7b:37:ba:3b:d2:d5:5b:c5:a2:b4:4c:fa:
d0:a9:a0:d1:33:aa:af:7b:4a:cc:d7:fc:0f:da:be:17:b6:30:
ce:4f:a4:71:f5:47:71:a5:da:0f:01:f2:1f:df:39:4c:ee:00:
f4:cf:20:8a:20:35:ef:6c:bd:b6:32:4b:4b:1c:4b:45:30:b8:
a7:bf:e3:56:13:f7:b8:9c:bf:3c:6f:9f:83:72:3f:13:2a:06:
08:f5:b3:95:21:68:f1:c8:36:2d:ac:64:31:8b:ac:7b:de:12:
ba:39:6e:c6:17:8c:54:bc:1e:54:d1:3c:d0:75:c6:47:81:cb:
15:11:0b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 04:36:32 2025 by rpki-client