Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/1dtyF7SopGkAaaTLdNtSnpjzkTs.roa
File: 1dtyF7SopGkAaaTLdNtSnpjzkTs.roa (raw, json)
Hash identifier: i2o46cwzVV4HyCQIML5/Xhwqah0MpDY3xrPWOLRxlg4=
Subject key identifier: D5:DB:72:17:B4:A8:A4:69:00:69:A4:CB:74:DB:52:9E:98:F3:91:3B
Certificate issuer: /CN=2578e66d757f95ea6d693aa7f84fcb274975c8bb
Certificate serial: 018B8A08A87176759F019999DECCC00DEA23
Authority key identifier: 25:78:E6:6D:75:7F:95:EA:6D:69:3A:A7:F8:4F:CB:27:49:75:C8:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXjmbXV_leptaTqn-E_LJ0l1yLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/1dtyF7SopGkAaaTLdNtSnpjzkTs.roa
Signing time: Wed 01 Nov 2023 08:38:25 +0000
ROA not before: Wed 01 Nov 2023 08:38:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203918
IP address blocks: 2001:67c:2e90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:08:a8:71:76:75:9f:01:99:99:de:cc:c0:0d:ea:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2578e66d757f95ea6d693aa7f84fcb274975c8bb
Validity
Not Before: Nov 1 08:38:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5db7217b4a8a4690069a4cb74db529e98f3913b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:d8:90:01:38:7f:a7:00:55:96:11:74:8a:
0a:b3:02:88:33:6e:ce:aa:39:e9:72:07:57:12:4b:
d0:99:23:a0:1a:fd:fd:0b:0f:2b:b4:35:fb:50:9f:
54:89:cb:75:ec:6b:32:ce:a3:a8:a9:51:be:86:a6:
b2:bb:5f:6a:1a:c7:ca:0b:b9:11:31:cc:73:b1:1f:
90:4c:7b:f7:33:0a:ee:61:23:22:72:de:6f:4d:09:
fd:37:3a:64:a3:d1:3c:66:89:73:14:0e:8a:70:75:
14:ed:c4:60:fd:18:33:ba:41:b9:e6:06:dc:cd:cd:
1f:f9:59:ec:56:d1:03:d1:66:9c:91:c3:df:08:51:
6c:a4:ba:63:f9:04:c4:e8:fd:52:ce:c7:65:77:96:
50:f7:7b:1b:eb:cf:f1:ac:c5:dc:af:e4:1d:38:0a:
87:b9:58:15:ed:bc:3d:61:a0:17:b2:b8:a7:aa:90:
8d:9b:2b:6f:96:8b:69:98:dd:3e:e7:16:3c:82:05:
6c:81:b2:5d:e6:1a:5b:c6:3a:67:52:ef:ce:45:e5:
31:33:aa:c1:40:3f:ea:f6:79:dd:d6:b0:1e:2c:b8:
60:3f:e0:97:84:e1:ee:d8:00:23:2e:e5:fa:6a:08:
fd:96:47:49:aa:5d:f0:93:0a:77:74:c7:05:1b:2d:
8a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DB:72:17:B4:A8:A4:69:00:69:A4:CB:74:DB:52:9E:98:F3:91:3B
X509v3 Authority Key Identifier:
keyid:25:78:E6:6D:75:7F:95:EA:6D:69:3A:A7:F8:4F:CB:27:49:75:C8:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXjmbXV_leptaTqn-E_LJ0l1yLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/1dtyF7SopGkAaaTLdNtSnpjzkTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c5b5d9-0ae7-4629-a01b-fbad637c4142/1/JXjmbXV_leptaTqn-E_LJ0l1yLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e90::/48
Signature Algorithm: sha256WithRSAEncryption
b0:0b:1e:46:39:bb:45:4f:a9:64:fb:6f:29:e9:08:68:b8:fb:
43:3b:58:e7:1a:1c:84:d4:e9:bb:77:78:85:f7:aa:b3:50:2e:
ec:40:1a:eb:cf:6f:9c:47:08:4f:0c:fd:4b:27:44:2a:b9:0b:
7e:52:8f:d6:6a:6e:9b:50:9d:53:68:19:04:a1:af:2d:4a:a5:
ab:31:b5:ae:01:41:d7:12:06:21:c5:83:1e:26:f2:8c:ac:5c:
a4:d4:a1:3c:77:8f:5f:b4:e6:86:32:87:05:33:85:80:8d:1b:
93:32:e5:7d:1a:35:9a:3a:2b:45:ce:50:09:2b:bd:4f:6b:ea:
ce:18:4f:29:de:93:50:9b:df:36:94:3f:72:07:8f:e3:49:1e:
61:99:f9:f8:70:e9:e6:84:99:1b:03:99:9e:c3:24:82:44:3d:
bd:77:c7:d3:aa:d8:3e:74:8f:b7:99:17:16:12:84:88:7f:62:
7b:67:aa:35:ad:6a:91:49:17:50:e4:1c:60:1f:07:bd:c6:10:
17:3d:be:ba:0e:28:d6:cb:e9:03:5b:39:02:ab:b4:be:a3:89:
68:d8:1e:62:62:74:07:c5:95:7c:9a:5f:b8:4a:cb:39:7c:84:
2a:bf:0d:d6:3c:ed:23:62:b9:0d:e4:5f:87:b8:f7:16:4e:dc:
cd:ee:8e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:29 2025 by rpki-client