Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/Wh7L6_XJ1avdJJOyJ-ICP-HgD_0.roa
File: Wh7L6_XJ1avdJJOyJ-ICP-HgD_0.roa (raw, json)
Hash identifier: MkEiGIuL+ASeqXkEb3hI1SSMflFWT3rM1Nr6sfoC0pI=
Subject key identifier: 5A:1E:CB:EB:F5:C9:D5:AB:DD:24:93:B2:27:E2:02:3F:E1:E0:0F:FD
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 119A8A77
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/Wh7L6_XJ1avdJJOyJ-ICP-HgD_0.roa
Signing time: Sat 01 Jan 2022 07:57:57 +0000
ROA not before: Sat 01 Jan 2022 07:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 2a00:9b40:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295340663 (0x119a8a77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jan 1 07:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a1ecbebf5c9d5abdd2493b227e2023fe1e00ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a1:d8:92:75:d5:75:45:69:2a:14:68:22:3f:
8f:f2:75:c1:0f:35:3f:e5:b1:8d:72:08:ad:ac:34:
e6:22:f1:f1:4b:9b:d8:07:fe:d2:59:c1:b4:d2:16:
b4:e2:d5:e8:5c:92:47:5f:61:21:b8:a0:8c:1d:e6:
35:6d:7e:44:ce:a0:88:d5:55:52:80:da:32:2b:50:
4e:67:9f:0f:8b:25:96:31:47:a7:b1:ed:71:e0:06:
33:ad:20:ae:f6:6c:84:0b:47:70:33:3d:92:aa:3a:
76:2f:43:1a:da:7c:7a:8a:e4:4c:9c:1d:fc:b9:02:
9b:40:cf:34:04:c2:ba:0b:46:00:1c:84:10:cb:9a:
b1:7c:66:51:10:ab:e6:c0:c4:42:65:3e:3a:77:a1:
e2:d9:4e:04:ba:d5:ba:e4:34:0c:db:d7:97:69:cf:
b5:07:c9:5b:ad:08:03:a9:bc:e2:80:1d:df:ac:13:
fc:42:6a:9b:75:3c:14:b0:02:37:a5:c1:d8:a7:ba:
ac:d1:e1:91:35:bc:7b:db:b9:c4:fa:5b:06:90:7d:
26:f6:68:61:61:84:32:86:27:92:7a:76:32:0b:26:
77:a2:2f:57:01:a0:2a:58:ae:db:48:fa:a6:7b:0a:
cb:b9:06:25:1f:b2:83:b3:1f:02:0c:c9:91:15:52:
7b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1E:CB:EB:F5:C9:D5:AB:DD:24:93:B2:27:E2:02:3F:E1:E0:0F:FD
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/Wh7L6_XJ1avdJJOyJ-ICP-HgD_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:9b40:100::/40
Signature Algorithm: sha256WithRSAEncryption
af:b6:6f:a5:92:a1:62:20:75:4b:44:9d:22:48:29:ff:f2:08:
9c:90:1e:5f:78:65:36:d7:59:62:dd:56:08:12:f2:ab:1a:5b:
c9:40:ac:b7:cc:8a:24:c3:fb:2e:2e:86:08:2d:36:3a:9e:3e:
7b:ee:18:93:9c:e0:d5:d8:0b:7c:b5:05:2e:ae:2a:86:e6:68:
f9:5b:e5:63:d9:8c:4d:8c:41:76:e8:25:2f:8f:12:6e:e7:e5:
3a:2f:df:a2:55:8c:f5:46:d4:83:36:4b:c3:0c:41:cb:55:b3:
00:4f:c5:c2:50:51:1e:d0:b3:2a:11:e6:c7:76:b1:51:5f:14:
6b:4b:b5:6e:f2:57:3f:56:b7:1b:9d:d7:82:81:d3:8b:60:95:
3b:96:39:60:9a:97:5c:18:0b:25:9e:9c:0e:5d:5c:51:81:f9:
fd:06:73:f4:a1:ca:d4:d7:b0:fb:2a:a3:a6:b3:e4:1e:af:73:
22:8f:fb:36:38:9f:04:5f:c9:36:e1:ef:62:25:65:78:28:70:
73:6b:6c:ae:c9:45:b6:e1:c8:eb:a6:f4:38:31:3c:f2:b8:dd:
a6:d3:35:d6:f8:c3:2f:e7:6d:74:90:04:5e:2b:c5:27:a8:5f:
33:b1:e7:bc:88:1a:b4:0f:6c:4c:2d:90:15:51:d9:1e:9e:45:
d4:49:d9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:38 2025 by rpki-client