Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/1-4MgdoRLAKkqmPXBg9ZcwI5yhuo.roa
File: 1-4MgdoRLAKkqmPXBg9ZcwI5yhuo.roa (raw, json)
Hash identifier: lq0wSHljPF3S5rupnU7Ap8S9cKPwX/6fkSaupSIoiyI=
Subject key identifier: FB:83:20:76:84:4B:00:A9:2A:98:F5:C1:83:D6:5C:C0:8E:72:86:EA
Certificate issuer: /CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Certificate serial: 018760EC280A505E5FD47C3699D354DB10C5
Authority key identifier: B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/1-4MgdoRLAKkqmPXBg9ZcwI5yhuo.roa
Signing time: Sat 08 Apr 2023 12:51:42 +0000
ROA not before: Sat 08 Apr 2023 12:51:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47596
IP address blocks: 2a11:8480::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:60:ec:28:0a:50:5e:5f:d4:7c:36:99:d3:54:db:10:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Validity
Not Before: Apr 8 12:51:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb832076844b00a92a98f5c183d65cc08e7286ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f0:b4:0b:75:65:bf:ce:ba:16:23:4c:f4:70:
28:01:81:e8:14:c7:36:e3:ca:e3:64:02:45:cb:32:
5c:03:47:85:1e:27:4c:d9:4f:a6:eb:42:29:d6:cd:
5f:9b:6d:c1:04:10:64:91:01:ec:f1:f2:ff:b4:8c:
da:7f:87:63:13:0b:45:91:c4:4f:c0:16:e4:24:85:
69:68:40:9c:8d:5e:b4:8b:ea:77:8e:ce:8f:4f:79:
4c:46:50:e7:ab:da:1a:95:50:52:06:b1:ff:75:d8:
d3:da:87:9f:ea:b7:8e:b2:fd:52:f7:49:ae:43:fb:
68:30:e3:b7:9d:5d:35:09:6c:80:8e:f7:dc:d5:ba:
0a:22:94:60:38:03:7f:81:72:83:76:61:b4:da:88:
92:3b:fb:b1:dd:5a:c5:6e:68:2c:2a:7c:70:2a:e8:
e9:62:20:8d:2b:da:a4:6f:9c:54:d0:06:8b:60:a1:
0c:71:f4:27:82:05:b1:e2:20:89:b1:16:17:fc:9a:
7c:01:3e:21:40:50:9a:b0:61:f6:71:2c:2d:e2:3d:
1b:99:57:b9:ff:05:dc:4f:81:2f:51:f7:f7:b6:c8:
18:66:cd:bb:c1:53:d4:25:6e:a4:8a:16:55:d0:c0:
61:13:a5:75:02:73:d0:8b:c8:37:21:23:2e:41:61:
da:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:83:20:76:84:4B:00:A9:2A:98:F5:C1:83:D6:5C:C0:8E:72:86:EA
X509v3 Authority Key Identifier:
keyid:B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/1-4MgdoRLAKkqmPXBg9ZcwI5yhuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8480::/32
Signature Algorithm: sha256WithRSAEncryption
b2:db:10:2e:b6:70:6d:90:cb:7e:5a:4d:9b:ea:e4:6d:2d:a6:
0b:2c:d6:53:56:1b:c0:35:a1:b5:9b:1d:69:a9:28:67:74:32:
17:7c:ec:68:e3:df:dc:34:65:2e:01:a4:b7:21:46:e5:d2:98:
d3:6f:a7:a3:60:24:50:c2:94:fb:eb:32:bf:05:91:e4:ba:25:
89:a6:51:72:2e:80:24:e3:fb:48:92:38:de:65:94:fe:a4:27:
c1:0d:b6:85:3d:b4:fb:ea:c4:cd:00:fa:9b:4e:fe:67:f0:c4:
34:4e:49:ba:26:d0:e4:01:81:f8:53:45:e4:32:1f:c1:f8:94:
16:6b:40:30:5e:16:cb:05:c0:df:c3:64:63:67:94:50:5a:09:
46:15:97:09:d8:96:10:d4:fa:02:15:bf:bd:78:56:9c:61:d6:
71:c1:60:73:2b:d2:88:fc:74:8c:f5:5c:67:e9:0c:92:8e:d4:
fe:07:6c:20:84:f9:4e:a5:a0:55:e1:fa:5f:06:23:7c:92:98:
87:49:1d:ff:f4:48:b3:af:4b:b2:da:ee:d6:6a:82:38:ff:5b:
29:7e:8b:ad:69:30:da:2b:51:3d:7a:c9:a1:04:8c:7d:fc:2c:
14:52:b1:1a:2d:61:15:f9:44:a8:a5:d3:1a:c1:85:eb:7e:d3:
64:14:3f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:15:09 2025 by rpki-client