Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/6tdQRuWYdpafisSYBkavi1XnCe4.roa
File: 6tdQRuWYdpafisSYBkavi1XnCe4.roa (raw, json)
Hash identifier: qxXyR/768Zkk5d+71TbkZcd2JMy6EGhwWNzR9RmWzO8=
Subject key identifier: EA:D7:50:46:E5:98:76:96:9F:8A:C4:98:06:46:AF:8B:55:E7:09:EE
Certificate issuer: /CN=713b9404a0c43223addc8ea1b10ab74b777a2a01
Certificate serial: 0188E2BF22D4BDAFAB5F4EA527D8D7A81289
Authority key identifier: 71:3B:94:04:A0:C4:32:23:AD:DC:8E:A1:B1:0A:B7:4B:77:7A:2A:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cTuUBKDEMiOt3I6hsQq3S3d6KgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/6tdQRuWYdpafisSYBkavi1XnCe4.roa
Signing time: Thu 22 Jun 2023 10:55:57 +0000
ROA not before: Thu 22 Jun 2023 10:55:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51013
IP address blocks: 81.95.108.0/24 maxlen: 24
2a02:4a8:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:bf:22:d4:bd:af:ab:5f:4e:a5:27:d8:d7:a8:12:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=713b9404a0c43223addc8ea1b10ab74b777a2a01
Validity
Not Before: Jun 22 10:55:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ead75046e59876969f8ac4980646af8b55e709ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:49:0e:0f:d2:38:07:16:94:bf:44:1c:7c:13:
de:e4:b9:f6:53:29:9d:a5:1e:51:e1:45:9c:cd:85:
8a:fa:69:ae:2d:1f:e9:8e:9c:06:ab:f0:7e:b1:36:
58:9d:bc:ca:09:5e:67:12:69:f4:d8:2e:84:6e:9b:
27:75:bf:0b:11:ee:25:64:d5:90:39:b8:88:6c:38:
57:40:02:14:a6:c1:b2:ba:57:3e:a5:65:26:7b:41:
b1:ac:14:fb:e0:70:23:38:11:a6:ac:dd:09:6d:38:
66:f2:9c:d3:c6:94:b3:7e:4b:10:ac:76:c3:c7:35:
58:c9:b1:64:d3:02:53:76:7d:7f:ba:27:96:df:b3:
70:69:38:8b:7f:45:22:22:d5:f3:1f:ba:ce:ab:22:
bd:f2:6a:f6:aa:2d:7f:41:4d:02:e5:14:61:86:5f:
70:73:48:f5:3b:ef:4e:b0:5d:26:97:12:60:29:1e:
6b:f2:74:98:71:87:8c:c2:de:0d:13:13:27:74:4f:
8a:4a:aa:8e:e6:d5:73:a7:00:c9:b3:a2:63:1c:d9:
08:09:f5:64:7e:56:d1:c8:5e:ab:cc:20:16:56:8e:
14:b6:43:c4:b4:b6:76:17:6f:75:ac:c9:56:e7:b0:
e0:3f:e3:a9:70:dc:3f:e7:79:8b:71:f1:6e:47:9e:
ee:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D7:50:46:E5:98:76:96:9F:8A:C4:98:06:46:AF:8B:55:E7:09:EE
X509v3 Authority Key Identifier:
keyid:71:3B:94:04:A0:C4:32:23:AD:DC:8E:A1:B1:0A:B7:4B:77:7A:2A:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cTuUBKDEMiOt3I6hsQq3S3d6KgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/6tdQRuWYdpafisSYBkavi1XnCe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7ec7a2-8318-462f-966e-7a531d483747/1/cTuUBKDEMiOt3I6hsQq3S3d6KgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.108.0/24
IPv6:
2a02:4a8:10::/48
Signature Algorithm: sha256WithRSAEncryption
73:4b:d5:5d:a9:7e:6c:b4:58:e0:78:44:40:b2:b3:bd:e9:fc:
70:47:4d:6a:ea:2a:9c:fb:da:3b:8c:9a:f3:7a:65:01:ec:f9:
0a:74:ad:b0:a6:2f:e5:b7:68:54:4b:2a:27:ad:8a:a6:e1:6c:
cb:2d:e9:1b:69:69:ad:5c:cb:91:37:02:2c:fa:06:4e:3d:6e:
f3:ba:30:f6:cd:90:45:b0:69:b9:fe:6d:6d:bb:80:2b:86:6f:
a7:93:cc:82:56:37:ae:6a:92:ec:86:ca:cb:f2:e6:b3:64:a6:
6f:0d:a3:90:62:9b:0c:a7:56:a3:02:4c:4c:bd:99:c8:61:80:
9f:36:c5:9b:26:56:64:f3:1c:c2:ba:2c:43:5d:d6:69:cd:21:
06:91:17:96:d2:ec:da:23:fd:c6:73:c4:ab:2a:2a:45:33:bf:
af:48:be:be:3c:7e:f6:1b:7c:84:fb:8f:14:74:30:70:06:d8:
32:ce:ff:37:60:20:e7:04:4c:6c:ca:e5:4d:bc:76:05:18:65:
64:35:19:1d:e5:f0:d3:b6:a0:ce:17:c8:58:f0:59:ad:16:2d:
88:c8:57:fd:1e:ed:53:c1:c1:bc:54:af:56:81:41:ec:06:3f:
3a:d7:e4:33:a2:dc:c6:1f:a0:3d:c5:ca:45:bf:23:0c:0f:70:
7b:6b:ea:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:01 2025 by rpki-client