Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/uHaciSmopefej_3GR7a5tcBq8C8.roa
File: uHaciSmopefej_3GR7a5tcBq8C8.roa (raw, json)
Hash identifier: SWUEqLt1PjPgF9ItBn+AHfc7D2uZN8+smE+wnKlzk6A=
Subject key identifier: B8:76:9C:89:29:A8:A5:E7:DE:8F:FD:C6:47:B6:B9:B5:C0:6A:F0:2F
Certificate issuer: /CN=843cf5bb876b772b7ade432905cb696f134caa39
Certificate serial: 018413BB985D6A0EDBD0A8D85E0AC2066162
Authority key identifier: 84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/uHaciSmopefej_3GR7a5tcBq8C8.roa
Signing time: Wed 26 Oct 2022 09:59:32 +0000
ROA not before: Wed 26 Oct 2022 09:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207901
IP address blocks: 2a09:5a00::/29 maxlen: 48
2a09:5a00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:bb:98:5d:6a:0e:db:d0:a8:d8:5e:0a:c2:06:61:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843cf5bb876b772b7ade432905cb696f134caa39
Validity
Not Before: Oct 26 09:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8769c8929a8a5e7de8ffdc647b6b9b5c06af02f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a6:60:93:57:bf:1c:94:1e:3e:6c:f1:f2:e3:
9d:83:93:d7:c4:9e:26:d0:ad:d4:02:2b:6d:58:5e:
b1:30:fb:eb:56:4a:c9:e6:e4:46:1c:a8:70:67:6d:
62:76:d5:a2:58:92:85:ab:d0:fa:23:8b:70:81:07:
62:14:75:8d:50:d1:f3:62:77:41:69:ce:88:87:13:
8a:39:af:75:97:8f:18:13:84:5e:33:46:58:c0:59:
ea:5a:ac:dc:e9:36:87:8d:76:78:12:4a:48:81:ce:
d5:fe:82:2a:c4:48:74:3e:d4:ad:62:d2:99:24:22:
cc:30:9b:82:b2:ee:5b:5f:9d:ee:bb:df:1c:18:cc:
76:91:a1:0c:a1:5a:15:eb:4f:bb:7c:5d:c3:c4:bb:
fd:54:55:9b:1e:00:9a:24:49:65:c4:1b:d3:b3:93:
7c:9a:58:e5:7b:41:85:c4:06:14:70:4c:ec:f1:95:
2a:82:61:a5:32:0a:45:e5:69:a1:20:0c:2c:03:6e:
16:5e:54:9c:a1:b0:da:c2:d8:10:75:05:d1:bd:f3:
d4:ad:07:23:c8:9b:5e:a5:dc:65:ae:8a:c3:27:89:
5e:10:89:dd:19:c6:49:4c:f5:57:44:03:09:c6:82:
16:08:c2:57:25:5b:c1:08:cf:7e:6f:ef:0e:9b:56:
05:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:76:9C:89:29:A8:A5:E7:DE:8F:FD:C6:47:B6:B9:B5:C0:6A:F0:2F
X509v3 Authority Key Identifier:
keyid:84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/uHaciSmopefej_3GR7a5tcBq8C8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:5a00::/29
Signature Algorithm: sha256WithRSAEncryption
8e:10:1f:e4:e1:0b:c8:47:6c:e7:b5:15:84:2b:92:a5:07:f1:
a6:39:48:1e:c9:78:aa:0c:ac:6a:ab:25:9b:43:5f:d0:cc:10:
cc:ef:b7:1e:38:01:04:f4:fe:5b:60:9d:42:53:6b:4d:65:84:
ea:65:a2:53:39:e7:1b:21:cd:07:e1:79:dc:f3:fc:d7:04:20:
e2:84:cf:7b:fb:60:5c:18:c9:a2:46:a1:42:a5:d7:60:df:1a:
7c:77:6e:06:28:e3:d8:a0:76:c4:4a:ba:7c:fa:5d:93:7e:0a:
ca:5d:46:8c:48:13:40:25:69:5e:d0:f3:5c:5c:02:e8:3b:39:
e8:f5:a5:f4:03:0a:dc:76:14:f5:0c:40:e3:ad:5c:2f:75:28:
9d:77:47:78:ad:3f:e2:8d:ee:f8:bb:2a:62:a9:6b:d4:46:57:
0b:65:df:d9:bf:61:64:92:32:1c:65:a5:09:f2:4a:a4:83:b3:
94:cc:fc:44:14:b6:64:d3:1d:31:80:70:8c:92:ce:ed:84:a3:
34:44:41:cd:ba:ba:6c:57:d9:1d:2a:d6:5a:ee:32:bb:f3:f6:
28:8f:45:5a:b9:25:6b:73:c3:16:1d:ae:cb:ae:c6:35:b0:b8:
fc:56:78:bb:84:b5:2d:2a:7d:31:28:51:a4:db:58:01:cb:a9:
5d:13:24:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:57:21 2025 by rpki-client