Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a6c008-dfdf-47ba-a7e6-25eded73fc70/1/rqR-axfPCfIf5i9pbSofcEEMUQM.roa
File: rqR-axfPCfIf5i9pbSofcEEMUQM.roa (raw, json)
Hash identifier: 90ip+N+YvyFCZudKHQFBUSDOOdgtD0IvGWrXF8OQduc=
Subject key identifier: AE:A4:7E:6B:17:CF:09:F2:1F:E6:2F:69:6D:2A:1F:70:41:0C:51:03
Certificate issuer: /CN=ccf94814139e50cf0ad138f03dcc7f35b8b4dfb4
Certificate serial: 0C9D3A90
Authority key identifier: CC:F9:48:14:13:9E:50:CF:0A:D1:38:F0:3D:CC:7F:35:B8:B4:DF:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zPlIFBOeUM8K0TjwPcx_Nbi037Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c008-dfdf-47ba-a7e6-25eded73fc70/1/rqR-axfPCfIf5i9pbSofcEEMUQM.roa
Signing time: Sat 01 Jan 2022 08:02:49 +0000
ROA not before: Sat 01 Jan 2022 08:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25596
IP address blocks: 2a02:58::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211630736 (0xc9d3a90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccf94814139e50cf0ad138f03dcc7f35b8b4dfb4
Validity
Not Before: Jan 1 08:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aea47e6b17cf09f21fe62f696d2a1f70410c5103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1c:dd:53:4f:d5:95:db:06:ac:44:9a:94:76:
34:f2:a4:78:86:a8:a2:38:39:5c:98:da:7c:56:3d:
8a:bc:0c:56:75:4b:27:48:dc:6e:a0:bd:de:9b:71:
d8:ee:79:b7:4d:ff:f3:79:17:49:92:96:2b:4a:cf:
34:7c:b6:a3:90:37:ba:96:c1:5b:a5:a4:56:2e:72:
f1:31:d3:27:68:61:19:dd:7e:36:f8:48:2b:77:ce:
ca:fa:f0:80:8f:ae:6f:5f:94:ab:da:0b:85:f5:4d:
cd:b1:5e:4a:a5:f0:73:9a:82:4e:da:a8:da:0c:8b:
9d:94:1a:dd:31:b9:1f:b1:41:28:86:6c:b2:c1:e0:
fe:c6:69:a8:3d:79:fa:8c:0c:0a:72:a6:2c:2a:76:
64:f2:6a:9c:f7:e3:8c:4a:70:48:c9:7e:bf:37:c4:
24:af:81:cb:84:58:b4:29:7f:8b:b5:8e:cd:69:93:
a7:e3:f8:be:b7:76:da:c9:96:e0:a6:b0:05:43:78:
d8:a5:0b:55:40:e9:7b:df:84:ed:4c:5c:e6:b1:19:
2d:d8:14:b9:dd:35:81:20:7a:95:bb:ef:1e:25:5b:
84:3f:db:e8:a5:14:cd:54:7f:85:26:ca:54:8e:97:
e1:4b:a5:1b:57:bd:00:85:f5:83:59:e7:29:d7:fd:
c4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A4:7E:6B:17:CF:09:F2:1F:E6:2F:69:6D:2A:1F:70:41:0C:51:03
X509v3 Authority Key Identifier:
keyid:CC:F9:48:14:13:9E:50:CF:0A:D1:38:F0:3D:CC:7F:35:B8:B4:DF:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zPlIFBOeUM8K0TjwPcx_Nbi037Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c008-dfdf-47ba-a7e6-25eded73fc70/1/rqR-axfPCfIf5i9pbSofcEEMUQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a6c008-dfdf-47ba-a7e6-25eded73fc70/1/zPlIFBOeUM8K0TjwPcx_Nbi037Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:58::/32
Signature Algorithm: sha256WithRSAEncryption
7a:0f:5d:60:5f:5f:b0:b9:cd:28:c1:bf:7a:c2:fd:5c:fc:b9:
e3:16:e2:f2:cf:f8:42:86:97:14:af:e7:2f:a8:50:f7:c2:18:
ce:40:b3:d4:8d:87:36:32:1c:d8:a0:f5:3a:25:05:30:00:5b:
51:7b:a2:01:77:85:8a:76:bf:2d:75:b0:c8:a3:91:2f:80:6e:
6d:e6:8b:19:d0:77:e1:0e:bd:e1:95:d2:9e:dd:c1:1f:57:02:
a9:cc:2c:3e:af:1f:f5:8c:1e:7d:2d:6b:fa:07:a4:14:b5:9f:
7f:8b:5c:08:c0:13:47:5f:a2:3d:d3:93:58:51:3d:ab:fe:ca:
b5:f4:ce:19:d6:05:d0:97:63:15:18:9b:c8:8b:2d:75:51:41:
1b:99:26:1e:71:d1:a1:92:d4:03:03:60:f7:d5:a1:a0:ee:6d:
66:ba:43:e3:64:e4:a9:65:5c:6b:05:26:72:c6:10:9d:ef:35:
64:c3:19:75:83:c4:b7:c5:21:21:60:f0:dc:17:10:cd:b7:42:
59:1c:32:23:2e:29:0a:da:98:48:4a:47:e5:a6:5f:e9:9d:db:
a1:e3:d3:59:17:a8:24:04:7f:fd:00:7d:34:f0:12:63:bf:b0:
28:04:5b:95:f4:10:37:5f:2c:a6:da:da:57:0a:41:d9:aa:20:
a3:24:57:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:51 2025 by rpki-client