Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/59a6b9-cd20-4cd7-b4a7-f0b962f52414/1/VFEbv0PMuTpCJ58nI3dNW3WymJw.roa
File: VFEbv0PMuTpCJ58nI3dNW3WymJw.roa (raw, json)
Hash identifier: mXaq0CFVYflzz6h/OaKM73v5Dyk/i7gBwspQ6mUc+Ic=
Subject key identifier: 54:51:1B:BF:43:CC:B9:3A:42:27:9F:27:23:77:4D:5B:75:B2:98:9C
Certificate issuer: /CN=672f0e42b08aa451fc583a358ec370ffbd2dac68
Certificate serial: 0FD6BC6A
Authority key identifier: 67:2F:0E:42:B0:8A:A4:51:FC:58:3A:35:8E:C3:70:FF:BD:2D:AC:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zy8OQrCKpFH8WDo1jsNw_70trGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/59a6b9-cd20-4cd7-b4a7-f0b962f52414/1/VFEbv0PMuTpCJ58nI3dNW3WymJw.roa
Signing time: Wed 12 Jan 2022 09:19:12 +0000
ROA not before: Wed 12 Jan 2022 09:19:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a06:56c1::/40 maxlen: 40
2a06:56c2::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265731178 (0xfd6bc6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=672f0e42b08aa451fc583a358ec370ffbd2dac68
Validity
Not Before: Jan 12 09:19:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54511bbf43ccb93a42279f2723774d5b75b2989c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:af:4d:18:81:8a:1b:17:b1:6d:b7:3d:a7:aa:
d7:ea:21:75:0d:c7:6f:bc:ce:79:81:06:82:5c:ec:
32:0b:de:ba:53:23:b7:ee:7e:ef:45:3d:28:d0:2e:
73:54:34:32:e6:a6:d3:56:8e:c3:81:12:7e:12:64:
0f:f4:95:23:cf:72:11:64:78:41:44:97:34:b7:74:
50:02:82:f6:37:e1:1e:32:e9:d6:5b:e8:0c:0a:e9:
1f:8b:9b:7a:cf:48:3b:e6:1d:c2:92:f6:ae:25:d6:
9d:56:e0:fb:d9:bf:bc:40:38:79:89:b5:76:21:4f:
7a:ba:01:f9:3f:29:bb:d2:8f:a3:df:61:3c:37:30:
d1:85:75:6a:46:f4:ad:1a:66:07:90:19:6b:6b:9f:
c8:e1:73:6e:10:bb:9d:67:b7:c6:29:1e:fa:9c:75:
7c:e1:9e:a3:23:fc:9a:0c:a4:1c:39:cf:66:ef:a8:
dc:a2:b7:ac:eb:10:58:9b:b7:27:c1:cf:20:76:e6:
23:f6:ad:44:da:69:01:10:53:7e:10:cc:15:5b:ec:
f6:49:c2:4e:45:9f:66:9c:59:ca:e7:02:69:88:c6:
4c:35:b3:9d:84:57:19:76:e6:16:56:87:2e:2e:40:
bd:69:d1:be:83:13:0d:22:ea:64:a8:6e:2a:be:d9:
fd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:51:1B:BF:43:CC:B9:3A:42:27:9F:27:23:77:4D:5B:75:B2:98:9C
X509v3 Authority Key Identifier:
keyid:67:2F:0E:42:B0:8A:A4:51:FC:58:3A:35:8E:C3:70:FF:BD:2D:AC:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zy8OQrCKpFH8WDo1jsNw_70trGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/59a6b9-cd20-4cd7-b4a7-f0b962f52414/1/VFEbv0PMuTpCJ58nI3dNW3WymJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/59a6b9-cd20-4cd7-b4a7-f0b962f52414/1/Zy8OQrCKpFH8WDo1jsNw_70trGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:56c1::/40
2a06:56c2::/40
Signature Algorithm: sha256WithRSAEncryption
7f:68:76:a8:de:19:84:77:6c:53:d4:c3:79:a9:52:ea:fa:31:
00:83:a6:8d:29:1e:1d:44:47:31:7b:03:7a:ad:fb:9b:76:59:
6b:cb:f7:e9:07:5d:fb:a5:5e:38:c3:4f:7a:9c:5a:ca:18:10:
94:09:e7:49:6e:cd:15:d6:b5:13:b4:c4:aa:06:27:54:f3:fd:
db:2a:e0:bd:d0:54:09:1c:50:c3:ec:3a:9f:3d:ab:9e:4c:fd:
01:8c:50:ce:60:94:6e:e1:8b:63:1b:6b:f4:9f:39:13:46:f6:
7f:e7:cb:e5:5c:18:04:92:bb:a0:9a:47:0c:d9:8e:ed:af:e3:
58:1b:52:4f:ae:63:91:3e:e6:a7:64:06:95:c4:28:ef:f0:a5:
cb:8f:c9:a0:ac:42:8a:0a:df:60:bb:3b:64:e6:53:ed:27:51:
e1:fd:99:81:3e:0c:27:98:03:10:0d:4b:74:5d:04:86:05:70:
2d:d9:43:29:b2:1f:ec:53:8b:be:36:7a:af:74:ce:45:9c:12:
f4:12:ff:89:83:12:15:e7:03:00:d5:88:61:6e:a2:dc:3c:c4:
65:65:da:e2:0b:b5:fa:74:76:c9:aa:31:81:c5:55:5f:d4:4b:
ae:98:2b:67:d8:a4:11:2e:6d:4e:c7:d7:8d:97:56:f8:1d:e2:
15:95:bd:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:57 2025 by rpki-client