Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/scE-Dmp0vXwUa1MKsGgJzoAanKc.roa
File: scE-Dmp0vXwUa1MKsGgJzoAanKc.roa (raw, json)
Hash identifier: Ahpk7xU3b+C9sMWWWAI2QG1syLPwZXOCY61z9CvD5fI=
Subject key identifier: B1:C1:3E:0E:6A:74:BD:7C:14:6B:53:0A:B0:68:09:CE:80:1A:9C:A7
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 07687C75
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/scE-Dmp0vXwUa1MKsGgJzoAanKc.roa
Signing time: Sat 01 Jan 2022 00:52:05 +0000
ROA not before: Sat 01 Jan 2022 00:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2a0f:3787::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124288117 (0x7687c75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 1 00:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c13e0e6a74bd7c146b530ab06809ce801a9ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a7:e8:e0:62:2f:07:2b:be:13:eb:d3:75:76:
26:9a:e4:4c:5b:68:30:8c:28:45:e8:4b:41:88:c9:
75:65:ed:4b:a5:34:b8:03:1d:4b:62:eb:0c:90:86:
33:92:6c:e8:55:8c:af:5a:74:5f:6c:f1:25:b2:6f:
be:49:46:fd:e1:ba:5d:78:a0:f0:f0:0f:9d:39:ff:
c3:5e:e3:e4:40:af:d1:0f:7f:5f:3d:c6:b8:a6:46:
8d:ab:4e:2b:d1:71:9a:94:ac:70:e6:8b:ee:a2:ae:
96:6a:2c:2c:35:87:52:dd:00:b8:53:20:4b:6e:ce:
47:27:85:28:88:27:2b:22:3b:95:76:a5:fe:4a:a5:
63:77:46:b2:eb:c8:b3:ed:30:97:79:85:e5:93:dd:
c0:50:b1:e0:9d:4d:11:25:09:f4:88:dd:bd:db:62:
32:ce:3b:62:4c:d5:32:36:45:f4:de:0a:f4:ca:db:
8a:37:bc:b8:ad:33:cb:64:94:d0:a2:d1:f8:69:9f:
d5:52:23:b5:90:a2:5f:ab:4d:c5:51:9c:8a:ff:41:
04:20:ec:e1:b7:0a:12:91:78:75:31:0c:ba:0a:33:
82:fc:69:52:72:59:c9:c4:ba:4b:c4:58:ad:54:cd:
ac:66:ef:a0:63:98:a1:5a:cd:1d:a2:09:38:34:6c:
9a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C1:3E:0E:6A:74:BD:7C:14:6B:53:0A:B0:68:09:CE:80:1A:9C:A7
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/scE-Dmp0vXwUa1MKsGgJzoAanKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3787::/32
Signature Algorithm: sha256WithRSAEncryption
64:78:68:f5:73:9f:b2:16:61:39:11:93:84:ed:79:e3:12:fc:
54:e1:85:37:7b:29:aa:3a:ea:0d:8b:c7:eb:ad:e0:7b:19:e8:
73:98:82:75:97:e2:c8:b5:6c:76:12:ea:85:1f:6a:ec:bf:9b:
59:1f:a3:4f:df:48:ba:23:ab:ff:06:31:57:26:a1:d4:7c:a8:
09:14:12:bf:ae:dc:76:96:44:3a:37:79:eb:8f:b0:74:2f:0e:
79:e9:58:b8:b2:fa:98:05:58:56:db:95:1d:a6:b9:68:ee:0f:
76:d0:eb:61:84:56:10:b2:30:6a:1e:d8:88:99:35:da:57:e9:
ff:02:ac:b1:77:da:1c:83:9e:68:33:89:3d:de:48:59:2e:a3:
bd:fc:bd:81:cf:b2:db:6f:47:99:07:21:be:ba:f4:f6:49:79:
6f:f3:1a:5c:dd:1a:6a:ce:9d:ae:fa:b9:47:62:d2:af:78:21:
7b:f0:c8:09:6a:f3:c2:bc:72:d8:ba:b6:8d:14:5b:32:01:74:
21:41:aa:f3:0d:f4:1f:a6:c0:4d:67:7f:57:0a:6b:65:0a:3f:
41:66:c6:e2:45:be:1f:68:cc:34:e2:2f:d8:f3:2f:c0:96:2c:
db:c9:0f:58:59:36:93:1a:58:4d:88:5f:9f:47:e4:ed:23:23:
4f:28:9b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:48 2025 by rpki-client