Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/TEm13_aNtkdk1Yhajr2lYiOp1NE.roa
File: TEm13_aNtkdk1Yhajr2lYiOp1NE.roa (raw, json)
Hash identifier: F3uUS/5IcuqkyzE2x3cOPO7c7V5k6lQ92SZUdkuTIA4=
Subject key identifier: 4C:49:B5:DF:F6:8D:B6:47:64:D5:88:5A:8E:BD:A5:62:23:A9:D4:D1
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 08A1D49A
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/TEm13_aNtkdk1Yhajr2lYiOp1NE.roa
Signing time: Sat 01 Jan 2022 02:51:51 +0000
ROA not before: Sat 01 Jan 2022 02:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199216
IP address blocks: 2a01:190:15ec::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144823450 (0x8a1d49a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 02:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c49b5dff68db64764d5885a8ebda56223a9d4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:48:29:e5:a1:2d:66:be:54:ec:61:a5:57:
9e:73:dd:7b:a3:7c:62:38:0d:5f:43:20:c3:e1:7c:
bd:2b:fb:f0:49:15:f1:cf:8c:85:09:77:19:5c:19:
0c:c5:cb:db:a3:0c:72:f0:29:df:21:6d:5d:9f:39:
02:6e:42:d1:70:a4:68:26:00:47:a4:09:64:02:01:
3d:ed:28:be:98:09:d9:93:39:25:a8:10:aa:c2:83:
b6:39:68:3e:fe:90:72:c4:13:0f:92:de:49:38:d5:
da:c3:16:80:db:ce:09:a1:f2:2b:cc:0d:bf:be:b5:
0d:0c:55:79:8c:b1:28:e2:14:51:ca:08:d9:c6:43:
d8:ce:63:81:47:12:bb:87:5e:00:fd:6b:e4:f0:25:
39:c1:d2:84:8f:11:96:1b:ed:e8:8e:c9:da:5a:bd:
c7:1f:09:a7:cc:50:60:6a:ba:d5:41:a2:38:23:8a:
b9:6b:af:fd:68:48:34:07:d1:12:0a:25:1f:4c:b4:
59:de:f1:cd:a6:7f:c0:24:ce:6a:92:f4:98:db:d9:
c4:94:1d:48:7a:34:3a:21:b6:af:61:a4:e3:17:e6:
92:b0:6d:aa:03:b2:89:41:55:e9:7b:e5:ee:6e:be:
ac:10:e7:3a:c8:57:75:cc:7f:76:79:ea:f2:49:e6:
b5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:49:B5:DF:F6:8D:B6:47:64:D5:88:5A:8E:BD:A5:62:23:A9:D4:D1
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/TEm13_aNtkdk1Yhajr2lYiOp1NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:15ec::/48
Signature Algorithm: sha256WithRSAEncryption
76:2d:33:64:d2:bd:75:69:de:ce:b3:5e:25:4d:73:a2:1a:77:
d5:b4:09:cf:4f:8e:fe:04:8e:64:ff:6c:de:eb:07:5f:8a:7a:
bc:33:48:df:7f:39:2d:30:f9:f2:14:15:f6:e7:7e:f9:0c:0a:
ca:5e:37:78:46:1b:01:6c:13:f9:b0:be:23:df:e0:ca:bc:be:
82:97:30:52:67:19:01:e4:c1:a0:69:8c:91:d2:78:7e:af:ef:
ee:a4:e8:1b:75:01:7c:64:97:bd:69:8f:a3:75:c1:7c:1b:58:
1c:90:bf:91:5b:36:87:70:60:b1:a9:c7:e5:d4:b7:9c:24:d3:
cc:56:21:02:8a:da:4b:75:94:76:39:15:0f:6e:e5:87:c8:9b:
9a:fd:a0:fe:ef:c0:64:28:61:a6:f4:65:7c:ff:bb:ba:81:2a:
9f:3a:c9:49:39:4d:f1:1d:70:ae:60:28:ef:e7:05:8c:05:2a:
b8:a7:76:f0:41:22:a4:ec:27:ec:a0:a9:6e:98:93:87:ee:8b:
3b:bb:85:dd:d9:f8:05:62:76:bb:f5:2a:fa:01:6d:08:17:1e:
f5:3b:6f:9d:39:9a:10:93:67:6f:96:9a:54:b7:9c:fb:5c:74:
6e:29:e2:73:33:4c:5f:10:28:3e:04:93:a6:ee:8c:f1:32:68:
e6:4e:57:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:34 2025 by rpki-client