Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/4D5M5L_JdSlHZPtMkGZpUMF4hg8.roa
File: 4D5M5L_JdSlHZPtMkGZpUMF4hg8.roa (raw, json)
Hash identifier: JMFvIULb2i5QpHd5UmFu8V7hzUNuD9eD4AHoiHPfYTs=
Subject key identifier: E0:3E:4C:E4:BF:C9:75:29:47:64:FB:4C:90:66:69:50:C1:78:86:0F
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 0861E616
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/4D5M5L_JdSlHZPtMkGZpUMF4hg8.roa
Signing time: Fri 11 Feb 2022 21:21:00 +0000
ROA not before: Fri 11 Feb 2022 21:21:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 2a0d:4180::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140633622 (0x861e616)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Feb 11 21:21:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e03e4ce4bfc975294764fb4c90666950c178860f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1f:73:9b:ff:7b:b2:5d:af:44:29:c5:5d:03:
e1:d7:2a:93:ca:4c:5a:06:6c:87:a5:b2:3d:57:ec:
9c:d4:ec:48:95:9a:3b:30:f7:a2:0e:98:4e:00:fb:
d6:08:dc:41:52:74:dc:9c:8c:b8:85:a3:a0:38:f5:
9d:be:d8:0b:0b:38:0b:31:3a:8d:e3:80:2a:5a:fc:
63:c1:ad:08:6a:9e:08:b6:b8:25:4f:74:fd:77:6a:
ed:a4:c7:da:dd:6a:e5:f4:c3:92:28:b8:7d:e0:46:
b3:cd:f5:b3:6a:fa:07:56:3c:28:4c:e5:ff:13:8a:
7e:69:17:71:f9:2f:37:b8:bf:b9:4f:bd:d9:40:3a:
13:17:c6:c6:25:83:4c:c8:53:a8:64:5a:1e:f6:b3:
7a:bb:79:06:0b:41:90:1f:3a:84:b8:59:82:27:64:
2e:27:96:bd:47:73:6a:e9:d3:50:94:de:aa:44:2e:
9c:90:43:ef:4a:2e:5f:17:51:9a:87:7e:3b:fd:c5:
10:21:c3:9e:c2:03:3d:21:34:4f:a9:53:c7:d1:fa:
e7:8e:3c:cd:f7:5d:6e:9c:56:07:c9:1d:12:ef:c9:
88:6e:c2:e5:b4:79:a4:0c:8e:eb:93:fb:e4:4b:2d:
2b:fb:2d:45:7c:b7:49:fc:5e:e7:7a:fa:c9:ec:d0:
f2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3E:4C:E4:BF:C9:75:29:47:64:FB:4C:90:66:69:50:C1:78:86:0F
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/4D5M5L_JdSlHZPtMkGZpUMF4hg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:4180::/32
Signature Algorithm: sha256WithRSAEncryption
0e:10:d1:35:87:d3:92:38:06:94:e6:0a:62:f0:a8:55:c3:80:
f1:6d:92:16:c2:9f:89:b9:bd:df:e6:98:33:63:98:07:59:80:
b9:76:ca:c4:cb:b6:75:54:51:30:91:7d:4d:cc:da:e2:99:74:
07:53:28:d0:05:ad:86:fc:70:c3:a6:ef:b4:2a:1f:01:bb:6f:
96:e9:fc:27:80:7a:e6:4a:b6:4a:f3:87:5d:94:cc:0f:70:05:
a7:74:7d:71:7c:c5:8c:6c:be:51:5b:a0:f5:4f:88:29:91:df:
3f:d5:26:1a:75:28:d2:8b:a9:59:d2:ab:21:d3:0b:7c:d7:a1:
5f:cc:7d:5d:a0:3e:a3:d0:fc:c2:f3:a6:fb:b1:ef:40:91:a7:
34:c3:42:f1:67:09:b1:97:50:90:a3:41:5f:bd:b0:0d:44:b9:
67:3d:56:a0:1e:32:0a:16:b7:76:61:2e:6b:77:94:5c:32:a2:
c8:95:5f:c9:cd:4a:45:5f:96:37:e7:52:d2:62:f5:b3:ca:62:
c1:bf:91:13:c7:a6:91:74:cc:8b:b6:c8:f5:9e:6c:a9:ee:97:
08:dc:d7:1c:36:69:37:af:d2:fa:60:81:c6:e5:d4:a6:0b:23:
d1:ff:00:94:c1:c2:2b:08:b4:5a:f5:d3:27:0c:bb:cd:1b:d4:
1a:71:db:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:59 2025 by rpki-client