Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/H5bewLGE8P1ULc-uwZqfm1KaAdg.roa
File: H5bewLGE8P1ULc-uwZqfm1KaAdg.roa (raw, json)
Hash identifier: TwKP9isN5TrVuaNqZ8mYjiFxs9U0pu1ztCOkLqaiwug=
Subject key identifier: 1F:96:DE:C0:B1:84:F0:FD:54:2D:CF:AE:C1:9A:9F:9B:52:9A:01:D8
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 0833875E
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/H5bewLGE8P1ULc-uwZqfm1KaAdg.roa
Signing time: Mon 31 Jan 2022 05:06:06 +0000
ROA not before: Mon 31 Jan 2022 05:06:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a10:14c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137594718 (0x833875e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 31 05:06:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f96dec0b184f0fd542dcfaec19a9f9b529a01d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:5e:8b:10:70:f9:68:ac:cb:17:51:2e:14:
6a:c2:d2:cc:4f:be:b3:6b:8d:11:b2:19:e0:03:6e:
c5:d7:54:af:a5:a2:28:21:b4:6f:ee:d9:80:a0:c2:
ef:06:85:f2:0b:6d:5c:c4:91:a1:90:5b:82:f8:0f:
ef:fd:df:04:7b:20:f1:eb:f6:e2:cf:df:f9:13:f5:
73:7e:2f:cf:d5:ba:d1:df:cc:0e:ab:d8:27:b3:44:
fe:c8:29:30:e2:70:d7:b2:88:58:fa:8c:67:8f:95:
a8:58:62:1f:89:35:a6:52:8f:61:57:49:50:42:fe:
89:f1:26:f5:07:97:a0:1c:4b:05:cb:f8:07:63:bc:
c0:ee:f0:6d:45:2d:1e:0b:01:43:2b:1c:97:b6:4a:
9b:4b:b3:87:7e:a2:4b:e5:2a:cd:64:81:80:1c:3e:
54:9c:59:8e:bb:20:41:02:d9:21:28:ea:99:22:3d:
bc:74:1f:c9:7e:14:6e:c3:fc:ab:04:bd:4d:a7:5f:
45:3e:26:ca:f7:b7:7d:31:57:87:02:9e:d9:7e:ec:
ae:97:77:96:c7:e2:b0:5d:0b:6c:ec:a8:38:32:d1:
03:2d:58:30:3c:96:ed:54:ff:23:3a:c0:17:b1:c2:
fd:74:4e:78:09:3e:96:d2:08:eb:76:86:c2:03:68:
34:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:96:DE:C0:B1:84:F0:FD:54:2D:CF:AE:C1:9A:9F:9B:52:9A:01:D8
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/H5bewLGE8P1ULc-uwZqfm1KaAdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:14c0::/29
Signature Algorithm: sha256WithRSAEncryption
0f:20:fb:be:61:5b:a3:98:0d:3f:45:71:76:71:c1:33:a0:68:
2d:ff:37:5c:aa:1b:e1:ae:a9:06:48:9d:f6:bc:a5:49:33:65:
69:ee:d3:5a:30:f6:96:10:f4:58:2a:19:5b:98:c5:46:f8:4d:
66:85:67:11:f2:0e:9b:1f:59:d9:a0:7f:8b:94:71:42:9e:37:
2f:69:32:88:af:d4:5d:d5:b4:f4:bb:1b:d5:8b:4e:c2:40:93:
b9:4f:c5:9f:18:f2:76:d4:fd:c1:3c:45:9f:a5:35:68:b0:7c:
c4:d8:c6:30:03:2b:d8:41:37:8f:3e:09:59:1e:bd:74:c7:4b:
06:ad:54:ea:f3:c3:a3:49:c3:ac:7f:c2:ea:ba:ea:7d:89:f5:
f7:ad:b4:15:e7:93:f0:b8:7e:c5:3f:15:45:00:d8:3b:6b:c0:
ab:6a:73:85:11:e7:bf:f9:99:f3:ea:62:63:85:71:4f:1f:4c:
f6:db:fa:b2:00:f8:28:f7:92:81:37:ca:01:c1:cb:b3:2a:55:
93:fe:d5:98:1d:a9:55:89:02:90:82:1b:cb:40:82:0b:be:1b:
cf:2f:06:a9:be:ee:e5:2e:ca:00:ef:96:c8:b7:3c:c4:7d:85:
ef:d2:49:79:f4:39:22:28:0b:0a:f7:cc:75:ee:65:19:2d:3a:
ce:2b:e0:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:17 2025 by rpki-client