Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Rbtf3xZiWzWQ8O8fpZWKqoDn9nI.roa
File: Rbtf3xZiWzWQ8O8fpZWKqoDn9nI.roa (raw, json)
Hash identifier: XZg9y9cjeFYyjz1TKD4n8Xlh1bt1DGGWKBRuItQAtMU=
Subject key identifier: 45:BB:5F:DF:16:62:5B:35:90:F0:EF:1F:A5:95:8A:AA:80:E7:F6:72
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 041D364A
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Rbtf3xZiWzWQ8O8fpZWKqoDn9nI.roa
Signing time: Wed 04 May 2022 00:06:35 +0000
ROA not before: Wed 04 May 2022 00:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31898
IP address blocks: 2a0e:46c4:2300::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69023306 (0x41d364a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: May 4 00:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45bb5fdf16625b3590f0ef1fa5958aaa80e7f672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0a:b4:2b:d7:d7:2b:47:91:63:be:02:d8:51:
8c:86:54:45:55:9a:c4:3c:61:de:04:1f:c6:cb:21:
2e:f9:e4:7a:19:7d:15:9e:5b:5e:c9:01:f1:e1:a3:
dd:9c:5b:ef:96:48:34:a8:12:86:32:54:9c:90:0e:
cd:fc:b0:e1:7a:3b:07:86:54:e3:df:8d:0f:e0:84:
91:cb:1c:8b:f2:c4:27:a9:9d:81:0c:2b:b0:3e:af:
b8:fa:e7:2a:24:55:b5:ca:73:45:7d:1e:d0:ff:17:
38:16:81:06:21:0b:12:40:d9:21:67:a5:61:d2:9e:
43:66:26:03:f8:07:81:c9:bf:03:6a:13:6a:8e:5a:
9c:c3:9f:1e:0c:d2:b3:5f:d1:ed:2f:14:f5:c1:c6:
56:77:2c:7a:32:99:06:f3:29:8a:d5:44:99:36:ac:
1d:61:2e:24:f4:b0:fd:a8:c0:f5:6e:0d:e9:e0:1b:
7d:e9:93:4d:c4:3f:7b:a5:a0:79:ee:f0:32:5a:a4:
b1:4b:9c:7f:d0:28:fd:23:94:38:8f:8b:e5:33:4e:
56:c5:88:08:03:9d:cb:f5:74:d5:12:63:4e:18:65:
11:6e:f2:35:57:bf:b0:e5:c3:c3:04:18:85:0d:59:
59:b1:c7:ee:8e:06:01:5f:b6:6a:1c:a3:48:4e:68:
9d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BB:5F:DF:16:62:5B:35:90:F0:EF:1F:A5:95:8A:AA:80:E7:F6:72
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Rbtf3xZiWzWQ8O8fpZWKqoDn9nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2300::/40
Signature Algorithm: sha256WithRSAEncryption
6c:30:52:c0:8c:82:dc:2a:1f:bd:2a:8a:15:cb:7f:a8:ed:5d:
b9:62:83:67:72:29:ef:4d:9d:a1:ed:73:3f:eb:47:a9:9e:d7:
96:d0:48:31:6d:0f:ec:ba:3d:35:23:58:01:a1:1a:e2:f6:e7:
23:23:72:d2:c9:fd:61:51:6d:2c:2f:67:ab:d5:3f:5a:05:48:
cb:b2:c6:ce:58:47:9c:e8:ec:96:89:0b:3f:4f:ac:6a:62:db:
5a:ec:94:8c:a2:64:2d:58:4a:84:93:1e:84:e7:76:c2:29:71:
e1:37:c6:c3:9f:54:cf:af:e8:69:7d:f8:18:d8:e1:b9:b3:91:
e6:0e:63:45:74:cb:0a:0d:fd:b1:21:3d:4a:67:b4:b9:f2:1e:
74:1c:65:d9:54:f9:b7:c8:31:14:c9:58:10:6b:96:33:f0:90:
ba:1b:ac:6d:0a:86:ec:3e:f2:d8:9c:26:56:fa:7f:a7:56:2c:
d5:c5:0c:53:d1:07:0e:2e:d9:4f:06:7d:5c:d9:29:d8:70:81:
79:60:7a:f6:db:53:6f:d1:e3:fd:18:1e:42:ef:58:17:87:ee:
bb:e5:d2:16:02:dd:62:8d:24:a4:ec:a7:c7:eb:04:3b:35:1f:
22:e3:48:f2:67:8c:6a:6a:48:98:f6:7f:30:b2:aa:0f:13:d1:
b2:bf:cc:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:01 2025 by rpki-client