Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/6QS14iUOZKYFx3yg3z0mHZ-zrDo.roa
File: 6QS14iUOZKYFx3yg3z0mHZ-zrDo.roa (raw, json)
Hash identifier: tKiBmEG2qDwxkILSxDqHL0Zh0g0HVwMB0WBhQ4xEhwM=
Subject key identifier: E9:04:B5:E2:25:0E:64:A6:05:C7:7C:A0:DF:3D:26:1D:9F:B3:AC:3A
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 0188DEA6D8978245F1D28C334B55242BCDA9
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/6QS14iUOZKYFx3yg3z0mHZ-zrDo.roa
Signing time: Wed 21 Jun 2023 15:50:56 +0000
ROA not before: Wed 21 Jun 2023 15:50:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212722
IP address blocks: 2a10:500::/29 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:a6:d8:97:82:45:f1:d2:8c:33:4b:55:24:2b:cd:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Jun 21 15:50:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e904b5e2250e64a605c77ca0df3d261d9fb3ac3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:35:42:f2:ed:67:8f:7d:1a:f5:d6:69:41:fb:
d7:a7:e4:8c:c9:a3:56:80:a5:31:a6:3d:9b:62:5d:
e8:76:43:76:69:51:00:1d:77:ab:2c:f2:34:4a:6c:
bd:eb:c1:8f:4c:19:0c:5f:64:cf:56:e7:b2:02:8b:
b7:b3:dd:ba:38:e2:46:c0:d0:d5:dd:6b:a4:f7:8f:
7b:72:0b:af:c6:3c:36:b6:71:80:78:d8:82:6b:68:
ad:37:bd:1f:80:f0:c0:3b:10:ca:aa:39:7b:62:e5:
2a:9e:c2:2d:39:c3:b1:f5:3c:dd:d6:bb:4a:63:19:
d6:d6:98:e0:c1:67:c6:d3:8c:de:2b:67:1f:16:05:
97:21:07:35:59:b4:e6:c0:3a:da:94:2d:cc:49:ed:
f2:a8:0b:9f:d7:99:01:83:5a:99:1a:ea:32:7b:48:
1f:fc:ed:85:4c:58:db:48:8b:cf:79:6b:fa:08:70:
6c:07:cf:d5:ec:c6:ed:0d:b6:43:24:49:18:74:48:
01:f8:98:1d:5d:bd:8b:d4:5e:94:4b:6f:9a:d1:e0:
58:90:b5:51:fa:bf:da:b6:9d:df:68:95:7b:01:31:
ae:ab:61:21:32:32:a7:26:fa:b1:a4:40:42:5a:2b:
44:2c:98:d0:76:8e:54:c2:96:2b:87:4f:ee:c8:af:
d6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:04:B5:E2:25:0E:64:A6:05:C7:7C:A0:DF:3D:26:1D:9F:B3:AC:3A
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/6QS14iUOZKYFx3yg3z0mHZ-zrDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/29
Signature Algorithm: sha256WithRSAEncryption
69:07:43:1e:3f:03:e5:63:e0:07:4f:b5:8a:6f:12:43:39:11:
d0:70:82:74:ce:37:70:6d:02:62:19:c8:7c:02:72:0e:40:e5:
a2:94:66:79:8e:52:86:9e:7c:3b:7d:9f:7c:d8:1a:3e:4c:1c:
f3:37:d3:33:d2:63:fb:6c:fd:16:7c:a0:3f:63:8e:2d:3b:b4:
34:a5:6d:90:d0:df:78:ba:8c:3c:bb:23:94:cc:7f:7f:f2:52:
7c:fb:c7:6f:f6:89:fb:1e:fb:ba:db:49:b3:17:95:66:59:11:
67:7b:d5:f5:02:25:c3:30:0a:34:aa:5d:43:4b:f5:dc:2d:33:
32:d6:a1:6f:96:e2:3d:eb:1e:9a:f0:86:d5:60:7b:df:e5:1c:
7c:48:b2:d9:62:98:2f:2f:f4:db:6b:d5:64:fe:5a:f6:65:4f:
92:d9:f1:97:f6:6f:8d:62:a0:30:7a:60:74:df:05:33:42:e9:
24:51:82:c5:b6:a2:c3:57:e1:10:6f:8e:3c:6b:d6:8d:d6:2f:
4a:2b:8d:de:db:ef:d8:60:1a:c0:eb:16:3a:c3:92:7e:81:dd:
06:f8:49:34:f8:56:01:6e:f1:ca:53:f6:1d:7e:ec:de:a3:7c:
65:bd:79:15:d8:a2:ba:0d:50:68:f8:34:15:ff:1b:2f:d5:3c:
0b:12:01:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:07 2025 by rpki-client