Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/B7Kc6F7hTgrhkerM6xZ2uu2khkQ.roa
File: B7Kc6F7hTgrhkerM6xZ2uu2khkQ.roa (raw, json)
Hash identifier: rpaJq9/pgg+c7IQen4lYmQlrXoQz20BkQGIIXTDUufM=
Subject key identifier: 07:B2:9C:E8:5E:E1:4E:0A:E1:91:EA:CC:EB:16:76:BA:ED:A4:86:44
Certificate issuer: /CN=a5a56ebf01e00349f673019180560c9a31aea871
Certificate serial: 0183D39FEB8A5CDD6ED4F9D3E731A51F93F4
Authority key identifier: A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/B7Kc6F7hTgrhkerM6xZ2uu2khkQ.roa
Signing time: Thu 13 Oct 2022 23:13:36 +0000
ROA not before: Thu 13 Oct 2022 23:13:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399976
IP address blocks: 2a12:c6c7::/32 maxlen: 48
2a12:c6c6::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d3:9f:eb:8a:5c:dd:6e:d4:f9:d3:e7:31:a5:1f:93:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a56ebf01e00349f673019180560c9a31aea871
Validity
Not Before: Oct 13 23:13:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07b29ce85ee14e0ae191eacceb1676baeda48644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:91:36:ff:2a:6e:fc:4b:0f:47:72:f3:34:fe:
e3:12:86:a6:e6:16:bb:d9:99:f0:c9:75:49:c0:9a:
11:7e:fc:45:19:b3:54:58:79:c5:e9:51:1e:cd:b3:
88:e5:07:8b:f4:15:eb:d9:bb:2b:a6:1c:29:19:c4:
ad:f3:26:4c:14:01:f9:85:3c:30:ef:81:5d:17:87:
9d:ac:37:bb:20:36:96:31:f6:c3:70:c8:52:e0:31:
38:e3:34:63:c1:ec:c3:e7:e9:71:ea:e9:8e:6f:65:
6d:e1:f2:0f:45:db:12:00:6c:3b:78:39:6a:f1:81:
12:4a:75:5b:42:de:b6:d1:2d:b7:f0:ed:cd:d9:9c:
91:f3:c3:2a:2b:9f:36:e2:68:bd:69:d3:58:ef:21:
78:63:18:69:89:8a:e7:81:9d:54:51:ae:0a:bc:9a:
cb:cc:89:a7:48:aa:41:c7:97:ee:f8:55:ee:bf:a1:
8c:86:eb:a1:9f:70:f7:c3:57:1b:4a:57:80:19:90:
42:ff:8f:a6:1f:42:1e:f6:b1:e0:81:5e:31:96:6d:
60:2f:8c:b5:4e:f2:b5:bb:22:01:f5:a0:ea:a1:a2:
cd:4d:27:2d:f9:5e:9c:19:90:a2:12:7c:01:f2:b1:
a9:4a:87:12:17:26:99:1f:a0:6b:b9:fc:e6:75:ee:
23:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B2:9C:E8:5E:E1:4E:0A:E1:91:EA:CC:EB:16:76:BA:ED:A4:86:44
X509v3 Authority Key Identifier:
keyid:A5:A5:6E:BF:01:E0:03:49:F6:73:01:91:80:56:0C:9A:31:AE:A8:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paVuvwHgA0n2cwGRgFYMmjGuqHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/B7Kc6F7hTgrhkerM6xZ2uu2khkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/554c35-a83c-4329-a08d-2d46d30dacbf/1/paVuvwHgA0n2cwGRgFYMmjGuqHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:c6c6::/31
Signature Algorithm: sha256WithRSAEncryption
58:93:fd:ee:07:bb:2c:b3:ac:8b:18:b7:9d:85:1f:35:f7:3b:
df:9c:ca:ce:ad:3a:6e:53:05:e6:ec:f2:77:31:23:00:1f:28:
b1:15:69:ed:b0:96:4b:1f:ba:9e:b7:b3:9e:f1:59:1e:e1:d9:
cd:53:65:aa:01:83:ad:b0:51:c0:65:93:e9:a5:2e:94:a5:07:
bc:88:6a:cb:4e:12:9e:91:2b:d6:79:07:8f:48:b3:43:fc:33:
32:a1:78:a6:2d:41:8a:27:0e:8b:61:3b:4f:1c:11:1c:02:e8:
24:b6:1c:0b:5b:db:bd:0c:85:8e:a1:1b:29:46:ea:61:77:fe:
8e:6a:e9:e0:8f:96:f8:91:c8:04:3a:18:fc:0c:c2:2a:8b:3e:
33:5c:4c:09:6f:c4:bb:f4:45:d8:12:72:00:9a:a6:ad:1e:eb:
8c:11:e2:38:1e:a2:01:a3:15:bb:8c:34:f1:e0:9d:32:21:77:
63:b7:7b:82:9c:94:f8:df:01:85:2e:e5:51:e4:dd:12:a2:6c:
74:6a:28:af:ae:e5:ec:0f:27:0c:69:72:40:8d:79:6e:7d:8f:
69:60:3e:5c:8a:4b:59:f5:e4:ad:60:c9:ad:ff:ce:f8:ea:b6:
ea:e0:59:a4:9e:9d:43:70:e1:61:72:e8:bf:b7:85:0a:33:08:
07:f9:94:4d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYPTn+uKXN1u1PnT5zGlH5P0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YTU2ZWJmMDFlMDAzNDlmNjczMDE5MTgwNTYwYzlhMzFh
ZWE4NzEwHhcNMjIxMDEzMjMxMzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2IyOWNlODVlZTE0ZTBhZTE5MWVhY2NlYjE2NzZiYWVkYTQ4NjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZE2/ypu/EsPR3LzNP7jEoam5ha7
2ZnwyXVJwJoRfvxFGbNUWHnF6VEezbOI5QeL9BXr2bsrphwpGcSt8yZMFAH5hTww
74FdF4edrDe7IDaWMfbDcMhS4DE44zRjwezD5+lx6umOb2Vt4fIPRdsSAGw7eDlq
8YESSnVbQt620S238O3N2ZyR88MqK5824mi9adNY7yF4YxhpiYrngZ1UUa4KvJrL
zImnSKpBx5fu+FXuv6GMhuuhn3D3w1cbSleAGZBC/4+mH0Ie9rHggV4xlm1gL4y1
TvK1uyIB9aDqoaLNTSct+V6cGZCiEnwB8rGpSocSFyaZH6Brufzmde4jGwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAeynOhe4U4K4ZHqzOsWdrrtpIZEMB8GA1UdIwQY
MBaAFKWlbr8B4ANJ9nMBkYBWDJoxrqhxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGFWdXZ3SGdBMG4yY3dHUmdGWU1takd1cUhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS81NTRjMzUtYTgzYy00MzI5LWEwOGQt
MmQ0NmQzMGRhY2JmLzEvQjdLYzZGN2hUZ3Joa2VyTTZ4WjJ1dTJraGtRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS81NTRjMzUtYTgzYy00MzI5LWEwOGQtMmQ0NmQzMGRhY2Jm
LzEvcGFWdXZ3SGdBMG4yY3dHUmdGWU1takd1cUhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKhLGxjAN
BgkqhkiG9w0BAQsFAAOCAQEAWJP97ge7LLOsixi3nYUfNfc735zKzq06blMF5uzy
dzEjAB8osRVp7bCWSx+6nreznvFZHuHZzVNlqgGDrbBRwGWT6aUulKUHvIhqy04S
npEr1nkHj0izQ/wzMqF4pi1BiicOi2E7TxwRHALoJLYcC1vbvQyFjqEbKUbqYXf+
jmrp4I+W+JHIBDoY/AzCKos+M1xMCW/Eu/RF2BJyAJqmrR7rjBHiOB6iAaMVu4w0
8eCdMiF3Y7d7gpyU+N8BhS7lUeTdEqJsdGoor67l7A8nDGlyQI15bn2PaWA+XIpL
WfXkrWDJrf/O+Oq26uBZpJ6dQ3DhYXLov7eFCjMIB/mUTQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:17:28 2025 by rpki-client