Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/92U8yymnGHXbIGSIJY6ImCBMyKw.roa
File: 92U8yymnGHXbIGSIJY6ImCBMyKw.roa (raw, json)
Hash identifier: 2u7fJ7D1Mv9KW5VZYDyiipEThtYzR8XBWwonCQrRq1c=
Subject key identifier: F7:65:3C:CB:29:A7:18:75:DB:20:64:88:25:8E:88:98:20:4C:C8:AC
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 06705E68
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/92U8yymnGHXbIGSIJY6ImCBMyKw.roa
Signing time: Sat 01 Jan 2022 08:53:27 +0000
ROA not before: Sat 01 Jan 2022 08:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207480
IP address blocks: 2a0f:8840::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108027496 (0x6705e68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Jan 1 08:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7653ccb29a71875db206488258e8898204cc8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3f:38:d9:8b:c5:cf:ec:ae:2b:93:32:7f:7e:
dd:75:f5:3c:df:ac:54:51:34:4a:e9:84:01:bc:56:
27:14:4c:27:46:a1:66:c9:e4:dc:73:42:ff:00:f6:
08:5a:98:4f:e2:53:a8:3c:00:57:9c:cd:42:80:11:
04:3d:f6:2e:e1:8e:a6:a8:6d:1c:db:ff:f7:26:c2:
82:15:80:c5:35:22:97:52:a9:17:c7:a4:1a:17:d2:
6f:b6:b8:b7:d7:97:29:c1:c5:52:cb:da:a3:2b:43:
b3:21:66:c5:68:7f:fe:22:b7:47:59:5f:ed:d4:3c:
f6:35:49:34:f1:45:ec:ae:5a:be:b8:fa:e6:38:ed:
ce:69:0d:e8:d7:d1:03:63:4d:0d:b9:28:1f:e7:66:
1f:e0:50:f6:a1:ff:54:63:23:b0:80:c1:02:92:9b:
f4:4c:a8:b9:d8:93:20:47:d8:6a:c9:6d:94:2f:17:
9d:bb:92:12:70:a7:46:40:7b:20:20:8e:cc:f1:59:
a2:8e:7c:48:cf:0c:29:d0:23:f7:ba:7b:e3:81:70:
a6:f6:d5:e9:bb:d9:e5:c9:bf:dc:22:5f:b1:93:2f:
dd:12:33:2d:80:f5:50:bc:cf:2f:d5:f9:a5:12:08:
d4:83:0c:15:1f:e0:80:57:bb:47:af:fd:c0:10:4d:
f0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:65:3C:CB:29:A7:18:75:DB:20:64:88:25:8E:88:98:20:4C:C8:AC
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/92U8yymnGHXbIGSIJY6ImCBMyKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:8840::/30
Signature Algorithm: sha256WithRSAEncryption
a8:ad:e4:54:b2:dc:fb:cd:0c:d8:3f:82:fa:e1:f9:09:0d:a7:
88:04:b5:f9:06:7b:f4:23:ab:3d:1a:c2:71:fe:72:ec:ae:63:
6e:26:21:3b:8c:e7:0f:83:cf:26:83:74:bf:68:a6:2e:cd:13:
aa:e4:09:fc:e7:ef:fe:48:44:3b:73:57:89:82:98:a7:be:81:
44:d9:f5:d4:13:46:0e:a2:51:cc:0c:6d:97:5b:96:51:f6:97:
70:09:35:cf:5b:ac:78:b0:39:a8:f4:17:86:0d:a8:4a:aa:9f:
d4:9f:f8:c4:3e:bf:35:62:a1:22:81:dc:36:b0:83:24:bf:b1:
86:84:78:d4:4c:6c:bf:53:af:86:35:dd:c9:2f:28:3d:0f:ff:
24:4c:74:ec:c8:d4:ee:16:9f:bf:17:0e:f2:17:ab:fb:c1:45:
0b:70:4c:27:db:f2:ce:de:03:02:10:48:86:06:7b:d2:1d:08:
2f:46:dc:3a:78:f3:88:ff:c7:2e:2e:a7:77:e7:eb:2a:09:2a:
62:21:1d:c4:ec:c4:52:d3:26:32:e2:03:dc:42:f7:cc:81:44:
e7:38:d7:e5:15:49:1d:30:5c:34:f2:05:4b:23:60:13:d1:57:
a2:15:45:ab:d1:ae:9f:f5:53:2c:58:f4:3b:79:90:87:76:f9:
0c:87:f6:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:58 2025 by rpki-client