Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/_tCsm1zyTlXzFqLQzrgAzL_UuVA.roa
File: _tCsm1zyTlXzFqLQzrgAzL_UuVA.roa (raw, json)
Hash identifier: she5HDRsOejNpmue8MQpXhqc2YuoPxHYb08KOuGlFos=
Subject key identifier: FE:D0:AC:9B:5C:F2:4E:55:F3:16:A2:D0:CE:B8:00:CC:BF:D4:B9:50
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 01856D787151AC0A729EC4D5D8009918F4FF
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/_tCsm1zyTlXzFqLQzrgAzL_UuVA.roa
Signing time: Sun 01 Jan 2023 13:14:47 +0000
ROA not before: Sun 01 Jan 2023 13:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34019
IP address blocks: 2001:7a8:810::/44 maxlen: 44
2001:7a8:800::/47 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:71:51:ac:0a:72:9e:c4:d5:d8:00:99:18:f4:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 13:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fed0ac9b5cf24e55f316a2d0ceb800ccbfd4b950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:68:e9:11:84:0a:d7:b5:ad:e9:74:e8:f0:
5b:7f:16:28:ab:58:7f:a5:dd:60:10:86:4d:47:12:
69:34:b8:5a:f6:5c:5e:63:9c:8c:31:6a:a9:1f:6a:
96:e7:b7:2c:c6:b6:66:4d:ac:ac:ed:45:7b:72:50:
b8:47:32:6f:87:62:92:ea:fd:33:aa:c2:14:4a:84:
ab:7b:11:52:83:56:73:6e:81:f9:4e:33:97:f4:69:
50:8b:7b:7f:fc:8e:4a:5a:ad:86:fd:bd:f6:3c:ff:
54:46:12:d4:df:91:22:b1:17:10:76:bd:7f:37:45:
20:f6:dc:ee:ed:06:39:5e:30:93:36:48:e9:2e:6e:
4b:39:87:0f:bb:59:88:3a:57:d7:d5:99:3d:1f:aa:
31:3b:46:c5:16:b1:17:c0:2d:e7:f6:0d:de:8f:ec:
58:4f:e9:2a:a8:e7:14:b5:f2:f2:f5:66:58:ac:ea:
c7:57:3c:35:24:e5:35:59:64:b9:0d:ee:70:52:8b:
74:d9:48:b5:f1:dd:ce:04:2c:80:89:76:ea:47:54:
19:98:5b:45:c9:27:86:a2:77:c6:78:c3:93:fe:07:
88:72:8a:c2:f6:83:13:05:0a:39:54:af:19:25:d5:
9c:21:10:52:83:21:f7:9f:11:d3:0f:11:8b:00:ea:
1f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D0:AC:9B:5C:F2:4E:55:F3:16:A2:D0:CE:B8:00:CC:BF:D4:B9:50
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/_tCsm1zyTlXzFqLQzrgAzL_UuVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7a8:800::/47
2001:7a8:810::/44
Signature Algorithm: sha256WithRSAEncryption
2b:34:07:e7:6d:ea:4e:f1:41:5d:3f:a8:06:76:89:1b:c4:7e:
3f:09:c6:53:58:78:71:fb:06:bb:19:04:58:cf:dd:a7:b9:c9:
47:62:6b:8f:3e:34:08:17:23:77:6a:e3:d1:b1:d7:06:4f:98:
d9:ac:72:89:29:34:89:01:a5:4e:c7:9d:1e:d7:da:c0:cc:da:
78:94:71:83:48:65:23:ad:72:19:18:3a:d6:90:ed:4e:73:89:
17:1c:50:69:38:8e:09:8c:80:46:1b:28:4a:17:d7:44:0a:a7:
f7:f8:f7:9f:3b:41:8e:8a:03:e8:79:27:09:43:fa:61:98:69:
48:da:d4:ad:4e:6a:f8:21:6b:ee:5d:c3:8b:81:32:8a:77:27:
b0:96:e4:eb:ac:2f:24:a2:4c:75:3e:28:28:3e:86:27:00:6b:
20:b8:19:4a:2b:e1:45:f0:6e:e9:6d:9b:e6:7c:6a:b9:c8:55:
7d:13:4f:84:a5:11:ca:52:43:7d:bf:47:4b:8f:e3:b9:fa:7c:
cd:61:d3:8a:c8:bf:43:00:ec:7f:ac:fc:cb:e4:06:ca:1e:b8:
b3:12:86:b5:59:a9:d9:43:50:e3:ea:ac:f6:66:2d:88:d0:d0:
49:d2:1a:f9:88:b0:16:89:53:3c:40:32:5c:6f:81:e1:65:13:
a2:95:e1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:48 2025 by rpki-client