Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/8e4bdc-e6eb-4208-9b13-a2efae3f9cab/1/WtZEnv61VBOduSd5BXP6amtHa6Q.roa
File: WtZEnv61VBOduSd5BXP6amtHa6Q.roa (raw, json)
Hash identifier: +3ilqZiUO/p81/+s+tDGxpJ3b464b6LBnugprrOMWqo=
Subject key identifier: 5A:D6:44:9E:FE:B5:54:13:9D:B9:27:79:05:73:FA:6A:6B:47:6B:A4
Certificate issuer: /CN=971a799c6a663439d74450dfb38993571f98e15d
Certificate serial: 349C1B6D
Authority key identifier: 97:1A:79:9C:6A:66:34:39:D7:44:50:DF:B3:89:93:57:1F:98:E1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lxp5nGpmNDnXRFDfs4mTVx-Y4V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/8e4bdc-e6eb-4208-9b13-a2efae3f9cab/1/WtZEnv61VBOduSd5BXP6amtHa6Q.roa
Signing time: Sat 01 Jan 2022 13:59:47 +0000
ROA not before: Sat 01 Jan 2022 13:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12816
IP address blocks: 2001:4ca0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 882645869 (0x349c1b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=971a799c6a663439d74450dfb38993571f98e15d
Validity
Not Before: Jan 1 13:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ad6449efeb554139db927790573fa6a6b476ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0c:a2:c0:77:4b:dc:8e:39:1f:68:69:35:e9:
15:0d:6a:75:64:bc:77:13:b7:55:cc:2a:2c:33:59:
d6:c3:6d:d0:fb:ec:bc:10:ea:a9:4b:7f:84:be:35:
87:cc:ef:ba:d4:b8:bb:62:3d:c2:40:7c:f9:b2:24:
f9:22:38:90:5b:2c:9b:df:11:a6:d9:a0:d2:52:d5:
57:e4:29:f9:24:f5:e7:01:f2:4e:cf:52:5a:7e:bf:
4d:f9:30:6b:19:11:12:c7:e3:9b:9c:7d:ff:f4:03:
9d:22:f4:85:e6:70:a2:85:4e:91:7d:af:38:61:78:
40:a4:10:bf:04:f0:78:50:a1:2b:a0:4e:fc:4a:d3:
c5:38:95:98:cd:d2:70:60:fe:af:ec:92:fa:71:c9:
cc:27:ff:82:9d:99:45:87:96:df:e5:80:f3:2a:91:
16:37:f7:0b:00:6a:e3:40:59:4d:5f:f0:df:68:92:
6f:cc:e4:98:29:b9:26:03:67:0f:bb:0a:5b:f5:76:
0d:09:a2:38:31:03:b3:1e:76:87:e7:41:b3:ff:71:
89:e4:75:a7:99:67:c3:61:3b:71:f1:26:45:cc:e4:
0d:ac:20:36:7c:6c:d9:80:0a:ec:82:59:b9:0b:b1:
0a:57:b7:fb:b2:10:c9:9d:b5:74:70:df:00:db:72:
ef:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D6:44:9E:FE:B5:54:13:9D:B9:27:79:05:73:FA:6A:6B:47:6B:A4
X509v3 Authority Key Identifier:
keyid:97:1A:79:9C:6A:66:34:39:D7:44:50:DF:B3:89:93:57:1F:98:E1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lxp5nGpmNDnXRFDfs4mTVx-Y4V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/8e4bdc-e6eb-4208-9b13-a2efae3f9cab/1/WtZEnv61VBOduSd5BXP6amtHa6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/8e4bdc-e6eb-4208-9b13-a2efae3f9cab/1/lxp5nGpmNDnXRFDfs4mTVx-Y4V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4ca0::/29
Signature Algorithm: sha256WithRSAEncryption
5e:b9:30:77:f6:6b:d3:06:4a:95:a6:04:4b:c2:58:87:67:cd:
39:53:19:89:50:30:62:e3:d6:e0:42:37:32:93:ba:62:f6:d3:
c9:a3:0e:ac:98:d4:59:9f:cd:ef:85:3d:d6:ca:d8:c5:83:34:
29:0c:af:a6:bb:cb:d6:42:93:9e:7d:7d:f4:1f:26:04:f3:58:
55:7b:b3:66:b0:6e:26:1d:5c:cb:f1:e0:0e:59:fd:fa:25:f0:
9e:44:24:56:0d:dd:7c:d9:28:ba:2f:d7:29:c4:ef:a3:f6:d9:
20:26:37:c1:2b:a5:50:5d:72:ce:98:97:bb:f8:91:eb:a1:c7:
da:9f:c2:e8:f8:25:5e:93:c3:07:b5:2c:18:55:d4:b3:29:7e:
3a:9e:50:bf:1c:86:6d:5c:5a:4f:ae:2d:4c:f5:e7:7a:cc:81:
91:17:05:66:c7:3f:77:2d:a3:d6:df:ce:d1:4c:6c:93:a4:a4:
56:8e:1d:58:f7:05:aa:8d:28:81:57:03:74:b9:8b:26:45:25:
67:2f:ce:9f:96:e6:1a:0f:ac:d4:9d:ff:4e:36:c5:cb:c2:cc:
36:9c:0a:06:be:94:3f:d8:49:8b:30:65:b0:ef:53:ee:b2:65:
6d:2d:de:7a:2f:ad:ea:36:dc:0b:52:eb:ca:c5:c3:a4:e4:ac:
2e:f0:ee:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:57:33 2025 by rpki-client