Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/793283-e304-4270-b300-1b15b25879f2/1/UIuRAjjPN4mNdGXwbVpfcgvTJi4.roa
File: UIuRAjjPN4mNdGXwbVpfcgvTJi4.roa (raw, json)
Hash identifier: 0Opor4DDKZtVYqYTbGjeO6iKK6xzqZFHS5fxPag8Zxg=
Subject key identifier: 50:8B:91:02:38:CF:37:89:8D:74:65:F0:6D:5A:5F:72:0B:D3:26:2E
Certificate issuer: /CN=53c8c4f951206f1abd86a73d1cbbb39907e86e1f
Certificate serial: 080D27C3
Authority key identifier: 53:C8:C4:F9:51:20:6F:1A:BD:86:A7:3D:1C:BB:B3:99:07:E8:6E:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8jE-VEgbxq9hqc9HLuzmQfobh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/793283-e304-4270-b300-1b15b25879f2/1/UIuRAjjPN4mNdGXwbVpfcgvTJi4.roa
Signing time: Sat 01 Jan 2022 06:54:51 +0000
ROA not before: Sat 01 Jan 2022 06:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16375
IP address blocks: 2001:67c:2568::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135079875 (0x80d27c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c8c4f951206f1abd86a73d1cbbb39907e86e1f
Validity
Not Before: Jan 1 06:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=508b910238cf37898d7465f06d5a5f720bd3262e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a2:32:7c:45:5e:45:c8:0b:fe:7c:bd:be:00:
a6:63:f2:18:95:20:91:66:f2:2d:ca:f3:65:1d:96:
e5:f9:0b:3f:fa:94:55:a4:d8:65:eb:91:fd:d9:8b:
9e:aa:21:fa:55:12:23:89:de:5f:c7:dd:de:e5:6b:
c8:66:11:e0:de:79:0f:5b:42:7b:a0:4c:f1:d2:54:
09:63:78:73:c1:d5:a3:53:19:3d:96:e3:78:78:18:
11:0c:90:f1:8c:52:99:ea:b6:3b:1e:5d:1a:4e:24:
4e:70:26:d0:6d:72:a1:ca:3b:c9:66:d6:ba:31:b0:
99:c9:f9:db:50:0f:2c:19:1c:05:26:44:53:91:68:
dc:06:e9:2e:ed:10:85:8a:af:67:4b:fb:f7:ad:9e:
b9:65:24:81:99:b7:29:37:23:28:35:26:2f:d8:e3:
ea:af:9d:ec:49:ff:9d:b8:e1:c5:8e:b0:ad:72:e6:
b6:a1:b5:58:a9:9b:e9:fe:f6:f4:61:0b:f1:c2:72:
4c:4d:ff:8b:02:fd:3b:01:83:a4:e4:2e:05:bb:e8:
79:8b:ef:09:59:87:12:db:af:2f:bb:c2:54:7f:cf:
f2:88:7c:b4:5a:fa:53:3f:de:3c:08:d9:f4:83:23:
3f:1c:6e:36:12:79:89:d6:4d:f9:f8:df:00:61:c5:
0d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8B:91:02:38:CF:37:89:8D:74:65:F0:6D:5A:5F:72:0B:D3:26:2E
X509v3 Authority Key Identifier:
keyid:53:C8:C4:F9:51:20:6F:1A:BD:86:A7:3D:1C:BB:B3:99:07:E8:6E:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8jE-VEgbxq9hqc9HLuzmQfobh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/793283-e304-4270-b300-1b15b25879f2/1/UIuRAjjPN4mNdGXwbVpfcgvTJi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/793283-e304-4270-b300-1b15b25879f2/1/U8jE-VEgbxq9hqc9HLuzmQfobh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2568::/48
Signature Algorithm: sha256WithRSAEncryption
10:fd:30:f9:eb:9b:fc:98:ab:e5:01:d1:82:36:8b:e1:2b:ff:
49:7d:6c:75:a5:f7:f1:c9:6f:53:29:ba:f0:94:92:6e:6c:b4:
aa:3c:7c:c7:5b:fb:b1:36:23:9d:35:62:27:0a:b0:05:5b:cc:
50:00:a3:b2:c1:25:17:70:23:35:28:e9:15:f1:ad:23:21:6f:
58:53:25:0f:99:59:b1:10:4c:6e:4f:27:3b:17:c7:3d:0e:b3:
a0:89:8b:11:05:07:99:93:3d:95:0c:58:8a:b0:0f:cc:76:c7:
f2:db:90:41:6a:13:22:ed:7b:08:67:7f:80:fa:00:34:b1:78:
9b:2d:21:fc:cb:56:87:ee:ca:31:d2:6f:bb:e9:63:a5:6f:98:
b2:3c:b0:a5:b4:a3:e8:cb:b6:a4:08:c9:6d:45:21:c0:88:e6:
25:b3:ca:79:95:6c:47:52:2f:31:73:18:cf:32:f5:a7:d8:24:
20:0e:f6:b4:1d:81:93:41:ef:35:66:49:b3:d4:e8:27:33:b3:
e4:99:dd:05:58:3a:68:a6:e8:ce:55:e3:60:5d:43:80:10:3e:
9a:1b:df:4d:f1:fa:19:10:d8:57:4c:0c:11:16:bb:9b:9f:be:
d6:cd:96:7a:73:59:d2:2c:9c:e6:4a:d1:17:a9:30:10:b5:83:
7f:89:20:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:08:34 2025 by rpki-client