Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/dWsa9HgwBuah38_ht7xpx0GeX-4.roa
File: dWsa9HgwBuah38_ht7xpx0GeX-4.roa (raw, json)
Hash identifier: T+xd9xfhAI1OO8wnuIrMjJ/u15+b0mKHJathnPuilSE=
Subject key identifier: 75:6B:1A:F4:78:30:06:E6:A1:DF:CF:E1:B7:BC:69:C7:41:9E:5F:EE
Certificate issuer: /CN=eebb4c0b4af615c85a3cdcded4b7ebb666311b48
Certificate serial: 06BBA192
Authority key identifier: EE:BB:4C:0B:4A:F6:15:C8:5A:3C:DC:DE:D4:B7:EB:B6:66:31:1B:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rtMC0r2FchaPNze1LfrtmYxG0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/dWsa9HgwBuah38_ht7xpx0GeX-4.roa
Signing time: Mon 28 Mar 2022 10:31:00 +0000
ROA not before: Mon 28 Mar 2022 10:31:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204911
IP address blocks: 2001:678:a40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112959890 (0x6bba192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebb4c0b4af615c85a3cdcded4b7ebb666311b48
Validity
Not Before: Mar 28 10:31:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=756b1af4783006e6a1dfcfe1b7bc69c7419e5fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e3:cc:61:82:6c:be:1b:0a:e0:d7:05:20:b0:
06:ff:db:17:9a:d2:0d:91:64:af:7c:c4:4c:18:9c:
7e:0f:2d:e8:79:47:50:6d:f2:05:b6:b7:c9:5b:05:
aa:19:99:fc:0c:f6:45:03:91:45:7e:84:ef:9e:02:
55:24:cc:31:fd:30:97:a9:20:e8:2a:91:b6:56:be:
88:09:a6:22:f1:01:2c:09:a5:50:3e:f7:e7:90:64:
14:3d:84:ea:eb:88:95:4f:c7:90:62:52:80:24:1e:
5e:ef:4d:97:1d:68:fe:a0:a2:fd:43:11:b3:e9:a4:
8c:bc:47:cf:4f:3c:e5:78:3d:63:71:45:2a:10:c5:
35:55:52:26:55:5c:55:10:a2:1b:f4:40:af:73:66:
06:76:a1:d9:d0:4d:b8:70:35:cf:9c:f3:8c:1f:0d:
7a:bb:43:92:8a:fe:4f:a1:63:c4:67:02:67:09:63:
91:17:a3:2d:2a:a8:0e:11:a4:47:b1:19:c2:ea:f9:
67:3e:b4:64:72:4c:e1:7d:4b:1e:c4:97:26:07:d2:
24:14:5e:ec:04:01:18:78:31:2e:b9:f1:0f:a7:98:
78:71:67:4a:0d:f0:1c:61:61:08:71:95:b7:66:44:
70:81:4c:66:93:46:bd:ce:3b:e0:a5:65:ee:ca:8b:
57:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6B:1A:F4:78:30:06:E6:A1:DF:CF:E1:B7:BC:69:C7:41:9E:5F:EE
X509v3 Authority Key Identifier:
keyid:EE:BB:4C:0B:4A:F6:15:C8:5A:3C:DC:DE:D4:B7:EB:B6:66:31:1B:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rtMC0r2FchaPNze1LfrtmYxG0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/dWsa9HgwBuah38_ht7xpx0GeX-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ed1b84-b8c5-4766-882d-18e84e747d22/1/7rtMC0r2FchaPNze1LfrtmYxG0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a40::/48
Signature Algorithm: sha256WithRSAEncryption
2a:9c:86:9c:41:19:28:dd:7c:dd:b4:96:04:c2:0c:68:35:a9:
61:70:58:37:54:50:cb:19:93:48:72:1f:f1:c8:df:0c:1f:84:
46:0c:e7:0f:53:4d:3e:9f:76:07:62:07:fb:75:6f:ef:e5:6b:
fa:f6:b1:b2:99:85:55:4c:48:5c:c7:df:bf:3d:f7:79:c9:a7:
da:6b:5c:bc:64:60:91:05:fd:b7:7e:9b:d5:60:53:33:a0:0f:
a7:00:68:d0:63:27:d4:3d:b6:c2:87:f8:20:8c:da:6e:71:63:
f5:9a:a6:a4:16:92:ad:82:34:8d:90:ea:7e:04:27:0d:e4:c2:
41:fe:a5:60:fc:50:fa:05:86:da:43:2e:01:2f:15:e3:61:a1:
ea:c1:c0:10:f1:cd:4a:e3:64:d4:c1:96:78:5f:2f:2a:57:5a:
0e:ef:c0:f7:1e:e1:2b:a4:ca:38:b7:b5:8e:ee:7d:48:19:10:
5b:b8:12:e0:75:ca:d9:bd:6b:28:56:af:89:a6:41:85:0f:8b:
2b:2c:92:fe:7f:03:ac:18:b7:17:f7:2f:68:f9:82:9f:c8:ad:
e3:23:ba:ca:ec:b9:51:86:23:b0:54:4e:35:8a:63:d0:e9:9e:
c2:b6:b1:b2:10:34:5a:4c:df:39:11:aa:84:1b:26:4f:49:36:
05:54:db:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:33 2025 by rpki-client