Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4YslRKNgab1lVThbAI4fcz3Wrvo.roa
File: 4YslRKNgab1lVThbAI4fcz3Wrvo.roa (raw, json)
Hash identifier: YyxyXbModcCgBlqnloXKEMPD1YzU1aHxRDLHzf9/Sks=
Subject key identifier: E1:8B:25:44:A3:60:69:BD:65:55:38:5B:00:8E:1F:73:3D:D6:AE:FA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018ACC1F98968EADCADC9177EC0F25683C75
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4YslRKNgab1lVThbAI4fcz3Wrvo.roa
Signing time: Mon 25 Sep 2023 11:35:37 +0000
ROA not before: Mon 25 Sep 2023 11:35:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22439
IP address blocks: 2a13:18c1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:1f:98:96:8e:ad:ca:dc:91:77:ec:0f:25:68:3c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 25 11:35:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e18b2544a36069bd6555385b008e1f733dd6aefa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:10:f8:82:ed:fa:f0:24:aa:62:e0:e0:26:db:
62:2d:b1:90:ab:b2:f3:ea:0d:34:cb:d9:ad:7a:76:
a6:bb:44:3c:ec:0d:db:e2:d0:63:0b:8f:06:cc:28:
cd:9e:ad:e7:3a:c4:7e:92:39:e5:11:00:16:5a:d1:
cc:6a:9c:84:4f:e8:25:04:6d:4d:9a:29:89:44:c0:
d1:57:09:cb:11:b3:b8:ca:a8:7e:f5:85:b2:69:84:
e7:f6:ad:0f:41:bf:3a:8b:ca:28:66:7a:11:15:73:
47:bb:6e:b2:57:2d:fa:f1:44:9f:6a:0a:24:3e:ce:
f0:a7:a8:6c:14:5d:27:49:4e:a4:c0:ac:6c:6c:6d:
42:77:81:45:f1:dc:a1:a8:9f:d9:ef:cd:bb:06:21:
29:e3:45:22:32:1e:ef:a5:20:c3:b7:78:c4:0e:ef:
84:a2:c9:8d:32:60:b6:9f:72:1a:11:30:a7:84:61:
d9:8e:fd:a4:fb:12:55:b5:c2:2f:87:9a:bb:e5:b3:
77:09:05:48:f4:10:9b:f2:08:17:0e:1b:a8:e5:e6:
6f:4b:4d:c5:5c:59:bd:50:3e:80:7f:2d:18:e5:cc:
b5:f8:65:3b:d5:2e:b3:1c:84:8a:e8:b4:b8:7b:80:
48:4c:1e:6a:d4:8f:37:3a:cd:ab:3e:32:10:77:cd:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:8B:25:44:A3:60:69:BD:65:55:38:5B:00:8E:1F:73:3D:D6:AE:FA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4YslRKNgab1lVThbAI4fcz3Wrvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:18c1::/32
Signature Algorithm: sha256WithRSAEncryption
99:13:41:c6:8b:34:81:46:ef:1c:b6:14:08:6c:72:d9:e8:3a:
4b:bb:68:03:95:62:2f:0a:fb:06:4d:e6:a3:8d:ad:55:d1:4f:
55:49:f3:7b:92:87:51:1b:0e:7e:61:a5:63:b3:e6:14:22:1c:
63:01:5a:e6:fd:24:92:96:1f:72:07:f1:4a:19:09:b1:38:fb:
65:a2:d9:19:d1:0e:dc:55:4b:c2:09:da:2d:7e:b2:22:3c:f0:
1e:da:20:65:81:46:e1:24:80:2f:a7:d2:db:1f:4b:c4:80:45:
ee:6a:2c:70:00:e5:1d:9f:be:17:2a:cd:85:3f:4f:c1:c8:2b:
a8:aa:55:25:73:d2:57:00:a8:28:74:12:99:41:1f:76:b8:ad:
6b:31:18:2c:ce:85:04:f6:f4:08:cc:99:17:e1:61:13:11:ad:
fd:cb:94:54:d5:07:05:4e:5c:54:29:4e:83:78:b1:91:3e:b3:
76:7b:0e:19:c9:38:4b:c0:27:df:79:7d:bc:43:03:07:a2:e3:
58:b7:dc:60:79:29:88:58:46:f7:d5:57:3e:73:a0:73:93:dc:
de:89:2a:bf:15:c6:b7:bc:be:66:27:36:7c:a9:c5:d4:94:6d:
da:c0:40:1b:27:2f:f8:9e:f7:de:03:77:68:4c:c8:c6:ee:ee:
ac:8f:d6:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:02 2025 by rpki-client