Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4ufe7y9cdMbe3mTnwOhexz2m-M0.roa
File: 4ufe7y9cdMbe3mTnwOhexz2m-M0.roa (raw, json)
Hash identifier: 6gagM15a29V5bzbE4zXuQYl27eZxePK9FwNpGum5NYM=
Subject key identifier: E2:E7:DE:EF:2F:5C:74:C6:DE:DE:64:E7:C0:E8:5E:C7:3D:A6:F8:CD
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018AB2A90A6BA412355ECF86E13437EB2C7E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4ufe7y9cdMbe3mTnwOhexz2m-M0.roa
Signing time: Wed 20 Sep 2023 12:55:37 +0000
ROA not before: Wed 20 Sep 2023 12:55:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216358
IP address blocks: 2a06:1180:3::/48 maxlen: 48
2a06:1180:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b2:a9:0a:6b:a4:12:35:5e:cf:86:e1:34:37:eb:2c:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 20 12:55:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2e7deef2f5c74c6dede64e7c0e85ec73da6f8cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:dd:9b:f0:f5:5b:ef:c8:bb:65:f3:5b:6d:62:
63:9f:df:ce:1d:6f:e2:75:55:c1:bc:7b:9e:65:c2:
7f:7c:65:f3:7c:b0:5a:1e:d2:27:4f:53:fd:e1:7b:
6b:bf:57:52:7a:c6:06:a9:81:2a:ce:c7:87:e7:22:
b1:f6:c3:3d:d1:d7:f7:e1:d2:78:60:4b:42:7a:ba:
14:3e:31:d6:4c:7c:81:97:04:d7:e5:ee:27:ee:9c:
d5:85:f7:10:4d:78:84:d4:db:29:f0:bc:b3:10:2f:
14:ec:6c:60:89:38:78:06:8c:6b:08:54:61:f2:69:
0e:b8:fe:67:1d:05:1f:1f:95:b4:fd:e5:b7:8f:38:
91:e6:47:1d:0d:79:87:8a:f0:48:80:8e:63:49:09:
63:3b:88:6f:23:7f:66:23:0d:e8:17:4a:ea:ad:09:
7f:28:47:a3:ca:b5:20:11:b3:45:90:b3:73:af:c8:
21:16:d4:bd:6b:2d:c0:be:99:aa:32:6e:95:3a:89:
68:c6:7a:5d:20:43:e0:40:18:a2:c7:fa:74:48:e6:
8b:3e:f7:a9:ed:9e:7f:fc:73:42:9b:d1:9d:77:ac:
17:58:2d:73:da:11:47:0e:3a:ea:ae:8e:3a:36:8b:
c4:38:e7:cd:64:f6:9f:d7:cd:94:a5:15:44:46:7f:
41:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E7:DE:EF:2F:5C:74:C6:DE:DE:64:E7:C0:E8:5E:C7:3D:A6:F8:CD
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4ufe7y9cdMbe3mTnwOhexz2m-M0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1180:1::/48
2a06:1180:3::/48
Signature Algorithm: sha256WithRSAEncryption
89:5d:9e:c2:76:9b:bc:ae:76:69:a3:3d:d9:4a:84:9d:49:0d:
f9:3b:83:7a:78:49:04:1b:3b:2b:39:d1:fa:74:24:0b:80:a3:
b1:02:0d:74:3c:34:4d:59:bb:e2:45:88:20:75:08:b2:4e:f6:
e1:79:fe:07:2d:b9:bb:ae:3e:bf:15:49:62:86:23:61:bf:10:
87:81:74:4a:86:04:1c:79:7f:8a:fb:cd:4a:6f:b3:15:70:80:
9a:5d:69:1c:68:49:32:ae:6c:4c:d7:2a:c4:de:d6:52:39:7e:
bb:e6:a9:72:ea:d2:11:ad:9c:ea:3b:00:d7:2b:31:9a:68:ca:
42:7b:5b:9a:c3:da:cb:c3:a4:58:81:a1:40:d7:dd:2f:eb:c6:
28:e9:56:0d:fd:57:b8:9b:68:c6:67:1e:dd:7b:4c:09:5c:f5:
e7:5e:e6:74:12:e4:6c:69:41:c7:34:cb:6f:64:c2:91:1f:54:
de:a4:98:74:c1:4f:94:78:02:79:44:e2:e5:d4:2a:69:c8:b8:
80:02:84:16:d6:7b:08:f7:88:7f:4f:5a:49:75:5f:48:c2:f4:
6f:09:f4:b8:ce:38:91:f6:fe:4a:51:36:e1:4f:1e:84:3b:bc:
be:dc:da:5a:21:0c:ca:7c:c1:2c:85:ca:ff:90:50:a0:b6:62:
34:a0:49:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:23:14 2025 by rpki-client