Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/6isllCv0KIarqOBJt2Tnff6R_cw.roa
File: 6isllCv0KIarqOBJt2Tnff6R_cw.roa (raw, json)
Hash identifier: iS7dD3rOsL+CB8jcRfLmcsjCisgSunYBrMB04uWnveU=
Subject key identifier: EA:2B:25:94:2B:F4:28:86:AB:A8:E0:49:B7:64:E7:7D:FE:91:FD:CC
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0157D504
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/6isllCv0KIarqOBJt2Tnff6R_cw.roa
Signing time: Sat 01 Jan 2022 05:55:09 +0000
ROA not before: Sat 01 Jan 2022 05:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396362
IP address blocks: 2a0f:a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22533380 (0x157d504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 1 05:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea2b25942bf42886aba8e049b764e77dfe91fdcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:27:bf:84:1c:7e:14:cd:82:94:b9:ce:9c:75:
36:89:45:68:b7:6f:17:2b:7e:f5:66:07:1a:ad:cd:
3a:49:96:34:d6:60:90:8f:3b:c6:b9:d8:1d:a9:bc:
9b:3d:95:20:8d:84:b7:af:01:09:96:d7:bd:36:67:
66:0a:54:ac:c2:9f:d7:2d:c1:86:53:fa:41:74:a7:
07:bf:ae:0b:a7:4c:b2:6c:da:be:61:97:df:e2:62:
12:5b:50:79:0d:26:14:cf:0e:61:d9:31:22:42:aa:
38:22:fe:97:5b:8e:ac:a6:f8:a1:f3:d1:1d:79:02:
3f:fc:50:df:88:cd:51:76:dd:fc:dc:ec:48:9d:be:
33:ff:df:dc:9d:bb:1b:48:18:63:df:47:48:03:c6:
16:04:7a:a3:42:aa:d2:a1:55:7a:12:a4:a2:32:92:
00:a7:d4:cc:59:27:c6:e8:58:ba:63:f8:56:e8:74:
64:40:9a:4d:c2:c7:61:4b:a9:bf:ac:2e:9d:e3:d9:
f2:47:5c:a5:8a:ae:a6:1a:13:4a:a8:0c:3d:f0:60:
e1:af:45:07:81:de:e7:f7:2a:9b:51:bc:6f:ed:63:
0d:41:3b:45:35:ad:de:73:48:68:7b:f2:b5:78:fd:
19:b9:f3:18:08:87:51:a1:40:e3:18:77:e2:f3:a6:
e1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:2B:25:94:2B:F4:28:86:AB:A8:E0:49:B7:64:E7:7D:FE:91:FD:CC
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/6isllCv0KIarqOBJt2Tnff6R_cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:a00::/32
Signature Algorithm: sha256WithRSAEncryption
8d:dd:6c:c8:47:67:f5:1b:17:05:3e:a6:6b:52:f3:fa:74:4e:
5c:56:70:78:b8:32:fe:0c:aa:48:4d:66:5b:8e:76:aa:45:54:
a2:d8:56:d4:e7:9a:ed:1d:35:fd:3b:e4:03:de:71:ad:a5:81:
1c:3d:0f:51:1d:2e:69:66:1c:0f:50:a1:31:bf:79:f7:4e:22:
6a:1a:83:09:81:68:94:ef:d6:bb:44:f1:be:d6:ac:4a:d6:07:
3f:5a:56:eb:de:b5:fe:d9:5b:a3:42:6c:09:c2:0f:33:6e:7f:
19:db:49:83:00:f0:c8:83:7a:bf:18:39:99:e2:39:f8:c4:6d:
09:5e:6f:53:b6:3c:bd:cf:cc:07:34:36:16:2e:66:56:0d:42:
d1:65:11:f6:52:53:f3:d0:7d:b0:a7:ce:f1:1c:54:63:9b:ce:
8a:70:17:99:50:e2:38:b8:33:02:5d:e8:42:7e:a9:97:ff:51:
a1:c3:d9:b1:9f:e6:41:4a:d8:45:72:2f:18:a0:97:4f:4b:78:
0a:fb:68:cd:b9:43:75:c8:f0:df:20:64:22:83:88:2f:1f:8e:
5f:6c:5d:ba:92:5c:05:39:7d:c8:cb:85:5e:7a:59:75:eb:19:
5b:83:c8:ed:bb:63:4b:a7:27:46:f4:15:62:d0:c8:40:90:42:
8c:33:e5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 14:59:57 2025 by rpki-client