Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7y8F5eruumDmkqmwDOyHmXvG8pM.roa
File: 7y8F5eruumDmkqmwDOyHmXvG8pM.roa (raw, json)
Hash identifier: Ee94i9bqEUlk021eRopoLNdZN4l3cchdP4kPBIxC+Ys=
Subject key identifier: EF:2F:05:E5:EA:EE:BA:60:E6:92:A9:B0:0C:EC:87:99:7B:C6:F2:93
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0189B18C1E4C79FC403E8FE8392839EA3D9B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7y8F5eruumDmkqmwDOyHmXvG8pM.roa
Signing time: Tue 01 Aug 2023 14:41:37 +0000
ROA not before: Tue 01 Aug 2023 14:41:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0f:7d00:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:8c:1e:4c:79:fc:40:3e:8f:e8:39:28:39:ea:3d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 1 14:41:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef2f05e5eaeeba60e692a9b00cec87997bc6f293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d8:93:e3:20:0b:11:2d:d1:2a:e8:7b:2e:84:
32:1f:f2:c9:e6:ef:03:cd:d3:02:6d:24:c9:06:b1:
6d:9e:e7:28:28:72:af:64:83:08:ef:06:f6:63:13:
e2:b8:c4:58:95:fd:5f:de:58:68:29:f8:bf:f3:50:
11:76:74:d1:0d:0d:4b:0b:74:a7:a3:d6:c3:34:2a:
78:e0:e8:fe:70:2b:0d:70:99:c8:eb:c0:7a:d9:e9:
5b:e4:78:e5:24:ee:6e:f8:16:df:83:a8:48:81:bd:
cb:c2:ad:0b:6d:4a:4d:96:e4:f1:9a:91:29:e9:c6:
e6:16:51:43:08:f4:e2:84:4d:17:83:13:80:f5:07:
59:44:cf:aa:7e:1e:75:fe:a0:ef:d0:67:32:6f:50:
ef:03:ce:36:0c:fb:42:71:ee:1f:9e:7b:e2:53:f5:
09:c9:5e:22:89:f2:9c:df:50:82:6d:ec:29:97:ea:
f0:07:ae:91:84:88:6e:e6:80:35:86:a5:6b:7c:79:
c6:c2:70:6c:14:c2:f5:dc:ea:22:08:53:f8:1b:31:
04:fb:97:8d:72:90:5e:0f:53:d7:ad:3d:c4:b8:ae:
1e:2e:36:2c:41:ac:b8:52:b9:3d:f2:9d:ef:f3:fc:
ee:39:49:1c:bf:a3:8c:ad:0b:b2:6d:cc:8d:97:0b:
33:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2F:05:E5:EA:EE:BA:60:E6:92:A9:B0:0C:EC:87:99:7B:C6:F2:93
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7y8F5eruumDmkqmwDOyHmXvG8pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7d00:3::/48
Signature Algorithm: sha256WithRSAEncryption
4b:44:0b:3c:bd:7a:39:c7:c8:d3:30:03:06:e6:cb:f1:c8:17:
a5:3a:a5:3b:28:95:f6:57:ee:78:52:13:5b:e0:77:6c:bb:00:
af:52:ce:c8:13:3f:40:71:4d:62:6a:72:8c:45:14:9b:81:a5:
fe:4c:0c:ef:b7:85:c2:58:3b:75:59:ca:2d:a8:0d:34:4b:76:
cb:f1:4f:16:99:33:ee:4c:68:e5:88:42:36:7a:58:51:d1:a7:
9c:ea:45:7f:ae:98:6c:cc:61:94:2e:2e:71:d7:06:32:c7:c4:
f4:28:94:32:f1:59:b7:81:38:79:85:d4:cb:92:a3:c1:d1:4a:
e2:33:43:62:d8:d3:ae:76:16:07:61:aa:b3:59:de:4f:4e:be:
4b:66:bd:00:d1:cd:18:ef:ff:31:20:7b:d0:ea:2a:7a:8e:2e:
00:2d:ec:f9:06:48:07:95:49:4f:3e:ce:39:8e:2b:ef:71:a9:
38:b3:8d:3f:ba:74:44:80:c3:d3:63:4a:ec:00:ed:16:e3:e9:
28:e1:73:73:4d:eb:a4:23:64:ae:9a:3f:97:8d:45:40:80:a7:
42:a3:4f:eb:b7:ee:d8:8e:b1:cd:7f:25:f5:02:0c:7a:60:d4:
c6:ec:46:41:c2:f1:53:79:c0:46:67:e7:ca:63:70:57:40:2a:
b6:d4:f5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:14:56 2025 by rpki-client