Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/DgMAEax994oUR7W6PaQV8tyE-Jw.roa
File: DgMAEax994oUR7W6PaQV8tyE-Jw.roa (raw, json)
Hash identifier: xvD4x6UX+WO+q2BpAr7RHIl1CwyByqt+fy9uTe/TPHU=
Subject key identifier: 0E:03:00:11:AC:7D:F7:8A:14:47:B5:BA:3D:A4:15:F2:DC:84:F8:9C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01859A986F2C46BC3C857261FD04F7CFC8ED
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/DgMAEax994oUR7W6PaQV8tyE-Jw.roa
Signing time: Tue 10 Jan 2023 07:32:39 +0000
ROA not before: Tue 10 Jan 2023 07:32:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400304
IP address blocks: 2a0f:e1c6::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9a:98:6f:2c:46:bc:3c:85:72:61:fd:04:f7:cf:c8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 10 07:32:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e030011ac7df78a1447b5ba3da415f2dc84f89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:30:dd:df:b6:c5:05:c9:f6:8e:dc:bb:75:7f:
33:c9:fb:1b:55:c9:1d:d9:ab:aa:ed:10:0d:c5:ad:
08:0d:fd:4b:c8:54:7f:4b:98:b5:6d:a8:ea:e3:40:
9c:48:96:0e:9b:b8:d7:aa:19:84:6b:c2:96:89:d9:
65:86:0f:b3:5b:0a:3e:42:76:3d:98:b8:46:97:db:
2b:6f:06:c7:4a:f2:55:21:d7:b5:89:aa:67:88:40:
78:28:0c:9d:bb:57:4a:8c:10:5e:98:97:1a:e2:22:
c7:65:bc:db:87:90:e2:1a:8c:fe:f5:5c:31:df:46:
ea:82:54:14:1f:93:f0:8e:79:55:bd:62:da:85:b0:
cf:65:3b:9f:91:a0:13:61:88:c2:dd:2a:1c:38:dd:
48:ef:b5:c2:ef:ae:a3:3b:d5:1c:bb:75:f0:2b:b3:
e2:54:5c:12:35:a6:59:16:eb:3e:b4:1d:41:9f:e4:
e3:4e:4e:87:fa:06:dd:59:31:f0:a7:cd:58:ff:9a:
8f:58:bf:c5:93:82:1e:45:0c:a7:c4:68:8f:f4:0c:
b6:9a:2c:aa:fe:2e:48:98:54:b6:96:9a:7a:cb:67:
52:74:67:5c:0f:46:fc:85:ee:24:0c:a4:59:b6:30:
18:e1:2f:83:b2:bb:1c:14:ad:fa:3d:0e:f8:b0:92:
79:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:03:00:11:AC:7D:F7:8A:14:47:B5:BA:3D:A4:15:F2:DC:84:F8:9C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/DgMAEax994oUR7W6PaQV8tyE-Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e1c6::/32
Signature Algorithm: sha256WithRSAEncryption
49:3c:dd:ab:97:37:28:4a:65:68:ec:9a:f5:9e:30:32:ea:9c:
91:97:5a:6f:80:04:41:99:1e:17:b9:b0:7e:13:c2:74:71:dc:
8b:f1:d9:c0:f9:7e:32:5b:7d:fa:d6:ae:20:c8:29:7e:82:3f:
73:ad:34:e9:6c:33:9e:4e:1d:63:f4:d2:16:3f:8e:e7:7b:0c:
ac:fa:5c:c1:84:4a:6b:87:be:ac:51:e4:a8:ec:e6:22:ab:00:
ed:ba:0c:22:f9:1c:a7:63:82:bc:a5:6d:cc:b7:68:eb:8e:82:
8d:14:3e:e9:23:0d:c1:fd:fd:bc:73:bb:ff:c9:e9:83:c7:d6:
18:32:25:c3:6d:ce:bd:18:7b:d0:85:3f:38:4b:37:15:30:b4:
1e:e6:70:a1:68:e6:c8:a8:89:57:15:6f:97:14:fc:84:21:b2:
40:b7:30:20:d6:2e:f7:6d:3c:a1:d3:3a:e5:e7:7f:69:65:d3:
1b:9a:b8:31:b9:15:a5:00:66:d5:fc:93:71:db:6c:9d:b2:2e:
b7:49:67:73:2e:9a:e1:7c:7d:b3:d4:87:46:4f:71:f9:38:aa:
02:3f:a0:54:31:78:37:48:a1:4f:19:2d:ac:84:4f:aa:b4:83:
c6:2a:fa:4f:14:ed:17:00:9d:22:d3:e6:86:ce:f2:4d:21:38:
fc:85:3a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:07:01 2025 by rpki-client