Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FPh2h7XFElewjrJREm7BKaf6cEk.roa
File: FPh2h7XFElewjrJREm7BKaf6cEk.roa (raw, json)
Hash identifier: jTkbCR8uE8KJG02c8Gn30GK1JSliyI/ffrBnpBa104Q=
Subject key identifier: 14:F8:76:87:B5:C5:12:57:B0:8E:B2:51:12:6E:C1:29:A7:FA:70:49
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03662764
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FPh2h7XFElewjrJREm7BKaf6cEk.roa
Signing time: Thu 02 Jun 2022 10:18:23 +0000
ROA not before: Thu 02 Jun 2022 10:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 2a0e:c780::/29 maxlen: 29
2a0f:ea00::/29 maxlen: 29
2a12:4ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57026404 (0x3662764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 2 10:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14f87687b5c51257b08eb251126ec129a7fa7049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ed:6c:78:3b:a2:e9:90:d7:6b:fd:27:81:22:
92:07:5a:8f:13:85:48:a0:d1:fa:8f:13:23:72:45:
51:eb:32:43:f3:90:77:d2:b6:3d:09:b1:0e:f9:67:
47:6e:24:e3:4b:ea:ba:2f:fe:98:7d:7c:60:fc:bc:
e7:8f:6f:c7:f3:39:5d:ab:82:1f:04:88:22:f4:c9:
16:15:c0:0a:de:9e:94:ea:c2:10:b5:96:04:72:d7:
d1:c4:b7:a0:75:6c:15:55:0c:0f:6c:89:83:9e:b4:
73:b5:e4:62:67:fa:10:66:39:dc:61:3e:bb:9c:42:
5a:33:d0:59:32:a3:87:67:f2:0b:16:39:09:66:de:
d0:38:fa:f4:67:9a:c4:c9:68:9d:3e:a8:dc:08:7d:
9a:30:85:52:ab:94:c6:ba:d8:b3:91:79:e3:3e:c9:
44:a9:fd:bc:67:69:48:14:1a:0a:eb:b2:c9:8a:f0:
dc:3a:32:7a:ae:44:bc:a3:a7:fc:11:b0:16:c0:4a:
76:5a:d5:3f:ef:ab:69:a5:55:59:cf:ff:1d:0c:fe:
1a:1d:4c:c8:e8:d4:d2:b5:3e:59:c6:67:70:2b:71:
de:b6:15:fa:17:0a:80:09:81:6f:db:b4:86:26:af:
ee:2f:81:1a:04:d7:a6:6f:99:37:9e:93:fa:cb:ad:
ce:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F8:76:87:B5:C5:12:57:B0:8E:B2:51:12:6E:C1:29:A7:FA:70:49
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FPh2h7XFElewjrJREm7BKaf6cEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c780::/29
2a0f:ea00::/29
2a12:4ac0::/29
Signature Algorithm: sha256WithRSAEncryption
a0:a2:b5:ed:20:80:91:1d:4d:ca:ee:91:f8:67:ba:c5:d7:4a:
b0:36:dc:52:62:1a:70:ed:1d:a4:7a:25:49:9d:f5:0c:bb:72:
ad:0b:ad:ad:21:e1:85:03:40:96:7a:c4:9d:84:dd:c5:c0:90:
37:f1:4b:27:a9:ca:5d:9c:f6:55:f4:e1:8c:a9:3b:c2:fc:4a:
d7:1f:97:a6:cc:94:3b:df:e8:e7:d2:ad:95:91:5d:e3:83:b6:
21:68:52:fa:9c:75:cd:6e:ec:3e:12:a9:b7:16:f8:a9:67:e4:
00:5d:29:15:e4:e9:f6:4f:95:42:78:f5:9d:7d:9f:1b:71:66:
3e:3e:01:22:81:af:e7:18:dd:f9:ad:94:48:85:47:ee:87:ad:
9d:80:fa:16:7e:73:0b:bd:12:a4:c7:d3:30:51:b5:db:c1:a9:
a6:63:6e:12:04:e7:4c:97:74:fb:c1:43:42:a0:9d:c1:8c:8c:
25:ca:c5:c7:3a:f1:42:06:60:95:d9:dc:96:8f:bb:fb:8b:ad:
06:24:ac:ca:c5:18:36:04:f7:45:d9:81:a1:54:89:24:45:cd:
ec:7b:b9:2a:17:64:28:86:28:9d:64:e8:d8:07:a8:dc:9f:e1:
c2:1a:87:0e:fb:0c:56:7e:a8:da:7d:01:b1:dd:03:3b:a2:d2:
0c:76:32:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:54:36 2025 by rpki-client