Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HwA8cZA0Ee-uBWZBep_ttpd6_5s.roa
File: HwA8cZA0Ee-uBWZBep_ttpd6_5s.roa (raw, json)
Hash identifier: nydMxq7pLTWTeFYCyEVgkG+PYYSH2zYRAPbROyhlbUI=
Subject key identifier: 1F:00:3C:71:90:34:11:EF:AE:05:66:41:7A:9F:ED:B6:97:7A:FF:9B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018949ED7C3371F17B9D87A63B3134F42BDB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HwA8cZA0Ee-uBWZBep_ttpd6_5s.roa
Signing time: Wed 12 Jul 2023 11:47:27 +0000
ROA not before: Wed 12 Jul 2023 11:47:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:d700::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:ed:7c:33:71:f1:7b:9d:87:a6:3b:31:34:f4:2b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 12 11:47:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f003c71903411efae0566417a9fedb6977aff9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:18:48:68:1a:ad:f4:23:d5:35:8b:1c:3c:98:
fa:3a:5f:bb:f0:4e:e4:7d:78:b3:b0:75:d9:de:b5:
3d:07:35:ea:12:52:64:b9:11:c3:c0:ba:b0:e0:c6:
a8:9f:b6:d9:89:69:e9:b3:23:8a:ca:d2:e0:0f:3f:
59:60:43:c4:0b:64:3f:80:d6:70:9a:1f:75:e9:18:
33:72:4c:da:35:b7:99:a3:c5:75:6a:f8:bc:49:a3:
2c:1a:57:33:fa:cf:60:bc:31:7d:af:54:cd:a6:c2:
9b:c7:a6:bd:73:78:ef:80:fd:85:93:73:11:05:ce:
64:51:fa:40:50:66:98:d3:4e:f4:2f:b9:0a:92:e7:
7a:da:f2:99:55:4d:fe:e2:38:e7:92:4f:66:c8:7d:
d4:cd:5d:06:5c:99:08:ba:c1:19:71:84:74:1b:d3:
bf:2c:bb:61:b3:cd:b3:0f:5d:ae:d2:58:e7:e8:23:
48:7a:aa:25:c9:c9:7c:e8:16:b9:8f:6d:2f:b8:41:
05:65:ba:72:a0:0e:9f:fe:99:10:b3:39:03:8c:8c:
63:1d:0c:28:0a:4d:34:0f:83:6d:66:7b:5c:d4:b8:
46:dc:d5:1e:4a:41:1f:0f:d2:ea:e9:cf:38:38:f9:
5f:7c:e5:fc:de:c7:95:90:c1:38:0b:b1:3a:ee:9f:
8b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:00:3C:71:90:34:11:EF:AE:05:66:41:7A:9F:ED:B6:97:7A:FF:9B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HwA8cZA0Ee-uBWZBep_ttpd6_5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d700::/29
Signature Algorithm: sha256WithRSAEncryption
39:80:5f:e1:57:14:2f:b7:fc:cc:80:66:04:f8:41:2b:0b:3d:
c3:d5:1a:2d:46:07:20:c8:29:e3:89:d4:9b:a8:08:c1:23:e9:
60:0a:9c:5b:47:3b:2f:31:78:72:88:64:b8:29:4b:0c:67:a1:
75:6e:99:e8:2a:b6:1a:e7:2d:e5:1e:3a:23:a7:25:99:e8:2a:
34:1f:64:29:24:8f:17:ab:ea:2e:4c:88:0c:a7:c1:64:3f:f3:
46:aa:b6:fb:5e:e5:76:7d:81:62:aa:31:fa:a2:c6:75:81:ba:
21:66:ef:e2:16:8a:eb:33:7c:27:3b:f3:74:d5:b5:fb:41:a5:
7d:1c:44:ae:c1:09:a0:82:d9:0d:7b:9f:2d:92:67:2c:8d:b9:
a5:04:f1:47:ea:64:5e:be:f4:5f:46:48:96:ae:d7:b1:9f:51:
fb:88:46:99:76:44:92:d3:fc:c6:47:57:63:2e:bc:dc:ce:03:
1b:99:1f:0c:19:63:0e:43:dd:6b:18:6b:b1:cc:51:20:6c:b3:
2b:1a:03:f8:a0:3f:cb:cb:1c:42:b3:90:4b:de:99:26:6c:47:
bd:e3:c8:3d:cc:17:f2:3c:f1:d8:16:2d:0f:fb:fd:24:2e:8d:
58:cb:7b:c9:50:de:63:98:b2:59:36:18:70:4e:42:d6:24:09:
17:c6:c5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:26 2025 by rpki-client