Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KTKwIRSN-SLkBUyBM5aRM-KfdAc.roa
File: KTKwIRSN-SLkBUyBM5aRM-KfdAc.roa (raw, json)
Hash identifier: u74MfyQ3OClC5y/+0+YTAiMD9Ki8v7tI/jd/5GQeDMU=
Subject key identifier: 29:32:B0:21:14:8D:F9:22:E4:05:4C:81:33:96:91:33:E2:9F:74:07
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0289FB9F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KTKwIRSN-SLkBUyBM5aRM-KfdAc.roa
Signing time: Tue 29 Mar 2022 13:41:44 +0000
ROA not before: Tue 29 Mar 2022 13:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55286
IP address blocks: 2a0e:f201::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42597279 (0x289fb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 29 13:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2932b021148df922e4054c8133969133e29f7407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:15:da:48:91:db:5a:83:41:ec:97:53:84:
6f:bb:c6:86:2a:36:b1:8a:1a:bd:80:1f:79:92:28:
05:92:76:a9:6b:d1:41:02:ab:a5:71:b4:12:08:90:
6d:10:b8:8a:a9:12:de:a8:ec:8c:a1:25:08:c8:13:
d9:df:b6:62:39:a6:1d:26:11:de:16:80:20:1b:32:
c8:f3:a8:ae:64:31:7a:aa:c0:bd:35:e5:d6:d1:11:
0c:da:55:79:ee:2d:5f:0f:d9:02:d6:22:d8:9a:0f:
33:3b:79:f9:45:94:7b:b7:90:92:56:03:1c:ff:db:
da:eb:9b:d4:be:5e:7f:d1:7a:e1:8d:dd:60:a7:85:
87:b8:25:1c:66:41:d8:23:68:ec:65:42:c4:c8:f4:
7f:f4:cb:56:d7:9c:30:f7:5b:fa:38:d2:77:f8:d3:
27:d9:11:f6:ac:f3:1f:32:7f:f1:76:9a:13:f0:41:
a4:d4:9f:60:af:a8:c4:5e:11:5e:15:1c:29:ee:58:
4d:2e:87:a3:0b:f2:ee:e3:12:4e:88:1b:b4:15:dd:
0e:97:3f:f0:b4:ce:41:e6:e7:97:e4:cd:93:69:24:
9e:ad:2a:f4:02:5d:31:45:b9:0d:5d:d5:3c:09:0e:
0d:91:53:f5:bd:cb:32:51:70:7f:a6:20:8b:c5:4a:
9d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:32:B0:21:14:8D:F9:22:E4:05:4C:81:33:96:91:33:E2:9F:74:07
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KTKwIRSN-SLkBUyBM5aRM-KfdAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:f201::/32
Signature Algorithm: sha256WithRSAEncryption
1b:a7:59:af:c8:d2:9f:21:42:8f:c0:89:78:5e:81:50:e9:5d:
5b:f5:65:50:0c:fe:5f:65:30:69:5c:a4:7d:5c:6d:58:96:cc:
a0:33:49:74:b9:7d:c4:00:45:d5:9a:c9:f7:a5:b8:3e:eb:bc:
5e:3c:5f:fd:16:e5:ad:e0:41:fe:24:0e:09:ff:6f:d0:dc:a5:
f0:53:2f:59:02:63:b3:b4:9f:cc:21:82:3c:a5:f4:6a:4f:4a:
24:d3:d1:58:f1:94:51:b3:4e:ab:50:8e:27:dd:7d:fe:29:a8:
30:90:47:32:d3:be:a0:17:e3:2d:30:aa:71:4b:a2:29:36:cc:
9b:ba:c4:8c:e1:b7:05:57:b8:e3:ae:44:4d:e2:c0:47:e3:a1:
eb:15:99:a1:b2:e5:91:e3:f6:cc:9f:75:d9:e1:85:86:3a:ee:
4c:6a:42:23:6f:66:3c:ca:d3:67:23:72:58:cd:a7:f5:43:a9:
dc:fb:46:54:6f:25:c5:69:a9:9b:de:8b:68:d1:b4:26:44:29:
82:97:bf:28:cf:10:6c:46:09:7d:9c:75:2a:07:f7:90:3a:1b:
6a:2c:13:e8:03:f8:59:e6:f8:09:e1:dc:bc:73:42:a9:5c:6a:
7b:c6:ab:45:39:64:a4:17:43:19:e7:00:49:48:94:16:c4:16:
fb:3d:35:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:03 2025 by rpki-client