Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MBxnOgTVE5bPsSYLbmyFiuirtLA.roa
File: MBxnOgTVE5bPsSYLbmyFiuirtLA.roa (raw, json)
Hash identifier: lBAi0Be090xsgQjANJKLkrOh5VNhm7mms1naxYNfPaE=
Subject key identifier: 30:1C:67:3A:04:D5:13:96:CF:B1:26:0B:6E:6C:85:8A:E8:AB:B4:B0
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183860C7C893A6137EC928D3BE7D9791E30
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MBxnOgTVE5bPsSYLbmyFiuirtLA.roa
Signing time: Wed 28 Sep 2022 21:41:48 +0000
ROA not before: Wed 28 Sep 2022 21:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 2a0f:7f00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:86:0c:7c:89:3a:61:37:ec:92:8d:3b:e7:d9:79:1e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 28 21:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=301c673a04d51396cfb1260b6e6c858ae8abb4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ff:1a:57:1e:88:5e:7f:8a:3f:8b:93:2f:24:
21:d3:95:b7:01:1a:96:32:b2:78:28:fe:b2:58:e8:
88:51:89:9d:e4:fe:06:8a:45:33:89:83:d5:89:87:
f0:b8:17:16:a8:68:5b:c3:de:8d:9e:0c:5f:34:7e:
e1:e9:fd:41:87:35:e4:97:05:ee:d1:66:6a:6b:ca:
7d:27:21:6d:14:b8:00:38:60:05:29:aa:37:01:0e:
b0:ec:47:6f:f5:ee:b1:b0:24:eb:ce:e5:98:13:77:
ce:e0:fb:53:88:1f:e0:bf:73:07:30:29:e1:21:38:
cf:ac:7f:57:4e:a8:a5:27:6f:75:1a:9e:8e:2f:cd:
a1:73:83:84:fe:19:2a:91:25:96:42:c3:b0:19:6b:
2f:d9:cc:6e:3e:c5:55:a4:27:b2:9d:f3:48:25:bd:
7f:c1:4a:46:b2:c2:6e:bd:c3:a3:8a:a4:f2:89:ae:
4d:61:0b:fa:1b:77:0e:72:9d:2c:dd:6e:4c:d9:f9:
b5:e6:39:5c:e1:97:39:5b:67:2c:b9:eb:3a:39:ce:
b9:3f:fd:da:99:a6:5d:5f:68:e9:b1:e2:50:b7:1f:
53:c3:ac:50:3a:d9:21:fb:af:12:fa:cd:96:1b:07:
20:3d:59:57:6f:49:af:c4:60:04:5a:b0:2e:35:ef:
b6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1C:67:3A:04:D5:13:96:CF:B1:26:0B:6E:6C:85:8A:E8:AB:B4:B0
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MBxnOgTVE5bPsSYLbmyFiuirtLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7f00::/29
Signature Algorithm: sha256WithRSAEncryption
7e:fe:6e:c3:7e:9d:68:dd:5d:43:f0:97:df:35:74:62:6f:69:
74:ff:eb:b7:63:10:28:90:94:ef:cd:7a:c3:8e:fb:28:3f:cb:
4d:bc:39:1c:10:97:fe:89:4c:4f:d7:e0:aa:72:df:05:54:5f:
eb:1b:c5:b9:35:64:d0:5d:4d:24:59:98:69:f2:64:06:3f:a5:
2c:bd:29:41:0e:ae:bd:c1:13:00:46:b0:2d:7f:f2:02:69:cd:
d4:f9:dd:3a:f9:2b:6d:bd:1d:8d:d6:0d:ea:be:20:1c:22:e2:
b0:e4:0b:87:6d:20:9f:b1:bf:e1:53:8d:a6:00:a6:79:87:ee:
20:ee:07:da:f4:ed:85:a3:3a:c8:20:63:9c:a7:58:32:94:aa:
88:21:dc:73:cc:09:5b:4d:30:ce:d3:0b:b5:a0:9b:0a:29:62:
19:ed:53:24:06:4b:bb:7b:4c:b7:bf:1c:6d:de:9c:5e:25:5e:
fe:44:b0:b1:2b:a1:7f:0b:8e:7f:78:8c:60:c2:2c:5d:8e:23:
de:fc:d2:3e:b4:eb:d2:85:41:19:4e:24:9d:74:52:db:b8:7f:
f2:1e:62:3f:ab:d5:de:6b:0e:af:2a:3c:5b:0f:c9:5c:3b:4e:
95:40:63:43:dc:b0:6b:d7:1b:84:0e:89:c0:fb:6d:71:71:9a:
88:d7:c1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:16 2025 by rpki-client