Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/OElYyjFJqTlGLcr6IrgRxNVw9jE.roa
File: OElYyjFJqTlGLcr6IrgRxNVw9jE.roa (raw, json)
Hash identifier: sJxezllMbgFLWoxwbvAjXQMV5+03JfSyyzBvogtMs1A=
Subject key identifier: 38:49:58:CA:31:49:A9:39:46:2D:CA:FA:22:B8:11:C4:D5:70:F6:31
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01864ADBE7CDEFA5036B8A87DC3B0794FBD7
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/OElYyjFJqTlGLcr6IrgRxNVw9jE.roa
Signing time: Mon 13 Feb 2023 12:59:31 +0000
ROA not before: Mon 13 Feb 2023 12:59:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 2a0c:7881:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:db:e7:cd:ef:a5:03:6b:8a:87:dc:3b:07:94:fb:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 13 12:59:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=384958ca3149a939462dcafa22b811c4d570f631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ee:2a:14:07:62:87:57:2d:09:03:05:75:0d:
a5:2d:9b:90:ce:15:83:dc:31:88:d6:19:68:3c:80:
6e:9a:33:00:58:9f:c8:74:96:f2:cd:9d:82:21:3a:
67:96:f2:ab:b2:d5:dc:c0:a2:30:2c:36:49:6a:78:
c1:54:e2:cf:e6:85:23:b4:d6:08:17:94:12:3c:53:
f0:d4:b6:89:10:1a:25:14:2a:f0:6d:3b:b5:88:cc:
35:98:d9:a3:7b:ab:da:13:dd:31:b3:66:99:e4:94:
19:db:86:06:84:4e:81:b2:60:76:dc:bc:0c:d7:4a:
c9:df:72:0b:96:39:0d:ad:36:61:a7:bb:df:04:19:
5b:82:c3:4c:d5:fa:c9:a1:e9:36:1c:81:dc:1f:12:
09:53:ff:79:e2:df:eb:24:69:db:5f:ae:76:e3:af:
35:a5:57:89:ad:e5:22:06:72:0d:a6:f9:51:77:8b:
9b:6b:a4:e3:62:5a:b5:f5:7b:3d:9d:e0:f5:4d:49:
da:67:de:54:f0:0f:82:e8:b1:52:dc:bb:91:ba:12:
7d:5b:ea:08:20:d1:39:8d:7d:64:1f:c5:b3:23:50:
ce:56:ae:c7:1b:ad:6a:c5:41:d1:b2:83:0d:63:8a:
a9:8f:20:32:f4:b2:60:57:d9:1f:e3:09:86:74:f4:
92:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:49:58:CA:31:49:A9:39:46:2D:CA:FA:22:B8:11:C4:D5:70:F6:31
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/OElYyjFJqTlGLcr6IrgRxNVw9jE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7881:1::/48
Signature Algorithm: sha256WithRSAEncryption
a6:37:b1:61:55:e4:fc:3e:9e:52:4b:c2:9c:62:07:43:75:c6:
cb:13:cb:5a:85:40:5d:65:60:e5:a5:ca:c5:60:36:89:98:1a:
69:64:92:55:11:e8:d5:c8:17:66:e7:5d:a0:dd:ca:1c:ca:c2:
70:ed:52:c1:02:d7:bc:da:1d:37:cb:3c:f5:17:b8:44:a7:d0:
cd:64:dc:b6:72:91:0b:59:4c:02:6a:16:a2:5d:7e:d2:71:c5:
17:90:da:a3:17:2f:cf:9f:b6:9e:fd:22:99:a0:ea:40:44:99:
c8:63:58:ee:d9:30:26:c3:db:06:8b:fa:d1:a6:12:4b:da:50:
a5:c4:b9:59:aa:bf:a0:ae:2d:b3:ad:69:8f:04:31:22:57:22:
d4:39:68:ac:aa:c7:00:52:ee:3c:33:53:2a:b5:64:36:f8:74:
39:03:7d:67:1c:29:09:2d:0e:c3:fb:7d:9d:9b:e1:fa:44:2c:
b0:2f:67:b8:4a:67:30:33:06:10:01:f8:b0:69:c7:44:75:c8:
23:e9:02:1e:ee:f9:2e:cc:08:6a:28:9b:f5:4a:7e:a1:7c:eb:
7a:6d:31:9d:89:44:94:ba:82:71:d6:4c:78:63:c5:06:63:a1:
28:96:11:ad:89:d3:89:07:1d:75:a5:aa:df:1c:45:5a:a4:fe:
58:a0:a7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:20:06 2025 by rpki-client