Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ojs8YiwZ-3YGLmS9dmqin3CSPi8.roa
File: Ojs8YiwZ-3YGLmS9dmqin3CSPi8.roa (raw, json)
Hash identifier: C9+lT7YbTBVBwE1ird/iAL6DamVBOUyRvRLMbNoXJrs=
Subject key identifier: 3A:3B:3C:62:2C:19:FB:76:06:2E:64:BD:76:6A:A2:9F:70:92:3E:2F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0189739849254048C79383DDFC47697DB12F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ojs8YiwZ-3YGLmS9dmqin3CSPi8.roa
Signing time: Thu 20 Jul 2023 13:58:27 +0000
ROA not before: Thu 20 Jul 2023 13:58:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:d700::/29 maxlen: 29
2a13:2d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:73:98:49:25:40:48:c7:93:83:dd:fc:47:69:7d:b1:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 20 13:58:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a3b3c622c19fb76062e64bd766aa29f70923e2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ed:fe:44:49:5d:1c:52:b1:f7:e5:5d:53:67:
76:c7:c7:ab:5c:b5:d4:e2:d4:a3:3c:f0:85:7c:5a:
b0:f2:35:e3:71:12:78:67:dc:78:96:ec:d9:f5:7d:
7b:fc:ec:23:09:88:ad:88:36:8e:9f:8a:de:51:ed:
00:1a:90:7c:6e:6f:a5:d0:c9:a3:d3:ae:49:79:f0:
f5:3c:ba:54:e3:a0:fb:fa:47:cb:8b:36:9b:8d:02:
5a:a5:4c:c6:5d:a2:19:69:f7:fb:86:8d:77:35:50:
18:e9:f2:b5:03:4b:c1:b5:b6:91:e7:76:b8:fb:97:
21:78:c3:b9:21:67:a0:e7:55:50:df:dc:91:04:9c:
67:a9:52:b7:4c:38:5b:e8:29:47:89:4b:41:a7:2c:
ff:da:17:4b:47:1e:6e:22:a4:33:d4:15:91:35:f6:
f9:64:38:96:29:10:ef:08:55:6d:1f:a6:07:4a:3a:
2d:e1:46:eb:0c:13:f1:3a:9c:94:e3:e2:85:42:fd:
d1:0a:18:3a:99:1f:b2:4d:07:41:a1:67:77:90:07:
49:28:bb:01:22:af:ce:da:9c:4c:bf:d5:3f:37:4a:
84:3d:d1:d9:f7:df:a0:96:09:ad:10:38:7a:77:57:
88:55:13:c0:d2:20:31:41:a7:17:4c:08:29:99:f7:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:3B:3C:62:2C:19:FB:76:06:2E:64:BD:76:6A:A2:9F:70:92:3E:2F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Ojs8YiwZ-3YGLmS9dmqin3CSPi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2d40::/29
2a13:d700::/29
Signature Algorithm: sha256WithRSAEncryption
68:98:cc:1e:12:d0:b8:99:d2:19:af:d6:fb:09:aa:a7:52:04:
06:30:e2:b8:c6:30:cc:56:0f:fd:ac:a9:86:bb:c3:03:fc:ed:
f5:df:8b:9e:18:a8:59:46:2f:76:03:1d:40:12:06:92:8a:9a:
eb:b2:d9:19:20:f7:e6:b2:e8:ad:7d:e7:30:36:af:e7:3a:84:
53:da:d8:10:96:29:19:3b:86:41:37:2b:e3:03:e4:b5:c0:5b:
54:ca:99:4e:45:5e:50:29:7e:ee:76:7f:13:43:73:a7:72:0e:
3b:e3:a6:3a:89:ec:1f:db:83:65:5a:c6:28:c9:8b:1f:95:77:
62:2c:fa:81:c3:df:53:f1:1a:de:e5:d0:74:50:3d:bc:65:04:
fb:9e:a1:ce:f5:1f:73:b2:cb:89:0b:8e:97:50:2e:50:33:4b:
d2:a1:77:50:be:a0:6a:89:fe:cf:1a:c6:9c:d0:19:4f:6e:a6:
d8:02:74:c1:ac:07:a6:5c:17:dc:a9:6b:ea:2f:43:12:58:18:
52:da:c3:d6:e3:47:b3:44:57:a2:eb:10:cd:ed:cf:1e:9d:aa:
a4:7b:4f:6c:b5:76:0e:6c:5f:6f:8d:00:e5:84:b0:cf:e5:84:
cb:56:9a:fe:ce:0a:d1:e8:f2:d1:53:03:f6:e7:b0:24:ac:75:
64:e7:c4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:08 2025 by rpki-client