Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vv0Hta0dWvJy1cikZBOfd8dO-m4.roa
File: Vv0Hta0dWvJy1cikZBOfd8dO-m4.roa (raw, json)
Hash identifier: NxDTmPbY7BJxM4jAu2nmcfavKv7GO7YZy3gMcGZgzm8=
Subject key identifier: 56:FD:07:B5:AD:1D:5A:F2:72:D5:C8:A4:64:13:9F:77:C7:4E:FA:6E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01876A8F81262A69B22381477831A917501A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vv0Hta0dWvJy1cikZBOfd8dO-m4.roa
Signing time: Mon 10 Apr 2023 09:46:42 +0000
ROA not before: Mon 10 Apr 2023 09:46:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57870
IP address blocks: 2a0f:8300::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:8f:81:26:2a:69:b2:23:81:47:78:31:a9:17:50:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 10 09:46:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56fd07b5ad1d5af272d5c8a464139f77c74efa6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e1:45:d7:46:07:98:b8:7d:7c:91:4b:3e:b2:
fa:5e:1b:e4:9b:a3:30:5a:af:1c:14:71:7f:39:bb:
41:5e:71:49:a6:c9:b5:9d:65:78:37:7e:c6:5f:1b:
66:ae:96:2a:34:c2:e1:56:d4:78:46:88:06:00:ea:
b6:b7:e8:0c:0a:e3:3a:d0:74:92:e5:e2:2d:d6:6a:
59:b3:a1:a2:86:32:3b:e0:93:fa:c5:d7:6e:ac:d3:
e1:93:b6:b8:2c:b7:09:68:e5:63:bc:44:9f:e8:37:
3b:d3:6c:3b:4a:55:7a:d1:48:22:8f:c0:83:53:f0:
38:4b:5a:2b:09:38:34:c5:2f:04:3c:23:4e:0b:ed:
59:df:c4:b4:24:c4:ce:c9:b5:f9:29:cf:c2:51:d8:
ac:aa:d6:9e:cd:ce:bf:41:c9:c6:ba:29:3b:51:a0:
dc:98:c6:21:13:e0:4d:7d:70:4f:c4:01:71:8c:1b:
7e:fa:4d:d6:88:13:90:e0:df:4f:c6:af:9f:a7:82:
53:d2:2b:2f:fb:8f:c9:63:97:a9:b3:5d:02:87:ee:
ad:9d:49:dd:ad:8d:05:f1:51:f7:f7:cc:a3:e8:9f:
b6:d2:a3:71:da:0a:e8:d0:1c:8b:7c:e8:74:4a:36:
44:11:af:dc:00:5e:8b:17:7f:52:51:0e:3a:50:47:
5d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:FD:07:B5:AD:1D:5A:F2:72:D5:C8:A4:64:13:9F:77:C7:4E:FA:6E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vv0Hta0dWvJy1cikZBOfd8dO-m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:8300::/29
Signature Algorithm: sha256WithRSAEncryption
c7:9c:2a:c8:dc:6f:d6:85:0a:77:9f:c4:96:a4:20:4e:0f:ef:
d1:98:c6:06:70:70:b5:c6:65:66:ac:0c:8d:90:a5:9d:c0:76:
d8:cd:e8:5f:93:f5:a2:ad:1c:b9:78:f0:54:13:2c:2f:51:ab:
65:03:71:30:ce:9c:9b:05:70:00:53:c9:2a:25:b1:3b:43:5d:
c6:a2:3f:a3:15:0f:1c:00:00:6d:0b:04:69:11:d1:de:51:b6:
c4:1f:76:4a:ec:b7:79:36:0d:07:f8:dc:81:d7:bb:04:02:4c:
40:25:45:bd:f6:e9:78:16:38:6c:eb:39:67:9f:e2:56:42:9d:
c0:0c:98:4c:f9:e7:d9:88:f7:27:17:1f:58:d5:6a:e0:05:01:
7a:56:40:ab:c5:31:3a:a1:7f:4a:a4:99:e7:a0:e8:dd:60:a6:
87:22:54:7b:1e:65:c8:4c:3e:78:b4:c0:32:5e:57:1d:23:2a:
11:80:c7:13:2f:af:54:e6:73:12:6c:be:10:ac:2d:93:18:f5:
12:e9:fa:2f:27:5c:20:1f:d0:1a:e1:01:49:86:6d:73:99:49:
8a:20:bd:64:34:09:b0:cb:2a:22:53:24:50:4a:78:7f:91:5a:
ba:c4:91:77:b5:ae:ee:1f:41:76:d8:9b:b1:fb:73:b8:8c:fa:
51:6a:54:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:12:00 2025 by rpki-client