Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Zi3856gVwtfpJdIzEY3hKq-aOS4.roa
File: Zi3856gVwtfpJdIzEY3hKq-aOS4.roa (raw, json)
Hash identifier: KrMSUsFI3sXZBhHG/NrUf2wMKkpkl1NA6qG2NgexQ0w=
Subject key identifier: 66:2D:FC:E7:A8:15:C2:D7:E9:25:D2:33:11:8D:E1:2A:AF:9A:39:2E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01865E461962F8B46A34048D8C750D631301
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Zi3856gVwtfpJdIzEY3hKq-aOS4.roa
Signing time: Fri 17 Feb 2023 07:28:17 +0000
ROA not before: Fri 17 Feb 2023 07:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 2a12:d6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5e:46:19:62:f8:b4:6a:34:04:8d:8c:75:0d:63:13:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 17 07:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=662dfce7a815c2d7e925d233118de12aaf9a392e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1b:26:ac:37:d0:ab:f8:e7:da:e3:a4:23:73:
97:49:56:c5:2b:71:08:89:ce:63:19:5c:2d:1f:5c:
91:3e:bb:f5:50:b7:2d:5d:4a:35:65:00:c3:e1:20:
48:fc:db:0d:d5:90:87:91:d4:98:88:7c:76:0f:b5:
9a:2b:73:14:49:8e:66:7f:cb:25:83:fd:72:ef:3e:
d9:a7:cc:02:e5:d7:0f:59:ba:99:c1:7b:d6:e7:db:
17:05:2e:af:83:4b:4b:69:1a:18:99:e6:78:b3:97:
fb:79:d6:3b:4f:f9:39:c9:fa:3e:fa:14:d9:e6:c6:
d1:eb:cc:ca:39:a7:4e:f6:65:0f:21:24:6c:09:2b:
46:c9:99:5c:16:7b:63:2e:3c:6f:4e:cd:2c:86:1a:
3e:82:40:4b:f8:51:c7:7b:6b:37:0b:bf:4f:d7:16:
08:5c:63:a5:22:e1:11:a3:f8:30:6d:23:8d:41:b5:
56:01:64:b6:8b:b5:de:f3:98:ac:ff:89:85:b0:91:
40:46:c9:90:df:de:e5:47:d5:90:22:29:ab:95:60:
f4:bf:ea:fc:a3:ee:9a:ec:83:2d:d9:a8:38:02:fc:
c6:84:99:92:2e:64:24:ba:00:0a:83:d3:e5:bd:3c:
be:53:9e:77:cb:7b:89:5e:f9:6b:d8:59:52:a7:c9:
bc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2D:FC:E7:A8:15:C2:D7:E9:25:D2:33:11:8D:E1:2A:AF:9A:39:2E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Zi3856gVwtfpJdIzEY3hKq-aOS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
07:11:40:74:5d:93:92:3b:1d:0e:c5:34:f9:a2:cd:1c:03:f6:
7a:19:fb:7a:fd:bf:61:05:12:a5:16:c2:86:9f:3e:ba:15:d8:
19:0e:25:43:b0:c0:a6:b7:42:a9:a3:38:67:2e:ae:d8:c5:c9:
b4:d2:b7:59:99:40:3d:c5:3c:4b:7d:3c:97:dd:58:42:a8:83:
7b:64:3c:87:e3:4c:ec:b5:33:06:9d:b7:e7:42:82:18:11:58:
51:a6:45:5a:a7:2d:e7:40:a8:71:7f:a1:b1:da:ee:7f:ae:ae:
b2:c4:29:43:7c:b3:b0:5e:48:3d:5a:ac:92:32:e0:81:9f:e1:
63:bd:86:0e:4f:a4:e6:83:cf:ea:d6:bd:89:39:5b:98:78:f3:
61:f0:5c:ee:cf:f6:49:95:b2:6a:f7:ed:89:30:17:a4:93:55:
8d:56:90:fc:2d:ae:b9:3d:49:ae:60:ad:25:2d:c0:8a:b2:ce:
85:c2:b3:a2:9d:79:b0:6d:65:71:19:07:74:93:45:11:9c:90:
ab:2e:ce:99:99:44:ae:91:fe:b5:de:8a:ab:e6:ee:de:23:76:
6d:9c:c7:00:9a:3b:be:16:ec:84:45:b4:29:05:93:2f:1f:4b:
40:a7:d0:92:00:03:92:dc:1a:ed:8d:c4:12:0d:74:f0:1b:cc:
5b:d9:1c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:00:18 2025 by rpki-client