Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_3fxDOQIpQ783-jGaYEEHrLe3s8.roa
File: _3fxDOQIpQ783-jGaYEEHrLe3s8.roa (raw, json)
Hash identifier: +NNlVZ5O6dwLSLHwYZnB6PdcDGe1bOvO6d5CAuQ3jCY=
Subject key identifier: FF:77:F1:0C:E4:08:A5:0E:FC:DF:E8:C6:69:81:04:1E:B2:DE:DE:CF
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0186EECB9F2CAAD75D168E32CA9E15F028EB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_3fxDOQIpQ783-jGaYEEHrLe3s8.roa
Signing time: Fri 17 Mar 2023 08:59:27 +0000
ROA not before: Fri 17 Mar 2023 08:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 2a07:7880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:cb:9f:2c:aa:d7:5d:16:8e:32:ca:9e:15:f0:28:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 17 08:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff77f10ce408a50efcdfe8c66981041eb2dedecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e6:cc:55:e2:68:33:e8:7e:c5:af:9c:a9:6f:
f0:c1:4e:29:95:f6:85:b2:e1:50:ab:bc:f7:92:2d:
9b:ec:ee:c9:31:22:5c:17:63:18:0b:5e:cc:84:9b:
bf:63:db:ac:97:b0:ff:6f:6d:8d:f3:ab:f5:43:ed:
36:48:72:2e:ec:fb:d9:b8:15:52:f3:d6:87:72:82:
5b:4a:f4:d3:67:27:0c:df:04:41:3b:d4:10:3a:01:
f0:4f:31:a8:4d:d8:a4:21:5d:a1:72:be:b2:91:42:
bc:d6:b0:5e:41:b3:d0:e5:ff:28:0b:8d:cf:49:1b:
4b:ce:9c:b7:a6:81:1e:27:c7:6e:ef:59:80:65:63:
06:a3:d4:45:33:81:d5:43:b0:35:76:c3:3a:40:5d:
c4:9d:3f:59:09:1e:7c:e2:6b:f5:52:20:d5:0c:2a:
4c:25:43:63:2a:79:63:aa:cc:74:38:5c:86:6b:c0:
ea:fb:e3:79:3a:61:5c:6a:68:87:a0:f5:1b:66:59:
9f:c1:53:55:a1:ca:71:78:03:87:80:b8:ae:2f:15:
7f:7f:e3:02:73:73:e7:1f:c3:0b:99:45:02:44:7e:
0d:b8:10:11:06:b3:4e:f9:93:85:8e:26:53:b3:9b:
a4:ae:19:8f:74:23:78:7c:12:cf:c6:58:25:d3:74:
46:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:77:F1:0C:E4:08:A5:0E:FC:DF:E8:C6:69:81:04:1E:B2:DE:DE:CF
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_3fxDOQIpQ783-jGaYEEHrLe3s8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:7880::/29
Signature Algorithm: sha256WithRSAEncryption
42:f2:8e:ad:b9:f2:18:1d:fa:1d:a1:fc:7b:9d:c5:55:8b:36:
76:74:0c:a9:ef:d2:dd:6c:b2:d9:56:fa:be:01:c8:4a:8e:b9:
7e:64:12:3b:ee:91:2b:94:f4:9f:e9:51:fd:5f:c0:a0:fb:a9:
f2:1d:69:b2:e4:76:0b:bd:28:14:c4:fd:a5:1f:50:40:95:47:
62:e4:70:ca:cc:94:74:4d:f1:f5:1d:03:10:d6:ca:ec:42:26:
a8:1e:3f:36:07:61:ab:97:95:39:48:a4:87:7d:f3:74:95:66:
78:03:31:d9:4d:c9:0b:2b:7d:f4:c1:34:2f:b7:a5:98:40:b4:
50:9e:0d:cf:4d:33:c8:b3:a5:86:7a:f6:6a:5c:de:63:04:e3:
0a:3f:21:28:be:2f:04:8a:5c:e4:43:e3:56:95:1b:cc:3e:37:
21:0d:f7:38:1c:d8:03:90:23:21:39:ba:48:7d:cb:3d:55:e1:
6b:54:93:29:03:5b:34:ad:c2:98:89:c6:c4:4d:8d:a9:c5:f0:
30:ac:7b:96:a5:43:45:54:1f:72:02:46:69:5a:94:e2:6d:fc:
1a:49:fe:d6:78:75:93:3f:07:a7:85:d8:aa:77:42:73:2f:b3:
3b:9e:08:51:71:c7:9e:58:fb:79:72:a1:72:18:f4:58:c4:81:
53:d1:cb:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:29 2025 by rpki-client