Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/a70t2WM7jdqq0dQSEzTkc_2BB9Q.roa
File: a70t2WM7jdqq0dQSEzTkc_2BB9Q.roa (raw, json)
Hash identifier: meY/rEgTUKFvWhwTrn7bR9mFbYSLtYu1dPlCH9A0P8Q=
Subject key identifier: 6B:BD:2D:D9:63:3B:8D:DA:AA:D1:D4:12:13:34:E4:73:FD:81:07:D4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01846B916E453102BED3AD4B6DE8BFD3D21C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/a70t2WM7jdqq0dQSEzTkc_2BB9Q.roa
Signing time: Sat 12 Nov 2022 11:20:03 +0000
ROA not before: Sat 12 Nov 2022 11:20:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50340
IP address blocks: 2a0f:2e80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:6b:91:6e:45:31:02:be:d3:ad:4b:6d:e8:bf:d3:d2:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 12 11:20:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bbd2dd9633b8ddaaad1d4121334e473fd8107d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e9:b5:60:95:ff:b3:8f:fb:d9:bf:0e:1b:ef:
f9:81:36:a7:b2:aa:ed:4c:2f:f4:15:7f:95:f6:2c:
a6:01:18:fe:0c:96:60:b0:50:8d:f6:31:13:5e:8e:
63:c1:d4:79:bb:da:94:83:8e:54:e3:29:0d:0a:2b:
fd:83:33:33:21:32:e6:45:2d:63:28:60:6b:53:6d:
7d:7a:cc:fa:db:43:11:92:24:92:cb:93:e2:9a:5d:
52:94:8d:25:fb:b8:d7:7f:5a:74:ee:2f:bc:b6:f0:
2c:93:18:ac:63:c7:3e:e9:8e:fd:dc:b4:b2:89:3b:
cc:2e:76:2c:06:c7:34:51:ba:49:19:56:02:0b:26:
3f:51:8e:63:12:1c:97:97:34:db:6a:a9:5e:57:9e:
30:9a:e5:4a:5c:1f:a0:5f:c6:e7:da:06:05:8a:ef:
8d:0b:72:1d:97:59:15:f2:05:24:85:3a:1f:af:b3:
27:93:9f:69:db:bb:eb:38:38:4f:a5:fc:ec:f6:2d:
a8:06:2c:a2:f6:72:cb:d8:b1:ec:78:1c:67:b6:22:
d1:f3:a4:cd:9e:a0:e8:59:7a:81:47:e0:a1:d3:cb:
29:f0:ee:d5:0f:34:bb:8b:09:18:a4:5f:e1:07:30:
6d:f2:9c:4d:2c:32:c0:05:d8:f6:72:24:42:fb:73:
2a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:BD:2D:D9:63:3B:8D:DA:AA:D1:D4:12:13:34:E4:73:FD:81:07:D4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/a70t2WM7jdqq0dQSEzTkc_2BB9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:2e80::/29
Signature Algorithm: sha256WithRSAEncryption
54:dc:af:bf:3c:fb:70:c2:a1:6f:f5:fd:32:18:93:d6:a3:2f:
9b:a4:99:48:b6:57:07:25:5e:f7:74:cd:de:9f:ba:d6:4e:a6:
04:cf:b6:85:42:2a:1a:e0:85:a5:a0:ab:b3:6d:02:97:88:29:
a8:50:b0:fa:34:e6:34:63:6d:75:60:57:34:15:dc:ae:0e:11:
ea:24:74:e6:00:e1:11:16:56:cb:d5:d5:31:44:1c:3d:df:0c:
82:0f:23:7f:0f:27:21:1a:e7:7b:e8:bd:44:b0:a3:6f:c1:76:
28:e1:7c:2d:9e:ba:b2:e0:19:68:d2:ba:79:98:17:9f:17:22:
21:d3:4d:4e:90:ce:a6:64:08:76:d0:e4:ca:c9:11:fd:95:e2:
1e:16:d3:85:37:1b:0f:f0:eb:49:53:6f:66:d0:2b:e2:6e:d6:
9d:3d:03:ca:18:92:68:25:53:78:2a:1e:28:3d:80:b5:d5:50:
ce:f1:0c:ca:16:24:9c:c6:6b:b8:71:df:d7:af:cf:f3:34:74:
89:81:8e:63:9a:de:4a:1b:4d:ff:ab:d1:60:18:86:21:80:7e:
44:b5:40:68:4f:cf:4b:9a:23:53:cc:ae:84:69:49:df:a9:ce:
38:8e:6f:61:c6:52:e0:ff:8c:39:65:31:c5:a2:d8:de:f6:c8:
10:3b:2f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:58:09 2025 by rpki-client