Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/e9WusQI1lXVgT0NAXhAZG4dx4b0.roa
File: e9WusQI1lXVgT0NAXhAZG4dx4b0.roa (raw, json)
Hash identifier: xLk26a82RhKX8VuvLYe8xV3yEmKDqIMXZZkNSx0ebo8=
Subject key identifier: 7B:D5:AE:B1:02:35:95:75:60:4F:43:40:5E:10:19:1B:87:71:E1:BD
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01865556201821CAC2805085126E2F05AE89
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/e9WusQI1lXVgT0NAXhAZG4dx4b0.roa
Signing time: Wed 15 Feb 2023 13:49:12 +0000
ROA not before: Wed 15 Feb 2023 13:49:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 2a12:d6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:56:20:18:21:ca:c2:80:50:85:12:6e:2f:05:ae:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 15 13:49:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bd5aeb102359575604f43405e10191b8771e1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:32:7f:f9:61:55:29:0a:38:44:0a:48:39:a5:
89:24:28:05:74:48:35:b7:57:bb:b6:77:74:93:54:
24:05:78:6b:41:94:19:8f:c5:66:61:1a:20:48:99:
91:29:df:6f:fc:66:22:67:27:32:f7:f6:37:f1:88:
7d:8b:78:89:1b:4f:4c:90:d1:8d:cc:d4:5d:36:04:
7e:30:a3:cb:22:9e:df:2e:cb:92:87:a2:a8:25:c4:
b5:3f:dc:e5:44:4e:c0:08:91:d8:7d:07:67:9b:7a:
64:70:49:aa:5a:4e:f9:b1:c8:68:fb:45:7a:6a:b1:
7e:41:0c:42:0d:2b:73:34:95:0e:93:6f:47:a2:eb:
23:60:55:5c:74:b2:0f:01:93:9f:ec:c7:63:45:15:
a0:2b:92:57:00:7b:08:15:a0:69:f9:82:07:c9:1f:
23:4f:bd:97:2d:6b:ae:b7:32:03:d0:9d:17:d6:b1:
28:e1:7a:3a:a7:5a:8d:5c:d4:82:c5:e9:6a:7c:a1:
31:6c:d4:3b:a1:c6:3f:db:fc:ea:5a:c1:83:8f:37:
fd:b9:3e:99:57:fb:ff:4a:9e:c9:6d:50:4c:cb:f1:
07:d7:5c:0a:98:30:19:47:1f:09:05:96:60:dd:9c:
ab:bb:3b:25:52:8c:8a:d3:c9:f4:a5:32:ca:ce:28:
bd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D5:AE:B1:02:35:95:75:60:4F:43:40:5E:10:19:1B:87:71:E1:BD
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/e9WusQI1lXVgT0NAXhAZG4dx4b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
61:83:c5:3c:93:ab:8e:c4:43:74:e3:3f:c8:c3:af:8e:0f:14:
c7:64:b1:81:2e:c4:a9:ba:b8:a5:e1:0f:82:2e:33:e9:0e:83:
7b:bb:9b:df:e1:2b:56:3e:f3:34:4d:cb:36:ac:f6:99:55:fb:
23:fa:46:b7:00:40:d7:0e:9d:9b:a9:71:1e:35:c3:a2:8d:05:
91:61:ec:93:2b:6b:7e:46:a2:1c:bf:ba:73:58:a1:f7:24:26:
cf:ea:c6:9e:3f:ee:cd:04:d1:42:29:1f:4e:58:ba:70:ce:e8:
63:0c:80:2d:ab:78:0c:fc:52:54:8c:85:88:65:a9:a9:17:d2:
ae:a4:25:76:c2:64:a0:cf:d0:a9:fc:9f:7d:79:56:d6:a8:4d:
02:60:85:34:76:bc:64:4a:7f:d8:1a:68:24:57:c4:08:21:20:
c2:96:7e:0c:b4:3a:6a:84:2d:8d:7d:a0:ef:14:94:f4:7d:46:
ec:9f:3b:e2:23:13:dc:1c:d2:ee:8b:98:24:ea:2f:b8:a3:25:
9c:7c:7c:9c:1a:77:7e:9c:ca:4d:e1:c3:7d:5c:dc:a6:07:f5:
bd:1e:72:b6:d5:65:f2:ce:0b:23:0e:a8:bd:36:7c:35:da:60:
73:76:17:2a:2e:cc:a3:88:7f:22:c4:a8:5c:90:f1:fc:53:ac:
55:f6:c7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:23 2025 by rpki-client