Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gTbOMmSVt9QuI6jRfAZrEUUqzR8.roa
File: gTbOMmSVt9QuI6jRfAZrEUUqzR8.roa (raw, json)
Hash identifier: aydKnhSpYFBQV0o0eLw71tA7Xit+d+DgmEmsqGT7+bI=
Subject key identifier: 81:36:CE:32:64:95:B7:D4:2E:23:A8:D1:7C:06:6B:11:45:2A:CD:1F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01BA9229
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gTbOMmSVt9QuI6jRfAZrEUUqzR8.roa
Signing time: Thu 03 Feb 2022 21:01:34 +0000
ROA not before: Thu 03 Feb 2022 21:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209968
IP address blocks: 2a0f:e1c6::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29004329 (0x1ba9229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 3 21:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8136ce326495b7d42e23a8d17c066b11452acd1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:78:b9:92:b3:4e:f7:74:82:45:88:33:f2:a0:
33:cf:65:2e:37:ca:c5:f8:5d:c5:33:63:ae:05:5e:
51:38:a7:a5:5d:d1:77:74:aa:3b:33:5c:40:71:35:
dd:ab:b4:c2:87:72:88:e0:1e:db:60:c9:2a:a5:a9:
98:23:36:b4:43:77:82:4b:21:f8:f8:02:02:a8:c3:
1a:ab:b1:96:b3:22:df:e5:7b:9f:32:0e:56:09:94:
b8:45:2a:af:d1:73:ac:7d:05:66:08:c8:c0:3e:c6:
aa:33:ff:21:25:23:07:f2:2a:a2:15:4b:b3:5b:38:
a4:76:29:93:05:48:92:ac:fe:a7:c5:e4:67:25:a8:
e7:30:fa:3d:52:1f:7a:f7:f1:1d:6f:bc:57:2c:28:
55:da:2a:d8:f6:f0:94:5a:98:66:d3:0e:a9:91:1f:
46:13:6c:6b:88:bb:b4:77:ab:26:e1:c5:26:dc:87:
87:49:cf:ac:cf:83:99:8f:c2:15:ca:e0:43:4f:45:
30:0d:ff:06:8b:52:de:e7:dd:ff:60:9e:04:a1:e8:
ff:05:b1:ca:fa:60:e2:c6:54:0f:cd:b2:33:25:e9:
ca:d5:ee:08:73:0c:86:09:88:ec:a5:bd:42:75:e3:
bd:83:94:b6:bd:a8:b7:5e:45:3e:fb:76:8a:fc:c8:
58:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:36:CE:32:64:95:B7:D4:2E:23:A8:D1:7C:06:6B:11:45:2A:CD:1F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gTbOMmSVt9QuI6jRfAZrEUUqzR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e1c6::/32
Signature Algorithm: sha256WithRSAEncryption
2f:62:d2:f8:6c:a9:42:04:06:45:34:d1:b6:aa:72:3b:7e:70:
60:43:eb:66:50:59:db:d0:5a:95:01:0f:3b:05:96:57:50:08:
a5:a5:47:ca:00:fe:5c:d1:af:b4:82:ba:f9:37:42:6e:66:64:
3b:36:44:82:6d:78:ae:a1:a9:f2:4b:20:14:14:46:08:c4:53:
43:65:53:91:cf:28:dc:6a:72:d4:1f:53:0c:2d:5f:3b:4c:76:
c5:f7:44:d0:1f:fd:6e:09:58:60:68:a8:15:49:79:1f:05:27:
4f:1a:ba:ef:db:eb:fb:f5:24:16:1c:65:3b:60:cb:c2:fb:d7:
17:bb:31:3c:74:82:2c:02:e7:18:c6:0e:9c:04:6c:06:10:93:
f8:82:85:f5:ff:3d:4a:12:e9:93:ba:9e:98:b3:6c:59:88:15:
96:30:71:57:bd:6b:f6:39:6f:a6:bf:d0:18:26:17:89:a0:5c:
1f:6e:43:0d:91:ae:95:27:48:e7:43:31:61:b6:4a:61:e7:a7:
6e:69:d5:21:bb:a6:e8:fe:fc:95:7f:16:de:03:e4:d2:d3:05:
d6:5c:41:ba:7f:2e:e9:97:83:db:5b:ea:3e:8b:e1:03:8c:ea:
98:12:d4:0d:4c:54:a7:bb:c2:7b:e8:65:1d:b1:f5:f4:c0:09:
74:92:d7:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:07:43 2025 by rpki-client