Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jCZwmopJqrUnto-NnbVNuO-5TIg.roa
File: jCZwmopJqrUnto-NnbVNuO-5TIg.roa (raw, json)
Hash identifier: jaaOtcgs7KaggN1OTtMvMUfP6TN+goI/qj+qAiGNNN4=
Subject key identifier: 8C:26:70:9A:8A:49:AA:B5:27:B6:8F:8D:9D:B5:4D:B8:EF:B9:4C:88
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02B5E4DA
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jCZwmopJqrUnto-NnbVNuO-5TIg.roa
Signing time: Tue 12 Apr 2022 07:32:34 +0000
ROA not before: Tue 12 Apr 2022 07:32:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136897
IP address blocks: 2a0e:1a80:123::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45475034 (0x2b5e4da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 12 07:32:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c26709a8a49aab527b68f8d9db54db8efb94c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b1:8d:fe:31:f5:db:2c:01:ee:43:95:b0:84:
79:82:14:ff:b4:a8:dc:b8:5c:e1:2d:6d:a5:a8:f2:
6b:b8:a1:b8:58:50:35:22:13:26:63:52:6d:f0:af:
49:aa:2f:70:4b:71:77:60:28:c8:f6:fa:d6:7d:ed:
6e:5c:48:e8:f8:cb:d7:36:f1:e0:4a:d1:46:ca:55:
57:21:31:4e:21:93:23:df:ed:dc:63:7e:71:d7:f8:
c4:f1:04:b5:52:04:78:3b:7e:5b:6b:43:89:98:b4:
91:0a:db:75:42:2d:12:dd:f2:21:c7:4f:f9:75:fe:
2b:79:7c:a7:d2:c4:c5:08:12:59:6c:b9:c6:17:91:
bd:fa:7a:ca:0f:64:02:de:03:9c:92:c5:b7:87:da:
96:a2:33:1d:ae:52:b1:aa:2e:44:9a:52:eb:22:fa:
0e:bf:90:78:2e:a3:af:d8:6f:11:f0:e2:1b:b4:3b:
a3:55:39:91:e8:fc:72:79:db:09:ca:f8:13:a3:57:
40:15:a9:fd:4f:3f:79:bc:4d:67:47:bc:8a:1a:4a:
2b:45:f7:ca:43:45:9b:7d:8a:e4:e4:72:19:ed:1e:
75:47:e5:e0:6a:f5:8b:e3:e6:0b:fc:d5:ed:fa:72:
4f:ce:fe:4c:5c:a2:c0:b9:b3:8d:ba:57:76:6a:13:
9d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:26:70:9A:8A:49:AA:B5:27:B6:8F:8D:9D:B5:4D:B8:EF:B9:4C:88
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jCZwmopJqrUnto-NnbVNuO-5TIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1a80:123::/48
Signature Algorithm: sha256WithRSAEncryption
30:fa:23:bd:74:15:ec:29:31:bb:45:e6:fc:d8:d6:53:1b:67:
0e:4b:1d:2f:81:9f:e7:85:af:e4:b0:5c:d2:d8:79:01:2e:f1:
1f:96:67:bd:98:b4:b1:d5:da:9b:30:fb:03:25:de:da:3d:8d:
e5:ac:69:6e:3f:73:b4:2e:88:77:0b:e7:19:5a:5f:a9:3e:d6:
1f:7d:47:75:c2:c2:49:23:d1:58:c3:6e:ad:93:fc:ab:5a:c8:
5b:0e:96:4b:01:8d:94:ed:ed:f6:77:0d:ea:3c:1d:31:bc:f3:
db:ec:91:2c:22:7b:9a:be:db:d0:4f:a4:0a:27:2c:2d:74:5f:
49:c9:0b:eb:59:89:79:0b:50:f4:cb:71:4f:7e:56:cf:da:01:
f9:71:14:aa:68:f9:9a:d2:3e:c5:57:7f:c1:1d:1b:cc:bf:37:
89:15:15:09:92:e7:7f:63:82:56:c1:c7:4a:a1:e0:f5:6f:85:
b5:5a:8b:ce:34:05:36:19:2e:3e:a0:c8:90:c8:94:a1:b5:6a:
0e:5c:c2:51:37:4c:a6:29:cd:d4:e0:89:d7:b6:14:2f:0a:0e:
ef:9c:62:8f:05:93:c0:c0:e8:1c:a7:71:16:14:3f:9e:bc:e6:
63:08:e1:c5:52:db:9f:eb:30:d0:83:18:64:3f:5c:2b:85:2b:
91:ae:6c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:36:58 2025 by rpki-client