Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jgBPVPsMOJ4kk3D66yZfeFQmmVY.roa
File: jgBPVPsMOJ4kk3D66yZfeFQmmVY.roa (raw, json)
Hash identifier: rS7qb/IOZXLMsKVjtOxGLm6ZMBah15nCtyp4ufDRNmY=
Subject key identifier: 8E:00:4F:54:FB:0C:38:9E:24:93:70:FA:EB:26:5F:78:54:26:99:56
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182271B6FA9A77E436AE6FA21B401A20DE0
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jgBPVPsMOJ4kk3D66yZfeFQmmVY.roa
Signing time: Fri 22 Jul 2022 18:11:25 +0000
ROA not before: Fri 22 Jul 2022 18:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0f:e040:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:27:1b:6f:a9:a7:7e:43:6a:e6:fa:21:b4:01:a2:0d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 22 18:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e004f54fb0c389e249370faeb265f7854269956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:99:17:96:fd:b8:79:d7:1a:50:9d:c2:c6:04:
2c:34:64:db:54:e5:4c:78:1d:b3:56:94:28:a9:05:
cd:9b:e3:03:b1:69:a8:b2:cc:4c:b6:89:11:69:62:
e4:72:de:33:35:3f:a1:b8:2d:61:7b:9e:5b:ab:85:
b3:64:20:76:83:49:06:8a:18:e7:25:71:44:7f:61:
23:91:67:4e:a1:27:69:fc:42:9b:df:17:4d:e9:2e:
ba:ff:2f:ca:33:9c:08:f1:35:32:07:05:99:ec:20:
52:cf:de:6b:97:e5:fd:0c:e8:d9:8a:78:e4:62:61:
86:a2:17:f3:d2:3e:14:4f:95:f4:30:5d:98:bd:cc:
be:57:dd:fa:6b:a4:80:6c:ff:94:11:57:55:f1:b5:
27:18:65:93:1f:0d:2a:97:6f:60:15:ad:4b:56:5b:
74:5a:fb:05:3d:dd:92:2e:c7:c2:65:4d:8b:49:75:
bc:74:92:7b:24:27:30:f2:44:41:9b:05:70:4a:a5:
c3:43:65:ac:1b:fc:44:e3:87:c6:3c:43:8d:35:2b:
14:6a:66:5a:ec:3b:1a:c1:4e:b4:88:0f:a1:ec:d4:
57:73:da:bf:34:d9:91:c2:2f:e9:2b:96:55:fc:72:
12:2c:bb:3e:ac:9a:db:f1:d6:7b:23:a3:40:c3:58:
cb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:00:4F:54:FB:0C:38:9E:24:93:70:FA:EB:26:5F:78:54:26:99:56
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jgBPVPsMOJ4kk3D66yZfeFQmmVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e040:2::/48
Signature Algorithm: sha256WithRSAEncryption
9d:04:6d:b3:91:03:f8:00:02:43:a2:06:ff:8c:43:a5:54:03:
a0:b9:5f:0d:dc:c5:4a:ed:76:39:72:5a:f3:e9:fb:bc:a4:b9:
1a:f0:08:88:6a:6f:96:7e:0d:46:36:6b:84:00:e8:39:41:be:
42:7b:c8:0a:1d:01:c9:02:a7:77:f5:8d:ed:a4:b1:17:72:d9:
5a:3a:14:fe:86:0e:49:3d:df:72:6b:21:85:d9:30:9c:65:e7:
f0:33:a8:5d:19:50:b3:70:eb:53:58:b5:e3:94:29:e1:93:7e:
df:7b:9c:39:ef:e7:fd:74:7d:ed:f0:e4:44:f1:2f:5b:fb:b8:
b7:1d:21:6a:c8:d9:ac:82:e4:81:a1:94:63:cb:cc:dd:53:01:
32:ed:d9:34:a5:93:4c:a9:45:4a:4f:e7:75:11:62:05:2d:9b:
b5:49:91:11:a5:32:57:55:0d:fb:1e:86:41:76:c1:45:3a:8e:
f8:07:e1:ab:d0:43:c4:d8:e9:64:9e:e3:2a:35:b9:84:e0:0e:
5d:c2:a5:b8:1a:78:00:3f:46:a0:52:53:7c:16:9c:e9:e9:69:
b4:0d:d8:29:09:6d:a9:8d:82:f8:4f:3d:04:1e:40:2d:9a:af:
d9:ff:03:fd:68:af:c3:6d:97:47:e7:27:18:24:2b:09:3c:2f:
a4:6b:d1:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:54 2025 by rpki-client