Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sS6lKaP5E7e1ttgLh-gcNLJePqY.roa
File: sS6lKaP5E7e1ttgLh-gcNLJePqY.roa (raw, json)
Hash identifier: fTVzwd/nY3PATZJ7P2V3b3MjZaE4cM3RV/Sz2MSRWCg=
Subject key identifier: B1:2E:A5:29:A3:F9:13:B7:B5:B6:D8:0B:87:E8:1C:34:B2:5E:3E:A6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03180268
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sS6lKaP5E7e1ttgLh-gcNLJePqY.roa
Signing time: Tue 10 May 2022 11:03:02 +0000
ROA not before: Tue 10 May 2022 11:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32613
IP address blocks: 2a0f:e8c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51905128 (0x3180268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 10 11:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b12ea529a3f913b7b5b6d80b87e81c34b25e3ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:21:ac:39:2c:c6:1f:be:1e:8d:54:41:7f:
6c:95:e3:e4:cf:e6:ab:12:36:17:0a:58:b7:cf:f2:
e7:77:72:02:a4:9d:1e:f3:bc:c7:ce:90:62:81:e7:
2b:9c:85:3c:4f:ed:c5:82:4b:8f:63:89:8a:65:88:
05:a3:c8:28:a1:d5:01:fa:13:79:f2:e3:26:f1:6b:
03:7b:3e:87:e7:af:6f:3e:90:76:2c:72:90:a2:45:
81:1e:3f:b7:86:6e:f9:03:70:c6:80:49:80:07:32:
43:24:17:d9:13:0d:2d:64:f6:35:09:25:59:70:3c:
23:0c:de:ae:5c:c1:b7:1d:39:5b:68:d2:ff:93:54:
47:e8:c6:c1:71:0d:ea:36:a3:11:65:d1:3e:0b:b9:
67:49:fc:fa:e7:0b:dc:2e:85:fb:5e:0d:3e:85:d0:
29:e4:6c:27:69:81:52:ba:1e:b7:7c:68:3f:01:e8:
ae:cd:a5:60:d0:dd:74:b6:f6:7c:32:94:42:4f:30:
50:08:5a:f0:20:43:2e:d8:ea:ff:50:54:f3:c4:9e:
fe:2a:d2:7d:c4:c0:b6:40:b4:1c:ce:25:fb:f9:6e:
e6:80:88:60:3a:b9:0c:7e:3e:a1:55:75:e3:46:92:
ad:9d:7c:a9:cd:c3:0f:a7:d1:ca:1e:31:81:3b:9f:
0e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:2E:A5:29:A3:F9:13:B7:B5:B6:D8:0B:87:E8:1C:34:B2:5E:3E:A6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sS6lKaP5E7e1ttgLh-gcNLJePqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e8c0::/29
Signature Algorithm: sha256WithRSAEncryption
01:d0:5d:28:39:e9:a6:8d:19:dc:4e:97:ad:36:ce:96:91:78:
55:fb:1f:e7:bd:77:05:2a:9e:be:16:d7:49:97:30:e9:d7:70:
55:78:53:12:e2:46:ff:db:43:44:8e:ac:3b:8e:84:56:77:99:
31:e6:15:d1:5c:8e:38:d7:5f:a8:43:d4:be:ad:24:c6:91:7c:
57:09:f5:86:07:37:9d:d6:f6:1d:46:16:8e:7f:cc:7b:1d:66:
00:3b:6e:ed:ca:20:94:e7:2a:80:f4:e6:bf:8c:d1:14:12:bf:
95:09:2c:ce:63:38:98:22:2c:86:77:b9:4b:9d:76:7c:02:46:
1d:a3:3d:78:40:aa:33:aa:15:21:2c:29:21:9a:1c:b0:c5:52:
51:57:74:42:7b:2c:b9:a7:b4:e8:23:f8:06:cb:46:cb:d9:cb:
92:0c:02:01:8e:96:6f:25:8f:ae:d5:d7:61:6f:45:ee:48:84:
a1:d9:69:fd:1c:54:aa:0c:ec:13:94:f6:c4:ae:22:71:41:5c:
66:6a:b3:79:9a:54:82:c8:34:33:eb:31:05:ef:db:a0:c4:83:
35:a4:5c:87:b2:52:54:e0:5b:e6:b3:49:c4:43:c0:13:77:c9:
95:ad:c3:ce:f1:44:c5:01:d0:0d:c3:9a:9f:58:63:44:e2:a3:
59:6c:67:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:12 2025 by rpki-client