Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/G6GiMyzCPE_eLHpRe7dOxakH2NE.roa
File: G6GiMyzCPE_eLHpRe7dOxakH2NE.roa (raw, json)
Hash identifier: n2E/OrwzF+7Y1vjRK/tB8zLmRLkm56q4Ue7G3pHMjj8=
Subject key identifier: 1B:A1:A2:33:2C:C2:3C:4F:DE:2C:7A:51:7B:B7:4E:C5:A9:07:D8:D1
Certificate issuer: /CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Certificate serial: 018789D3F2B6FDED134F0E8E0ED57ECF5EDC
Authority key identifier: 56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/G6GiMyzCPE_eLHpRe7dOxakH2NE.roa
Signing time: Sun 16 Apr 2023 11:29:41 +0000
ROA not before: Sun 16 Apr 2023 11:29:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212077
IP address blocks: 2a13:7b40:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:89:d3:f2:b6:fd:ed:13:4f:0e:8e:0e:d5:7e:cf:5e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5688b42175d6214a31a5407db8b6c95f1ec60d4e
Validity
Not Before: Apr 16 11:29:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ba1a2332cc23c4fde2c7a517bb74ec5a907d8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8d:c9:ec:3a:a2:b2:5f:c6:f0:94:51:3b:e6:
85:2a:13:fb:60:cd:03:7f:a8:71:a8:6f:67:90:8c:
cb:6a:38:c2:b7:e1:b2:49:0f:6f:42:2b:f1:0e:39:
ee:b7:70:6d:7d:c9:56:74:a7:8a:c2:50:93:fe:b3:
62:b0:3e:c7:e4:7c:c2:08:08:38:c9:fb:a6:74:ce:
4b:a8:e4:a8:89:12:65:02:78:04:d4:70:f0:8d:f9:
32:d3:d1:48:be:dd:c4:3b:e1:38:cf:51:c8:57:e7:
b3:90:81:9b:c1:01:65:75:e0:e6:b9:f8:1c:2f:51:
35:f6:5d:9f:79:64:6c:b4:d0:52:42:ef:9f:b6:e3:
07:cf:34:f8:a3:90:df:0c:51:7b:d7:97:25:38:51:
37:71:a4:41:3a:0e:8e:82:02:ce:b8:6e:1f:2a:a0:
27:87:3b:7a:1a:56:64:28:17:e0:3c:4f:c7:2d:71:
b6:78:9c:12:7c:44:ae:89:64:9a:0a:1b:df:e4:6d:
a7:70:a2:0d:fe:5c:ae:80:7a:f2:67:a6:79:ef:47:
ea:59:e1:56:d4:13:7e:7e:5b:65:6f:56:64:a0:f1:
7d:9c:e0:7e:e3:04:58:f0:b7:f0:c2:79:c2:8e:94:
3f:78:bd:fa:9c:9a:f0:52:0f:48:eb:01:e7:5a:88:
b6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A1:A2:33:2C:C2:3C:4F:DE:2C:7A:51:7B:B7:4E:C5:A9:07:D8:D1
X509v3 Authority Key Identifier:
keyid:56:88:B4:21:75:D6:21:4A:31:A5:40:7D:B8:B6:C9:5F:1E:C6:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Voi0IXXWIUoxpUB9uLbJXx7GDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/G6GiMyzCPE_eLHpRe7dOxakH2NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/83d6fa-461d-4a56-a844-9f942bc12a7e/1/Voi0IXXWIUoxpUB9uLbJXx7GDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7b40:1::/48
Signature Algorithm: sha256WithRSAEncryption
a4:a9:00:ec:04:f5:f9:89:12:7c:0e:75:35:ad:ba:54:a0:b1:
28:d7:a4:e8:c5:a2:c4:5a:06:c2:7b:53:54:54:45:68:b6:3d:
90:5a:f6:4f:14:1d:a6:59:02:93:27:b6:9c:98:86:a9:4d:0e:
d0:7f:47:7a:43:47:8c:a9:45:2b:e4:c5:7b:49:eb:43:65:03:
61:6d:1f:db:cb:8d:d7:6f:32:ef:e2:72:4d:79:da:9f:1e:14:
8b:41:81:ab:95:eb:11:eb:ed:d0:a3:c4:a3:0e:12:e7:8c:35:
38:15:a9:cf:cf:14:70:c6:30:cf:b1:45:6f:12:36:c0:2e:4d:
7e:0a:ef:c4:78:ef:d8:c1:55:0e:44:00:07:0a:d0:1a:3f:ed:
bc:dc:7e:9d:2e:81:e9:26:31:56:07:72:12:36:55:9d:41:a3:
6b:e2:61:87:10:bc:38:78:6b:47:dc:4a:e4:53:08:4c:5f:48:
ec:d4:79:fb:33:4f:93:e8:5f:b9:7f:ea:b9:2c:a5:23:79:08:
5c:92:64:f2:ec:03:c9:5d:1d:65:c6:69:c0:b1:58:7f:9c:4c:
db:0e:88:1a:ce:30:21:e0:44:9a:39:b9:a7:75:91:9f:2c:76:
4b:2d:84:54:3b:c6:a6:7a:cf:05:de:73:99:9d:e5:bf:90:a8:
a8:87:c2:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:41:05 2025 by rpki-client