Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1-5e5Gjn2pDCT92E1b4Jeu5or8B8.roa
File: 1-5e5Gjn2pDCT92E1b4Jeu5or8B8.roa (raw, json)
Hash identifier: rFoAnnwbv2Dkn5D8bYlCnwSJ/lxaiEK8JQ1Q3ybTzuo=
Subject key identifier: FB:97:B9:1A:39:F6:A4:30:93:F7:61:35:6F:82:5E:BB:9A:2B:F0:1F
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 2122C802
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1-5e5Gjn2pDCT92E1b4Jeu5or8B8.roa
Signing time: Sat 01 Jan 2022 13:00:32 +0000
ROA not before: Sat 01 Jan 2022 13:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24595
IP address blocks: 2a04:9a01:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 555927554 (0x2122c802)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 1 13:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb97b91a39f6a43093f761356f825ebb9a2bf01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7a:92:5d:26:56:2b:19:3e:64:7f:48:52:eb:
e5:82:20:97:bc:99:02:e2:b3:e2:58:cf:bd:13:b0:
bd:72:f1:74:b4:1f:17:81:17:c6:4e:df:b7:05:a3:
2f:15:4a:93:91:b7:9b:dc:18:c6:d8:4b:0a:0b:7e:
1e:41:5e:fc:f7:1d:f2:b6:e8:19:40:62:d6:77:db:
8f:fb:88:2b:07:22:47:4f:5b:e1:aa:9a:d1:ae:ac:
82:a5:a2:46:6c:d8:fb:87:7b:a2:c9:6f:af:29:7c:
49:0e:b7:50:f7:fd:15:12:c2:f6:aa:8f:35:56:f8:
79:b7:ac:86:77:ee:b8:e0:ec:d5:bf:9e:ef:7f:eb:
8a:e8:48:7d:cd:80:08:6f:9d:c6:d1:cb:2b:63:84:
13:cb:5c:1b:81:dc:be:52:01:40:2a:5f:85:c2:ae:
56:29:de:6b:94:d8:1c:24:b2:ee:01:a0:18:47:e9:
45:05:d9:e7:ae:0a:b5:fb:3e:e4:52:09:6c:88:92:
20:05:ee:f5:e2:75:17:ef:10:dd:09:41:24:f8:3d:
7e:46:d9:34:9a:7a:da:e6:fc:22:63:11:41:db:74:
a3:8f:23:3c:9f:b4:86:2e:24:28:0b:12:0d:c3:97:
ce:e5:79:7f:76:d9:1d:ca:a9:7d:2b:6b:cd:19:58:
04:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:97:B9:1A:39:F6:A4:30:93:F7:61:35:6F:82:5E:BB:9A:2B:F0:1F
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1-5e5Gjn2pDCT92E1b4Jeu5or8B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9a01:1000::/36
Signature Algorithm: sha256WithRSAEncryption
13:00:19:b2:57:f8:7a:27:fc:4b:4c:6d:1c:e5:7c:a5:ed:c8:
87:62:34:f4:12:7e:06:55:c9:01:97:ed:8f:d7:c5:5a:b0:2a:
2e:ad:ab:f3:1e:73:39:88:ba:5d:6e:22:ae:4d:b0:61:e4:74:
03:ed:1e:94:90:31:cf:cc:1f:71:7b:49:25:89:0b:6f:6a:99:
a6:68:b9:81:56:e9:64:18:bc:f9:bd:fa:9b:13:aa:8e:66:e2:
78:47:46:02:e0:ba:eb:99:33:55:d3:b1:1c:63:26:b7:01:a8:
d8:3e:c2:6c:30:d1:b9:f3:b9:28:c5:63:64:f8:38:b3:ec:30:
22:ae:46:c3:08:0b:bc:9a:25:3a:fa:8d:b3:02:cd:cc:ce:27:
9b:b8:8a:c1:ee:ef:59:2d:21:17:51:59:91:a2:b3:e1:f4:ca:
61:e4:7a:c2:60:cf:eb:bf:00:7a:62:68:94:eb:97:b3:73:3d:
dc:cb:a3:65:d5:e6:95:7c:d9:b1:b6:1b:0f:df:dc:f2:56:e5:
9d:d5:d1:ab:d4:69:33:fe:ab:54:d3:cc:c9:11:3b:28:54:ff:
4b:45:28:81:c8:9f:c6:cc:f2:a4:e7:df:73:35:90:db:9b:2d:
19:e8:2a:75:98:ce:d6:e0:e7:28:de:26:60:c3:6d:4e:65:57:
f6:67:14:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:39 2025 by rpki-client