Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1-6IJCbxa8q7fZzQ_3ct1gPVtJa4.roa
File: 1-6IJCbxa8q7fZzQ_3ct1gPVtJa4.roa (raw, json)
Hash identifier: Pgj28vpAsxMnEZEtJJZsDjmUspWRM3425/9ny4rKgJg=
Subject key identifier: FB:A2:09:09:BC:5A:F2:AE:DF:67:34:3F:DD:CB:75:80:F5:6D:25:AE
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018AD575E1E54BDD99C3915CAEE2E0E79CC8
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1-6IJCbxa8q7fZzQ_3ct1gPVtJa4.roa
Signing time: Wed 27 Sep 2023 07:06:27 +0000
ROA not before: Wed 27 Sep 2023 07:06:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38915
IP address blocks: 2a07:3502:11e0::/48 maxlen: 48
2a07:3502:1070::/48 maxlen: 48
2a07:3502:11f0::/48 maxlen: 48
2a07:3502:1040::/48 maxlen: 48
2a07:3502:1090::/48 maxlen: 48
2a07:3502:11d0::/48 maxlen: 48
2a07:3500:19f8::/48 maxlen: 48
2a07:3500:19d8::/48 maxlen: 48
2a07:3500:1998::/48 maxlen: 48
2a07:3500:19e8::/48 maxlen: 48
2a07:3500:19a8::/48 maxlen: 48
2a07:3500:19a0::/48 maxlen: 48
2a07:3500:19e0::/48 maxlen: 48
2a07:3500:19f0::/48 maxlen: 48
2a07:3500:19b0::/48 maxlen: 48
2a07:3500:1200::/48 maxlen: 48
2a07:3500:1a00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d5:75:e1:e5:4b:dd:99:c3:91:5c:ae:e2:e0:e7:9c:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Sep 27 07:06:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fba20909bc5af2aedf67343fddcb7580f56d25ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b5:ae:b3:7a:fa:71:6d:7c:65:72:58:14:e8:
6f:d9:a1:43:2e:2d:7e:b9:99:94:78:91:0e:ea:21:
f1:a3:ed:df:64:62:94:d3:38:5e:93:54:d9:94:c4:
c8:e9:32:02:e4:1c:fa:79:93:b9:98:b4:ff:70:cc:
a3:00:1e:f3:6f:57:6b:b8:ad:11:ec:ab:8b:e6:83:
c3:5e:f0:2d:14:5b:b7:8f:c6:82:9e:c1:57:94:ef:
de:a6:68:03:17:e2:46:97:0f:aa:70:98:9f:b7:03:
75:20:9e:83:4e:e5:b3:e1:d1:2a:0a:6c:1b:0e:10:
f3:e7:f0:76:78:8b:cb:28:f5:c9:3e:55:ea:fc:12:
df:0a:94:18:ca:b4:6b:1b:59:8c:47:9d:9d:6b:fe:
4c:ef:bc:35:64:00:ef:4c:49:eb:9d:76:51:26:da:
0a:f3:37:26:f0:55:49:5b:80:8f:b1:8d:c3:23:7e:
46:bb:ba:bf:42:57:66:58:c4:d9:e8:be:ad:78:ce:
03:1d:c7:93:d1:79:fb:f7:12:c0:b4:5a:25:69:12:
ec:80:e1:c6:83:58:bf:91:59:d5:90:d0:1e:54:1c:
77:b7:f6:7e:44:f2:d9:26:a7:47:39:8c:f6:fe:d9:
9d:28:3f:7c:85:2a:1e:6d:f9:b4:ef:0c:98:be:ab:
ea:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A2:09:09:BC:5A:F2:AE:DF:67:34:3F:DD:CB:75:80:F5:6D:25:AE
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/1-6IJCbxa8q7fZzQ_3ct1gPVtJa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1200::/48
2a07:3500:1998::/48
2a07:3500:19a0::/48
2a07:3500:19a8::/48
2a07:3500:19b0::/48
2a07:3500:19d8::/48
2a07:3500:19e0::/48
2a07:3500:19e8::/48
2a07:3500:19f0::/48
2a07:3500:19f8::/48
2a07:3500:1a00::/48
2a07:3502:1040::/48
2a07:3502:1070::/48
2a07:3502:1090::/48
2a07:3502:11d0::/48
2a07:3502:11e0::/48
2a07:3502:11f0::/48
Signature Algorithm: sha256WithRSAEncryption
65:6d:2e:b6:d5:da:ad:64:3c:74:5f:1e:7f:21:96:37:17:7e:
dd:4e:10:e7:a6:3d:4d:32:e1:65:40:4e:2a:b9:d1:76:a0:df:
45:32:ea:98:22:2f:5a:04:bd:a0:3a:4c:a9:f5:fe:dd:93:74:
92:36:5d:0a:0b:48:4f:d9:d3:e0:f7:e5:87:ca:7a:78:52:81:
51:62:da:29:95:8a:a5:f9:ec:ed:28:45:cf:27:86:5c:13:6a:
9e:a3:3d:62:8b:a1:0a:2b:ab:3a:ba:2f:25:1f:2c:2a:bd:a3:
76:70:22:7e:be:95:92:fc:c6:9d:3b:39:bc:51:0f:91:15:4d:
99:c2:bd:77:31:45:ee:4a:c9:61:71:35:c6:74:a6:7a:e9:7f:
10:73:85:e6:1a:61:eb:71:df:0c:08:31:1c:bc:ea:61:bd:17:
10:58:1b:bd:0c:f8:41:f2:83:d0:ee:6e:e3:e0:20:c8:47:b2:
62:8f:88:53:8c:af:c8:fd:23:58:2e:bc:1d:45:85:a4:48:2a:
3a:72:96:3b:96:ed:bc:52:63:b7:26:79:3e:85:6d:65:56:7e:
0d:0d:7a:4c:3b:08:a5:74:4f:bf:b8:52:5a:0b:1a:e9:56:e4:
19:e9:bc:eb:86:18:f2:7e:14:de:2f:3a:75:09:1c:54:1d:2d:
d7:8e:19:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:19 2025 by rpki-client