Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/n4padrRVmUueBb7qYSoF3pco_e0.roa
File: n4padrRVmUueBb7qYSoF3pco_e0.roa (raw, json)
Hash identifier: E0Gdx6siu0LSqtwzhmiEZW9wND71N6LzIsB5PcD/J4U=
Subject key identifier: 9F:8A:5A:76:B4:55:99:4B:9E:05:BE:EA:61:2A:05:DE:97:28:FD:ED
Certificate issuer: /CN=525b705a91dbc30ed10eb7222b7797b834e01863
Certificate serial: 07FD1737
Authority key identifier: 52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/n4padrRVmUueBb7qYSoF3pco_e0.roa
Signing time: Sat 01 Jan 2022 06:06:23 +0000
ROA not before: Sat 01 Jan 2022 06:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213169
IP address blocks: 2a0d:eb04:8::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134027063 (0x7fd1737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525b705a91dbc30ed10eb7222b7797b834e01863
Validity
Not Before: Jan 1 06:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f8a5a76b455994b9e05beea612a05de9728fded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3e:38:13:40:dc:8b:53:31:bd:9e:0d:65:59:
0c:19:d1:f0:e3:b9:67:d1:9e:d6:1f:ac:09:9f:52:
99:0c:6d:e9:60:da:d6:10:f3:ed:9e:33:78:46:8b:
51:c6:8f:c5:42:67:f8:f7:44:e2:62:15:0d:fb:3e:
be:a9:3e:d1:04:7b:76:c4:22:eb:a6:fe:e3:35:40:
5c:26:70:20:70:16:00:81:b5:79:0d:f1:0f:af:22:
81:62:c9:7a:24:79:b4:30:bf:d1:81:62:94:86:db:
96:20:a3:1a:6f:a3:b9:7a:d2:c5:c5:b9:b5:5d:6b:
95:10:95:70:63:90:bb:bf:ce:51:26:24:02:d5:9b:
51:ec:20:fa:c5:41:57:66:b6:1d:39:8b:7c:06:03:
83:01:13:ed:cd:98:58:b2:33:97:74:ea:c4:9e:25:
09:7f:96:49:49:b3:82:c9:27:e3:59:bc:10:b8:2c:
46:ee:8a:b0:0d:3b:cc:85:b4:1f:0e:b3:17:5f:a5:
24:84:93:c8:b2:9e:7e:10:20:d5:da:6a:54:a7:91:
38:87:d3:29:45:0c:01:6d:57:34:fd:65:b3:d5:ba:
b3:ee:9b:17:9e:cf:6a:1a:e9:5a:e1:55:31:76:1a:
9f:e8:95:63:5a:2b:cb:45:7c:ae:7b:74:99:69:3e:
e3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8A:5A:76:B4:55:99:4B:9E:05:BE:EA:61:2A:05:DE:97:28:FD:ED
X509v3 Authority Key Identifier:
keyid:52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/n4padrRVmUueBb7qYSoF3pco_e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/UltwWpHbww7RDrciK3eXuDTgGGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:eb04:8::/46
Signature Algorithm: sha256WithRSAEncryption
58:b6:5a:56:df:08:94:46:03:af:ce:66:aa:36:f1:15:37:4d:
aa:e9:ff:6e:ed:8d:b1:74:31:7e:72:c5:07:5c:60:f3:9d:88:
72:2f:c3:2c:76:8c:b2:d2:4e:9b:74:9d:43:60:2e:79:4d:f0:
15:57:ef:96:86:f4:6e:7a:b7:e7:08:c3:66:93:32:1e:1b:5c:
90:14:44:77:99:54:36:2d:24:1a:7e:bc:97:e3:9e:57:e8:a2:
3e:e1:fa:1e:67:b2:fa:74:4e:53:eb:2f:1c:5d:ea:a8:20:48:
30:a8:7f:3c:aa:19:d4:04:d3:21:4a:26:15:f9:af:a7:47:91:
37:80:74:18:77:16:bc:a9:cf:4d:05:a0:f9:5a:79:d4:f2:a5:
fa:37:d3:55:3d:eb:10:62:3d:c2:0f:aa:f2:d6:18:5d:14:a0:
52:57:b8:34:52:01:e8:1f:ad:8f:5a:0e:4f:86:71:32:0f:14:
0b:3d:17:59:1b:66:b7:45:a2:75:30:b8:3e:00:4c:f8:46:32:
bc:af:ed:48:f5:39:78:2e:c0:2e:4f:70:5f:cd:05:e5:8b:97:
fb:cc:f7:67:d9:5f:12:d5:d9:07:09:0c:57:11:6f:54:35:a7:
c7:7a:7b:5b:52:c5:08:57:f6:5a:04:66:69:3e:37:12:e5:58:
dd:01:2b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:42 2025 by rpki-client