Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/Zti5O2VRrXvk199VfvTD4yHgQDk.roa
File: Zti5O2VRrXvk199VfvTD4yHgQDk.roa (raw, json)
Hash identifier: 8EHaBcHUl1els0yi8pYDnH0c1okR90VoOcRqDB8kmWk=
Subject key identifier: 66:D8:B9:3B:65:51:AD:7B:E4:D7:DF:55:7E:F4:C3:E3:21:E0:40:39
Certificate issuer: /CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Certificate serial: 0A4C4BC2
Authority key identifier: 81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/Zti5O2VRrXvk199VfvTD4yHgQDk.roa
Signing time: Tue 19 Apr 2022 10:34:50 +0000
ROA not before: Tue 19 Apr 2022 10:34:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:24f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172772290 (0xa4c4bc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Validity
Not Before: Apr 19 10:34:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66d8b93b6551ad7be4d7df557ef4c3e321e04039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:88:ae:6d:bf:f0:7a:83:ff:22:69:2c:c7:05:
93:0e:e1:79:b8:26:5b:ab:bc:c2:3f:78:49:a5:28:
86:fc:2c:77:d9:25:77:3c:b1:12:b2:ff:74:d3:6e:
3e:6d:40:13:77:b4:a0:66:24:68:80:d6:bf:20:76:
2c:84:14:6e:12:ae:a8:e9:5e:01:71:ed:ba:ee:05:
c9:71:7d:0a:a5:a7:c0:31:47:8e:ef:7b:b9:dc:ec:
31:e6:9f:e0:50:44:aa:1d:df:88:06:b5:ba:1d:97:
df:e1:5f:d5:81:27:1d:e8:3e:4b:e0:ac:29:87:24:
c4:4d:22:1c:90:96:1a:ee:40:fb:50:dd:b9:02:58:
85:a8:cc:a3:4d:27:0d:ef:ba:f6:3b:5b:59:27:6b:
70:cb:4f:44:7e:fe:c5:97:c2:0a:2c:ae:89:b3:13:
5c:fa:98:c0:7c:33:c4:cd:e8:38:95:90:be:53:46:
12:42:bf:36:97:d5:b1:93:37:bb:ec:3a:ed:db:88:
53:5b:6f:87:ec:80:3d:f1:45:30:96:fd:e2:d8:5f:
41:ad:c0:e3:c2:d3:1b:e1:7d:f4:fe:c0:f8:69:ad:
69:b9:c2:0c:b1:e4:3e:b7:23:7d:af:97:db:a6:8f:
35:b1:b0:36:c7:5e:ae:07:2f:74:88:bb:1b:6a:9b:
d0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D8:B9:3B:65:51:AD:7B:E4:D7:DF:55:7E:F4:C3:E3:21:E0:40:39
X509v3 Authority Key Identifier:
keyid:81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/Zti5O2VRrXvk199VfvTD4yHgQDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:24f0::/48
Signature Algorithm: sha256WithRSAEncryption
a2:fe:2a:95:02:d8:83:1c:18:0c:4c:ca:00:f0:18:59:a9:2e:
01:f6:a5:13:34:50:e3:4d:6d:e7:77:63:30:8b:02:af:e7:37:
cc:9a:91:ce:02:75:97:42:85:c7:f9:e1:dc:80:dd:e5:a7:74:
a8:d9:a9:68:cd:81:fb:14:39:af:d3:a7:d8:e3:73:98:10:4d:
00:4f:d2:6f:8a:9d:5f:9d:85:75:dd:84:1f:24:3d:ea:6b:ac:
40:08:f4:f6:13:95:ce:70:5e:68:fb:db:dc:66:f9:1b:0c:45:
86:9c:9d:93:2b:2d:4a:ed:97:24:73:4d:51:4f:0b:2f:3d:80:
4b:ee:a0:b7:f4:c0:cd:d3:e5:04:fa:e6:78:68:b1:c9:53:b8:
45:03:54:a3:8c:98:54:af:7f:c3:c4:fd:47:c8:30:25:67:49:
45:73:f5:88:1c:ca:58:da:09:65:d1:99:27:32:16:cc:d2:f8:
7e:49:48:28:a0:b2:99:7c:cc:98:cb:19:d2:85:bd:87:a7:af:
5c:1a:2c:7e:f1:34:59:22:d2:4f:80:60:29:b7:ab:9f:c2:5f:
6c:1d:29:6f:a2:fc:cf:1a:2f:e4:0d:fc:44:5a:bb:81:c3:5f:
cb:19:de:ed:2c:af:80:b3:22:7c:6c:e6:3a:c6:be:3c:92:1a:
98:ef:1c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:13:10 2025 by rpki-client