Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/OPWnf2MeHyW6y3xPPNmbqodarF4.roa
File: OPWnf2MeHyW6y3xPPNmbqodarF4.roa (raw, json)
Hash identifier: HpSs6pf1Fu9vxXZ7F13bu1CuJhlxLHSRQ/edFjdICek=
Subject key identifier: 38:F5:A7:7F:63:1E:1F:25:BA:CB:7C:4F:3C:D9:9B:AA:87:5A:AC:5E
Certificate issuer: /CN=d62d7949e698441dbe9abc5609c49eaca73c9796
Certificate serial: E36A67
Authority key identifier: D6:2D:79:49:E6:98:44:1D:BE:9A:BC:56:09:C4:9E:AC:A7:3C:97:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1i15SeaYRB2-mrxWCcSerKc8l5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/OPWnf2MeHyW6y3xPPNmbqodarF4.roa
Signing time: Sat 01 Jan 2022 07:59:39 +0000
ROA not before: Sat 01 Jan 2022 07:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206128
IP address blocks: 2001:678:270::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14903911 (0xe36a67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d62d7949e698441dbe9abc5609c49eaca73c9796
Validity
Not Before: Jan 1 07:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38f5a77f631e1f25bacb7c4f3cd99baa875aac5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:54:25:e9:02:96:7c:d8:c5:d9:af:78:8c:d7:
19:a4:26:ab:7d:08:41:49:aa:78:0b:4d:7e:4a:1b:
6e:b2:0a:9b:2a:19:b8:63:f0:ae:9d:4a:31:6b:b0:
15:36:a4:db:bb:34:38:3c:4c:a9:1a:3e:03:e1:43:
cd:0e:f9:46:3f:da:4a:14:d2:37:a7:67:9c:0b:3f:
14:1b:ac:71:4a:6d:a3:b3:00:46:85:cd:fe:ed:0c:
83:2b:50:54:72:4f:ee:c7:4d:ed:4e:20:92:dd:42:
cf:61:74:c2:11:c9:81:e4:92:7d:31:02:2d:db:ba:
72:ec:1b:49:fd:f7:5a:9b:bd:fe:36:9a:5a:41:49:
fa:02:0e:46:48:f6:63:57:c7:70:6a:4a:36:b9:37:
c8:e8:3c:b5:77:f0:d2:32:af:a9:41:c7:31:4c:66:
98:79:a6:64:33:d9:23:6b:6b:8a:44:43:2d:2b:b1:
63:c1:b0:52:e6:09:45:1f:be:42:e2:3b:83:af:82:
6b:82:93:70:e7:2c:24:fa:5a:a4:c9:3b:e2:39:bd:
ed:52:d5:85:08:77:85:75:34:cb:48:9e:6d:82:37:
83:dd:74:ea:98:3c:4f:26:c5:83:96:ce:71:87:6e:
c9:3e:41:6a:2b:11:e9:bc:bd:74:87:44:65:22:42:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F5:A7:7F:63:1E:1F:25:BA:CB:7C:4F:3C:D9:9B:AA:87:5A:AC:5E
X509v3 Authority Key Identifier:
keyid:D6:2D:79:49:E6:98:44:1D:BE:9A:BC:56:09:C4:9E:AC:A7:3C:97:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1i15SeaYRB2-mrxWCcSerKc8l5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/OPWnf2MeHyW6y3xPPNmbqodarF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ac0923-7eb1-4a5f-9105-15b21a9b4325/1/1i15SeaYRB2-mrxWCcSerKc8l5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:270::/48
Signature Algorithm: sha256WithRSAEncryption
42:7f:3e:e3:a1:44:4a:82:95:e3:c0:c8:57:62:53:04:d9:a7:
8e:43:68:aa:d5:0d:01:24:e9:e6:b6:92:77:d4:59:f2:30:e4:
06:0e:67:1a:f4:c9:3b:a9:b5:f5:f7:ec:05:6f:28:01:c2:00:
b8:77:6c:44:8c:1f:73:a3:48:3e:59:1d:25:c5:56:b0:7a:74:
8a:e4:4e:21:2c:f6:59:51:68:1f:5e:bc:3c:f6:d2:5a:23:1d:
25:82:8c:74:39:42:b4:ff:af:65:ce:98:8c:49:d1:e9:10:f6:
84:53:24:bf:8c:70:90:b4:7c:6e:49:7f:cf:71:84:9d:29:32:
3a:a5:ee:fe:4b:4d:c4:fa:00:d4:1a:e1:f4:ab:69:a8:05:24:
9a:cc:f4:b2:86:ca:30:cf:80:61:ef:bc:28:24:1e:ca:46:4f:
06:08:e0:ec:92:d8:ed:ca:03:76:8f:2b:80:4c:76:4c:e0:e3:
a2:ff:99:77:f9:a9:bb:ef:9c:25:b6:18:a1:b7:71:41:04:de:
c4:14:eb:9c:07:c3:5f:88:a5:3e:15:16:a9:11:24:f6:28:b0:
d5:00:3b:c6:98:61:7f:79:7e:76:69:4d:2d:12:1e:9a:c6:95:
13:8d:be:51:eb:69:d4:2e:8a:69:41:ca:70:ba:95:fe:c6:45:
fe:ad:f9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:26 2025 by rpki-client