Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/TAfrk6PqonxBhH3pQ21MVtzJQ04.roa
File: TAfrk6PqonxBhH3pQ21MVtzJQ04.roa (raw, json)
Hash identifier: PirrSY5LcFEhFnYRaUlvLU4DlxKomoWJ/KYbWyUmpCE=
Subject key identifier: 4C:07:EB:93:A3:EA:A2:7C:41:84:7D:E9:43:6D:4C:56:DC:C9:43:4E
Certificate issuer: /CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Certificate serial: 018C834E751C0B35456E98E452650A2DDEE7
Authority key identifier: D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/TAfrk6PqonxBhH3pQ21MVtzJQ04.roa
Signing time: Tue 19 Dec 2023 18:20:06 +0000
ROA not before: Tue 19 Dec 2023 18:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51559
IP address blocks: 2a06:41c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:83:4e:75:1c:0b:35:45:6e:98:e4:52:65:0a:2d:de:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca1a706abcfbe1b85865238d8435ee33e75820
Validity
Not Before: Dec 19 18:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c07eb93a3eaa27c41847de9436d4c56dcc9434e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:29:31:1a:ad:29:73:2d:5a:f8:03:ef:a0:4e:
4c:d3:d0:eb:eb:9e:a3:c6:4b:35:2d:b7:f4:41:bf:
fe:d3:f7:ef:0a:97:08:d4:4d:7a:92:e1:76:25:c4:
fa:e2:d1:41:ee:db:ca:fc:e2:98:ca:c4:dc:36:58:
7e:09:10:63:df:98:2d:c0:47:b9:bf:e1:52:d5:19:
3c:73:29:47:71:47:f2:7e:e4:fe:42:19:ad:1f:0d:
ec:eb:08:00:a1:ba:e9:cd:ca:eb:cd:b7:20:52:36:
12:9a:16:67:58:f0:0c:4c:f2:dc:82:39:a2:7c:bb:
a8:27:de:92:d9:8e:d6:16:0d:cf:ce:6a:3e:45:0a:
ad:6f:9e:59:42:9b:a2:4b:28:8a:63:fc:07:c6:82:
29:95:70:98:9e:71:ff:d9:3f:6c:51:0c:f6:63:85:
25:57:a5:2e:60:43:b3:18:80:96:d1:81:7f:23:22:
bf:95:3e:92:87:b6:aa:e1:d9:24:ec:4d:af:f7:81:
1b:a7:7b:29:6b:85:21:05:aa:fa:8c:7b:2b:d4:58:
a1:86:37:f9:87:f6:89:d3:01:ed:16:1a:5f:1c:ab:
26:db:75:79:19:13:d6:be:f7:9d:c3:26:76:d5:20:
64:3e:27:c6:c8:29:26:cf:fd:be:93:d5:4e:1f:f3:
6d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:07:EB:93:A3:EA:A2:7C:41:84:7D:E9:43:6D:4C:56:DC:C9:43:4E
X509v3 Authority Key Identifier:
keyid:D1:CA:1A:70:6A:BC:FB:E1:B8:58:65:23:8D:84:35:EE:33:E7:58:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0coacGq8--G4WGUjjYQ17jPnWCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/TAfrk6PqonxBhH3pQ21MVtzJQ04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cf79a3-f3cc-4d5a-9672-e8f7fd3a4078/1/0coacGq8--G4WGUjjYQ17jPnWCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:41c0::/48
Signature Algorithm: sha256WithRSAEncryption
1b:9a:7f:4e:d4:a0:d8:2b:ff:f8:3e:64:d5:cd:9b:c3:1a:c4:
ed:6f:cd:13:c3:ea:85:d1:dc:46:8e:d6:78:0a:42:18:00:56:
e7:69:90:03:9b:de:3d:c5:2a:d6:95:8d:fd:6c:08:82:37:74:
73:6d:e4:97:9e:19:10:39:39:5f:e2:03:ec:2b:1b:54:77:16:
50:42:b9:d2:c3:ba:df:d7:c6:f6:9d:36:79:c9:1b:b1:e6:83:
63:87:31:51:0f:eb:57:66:05:39:0b:8b:97:13:ab:96:ff:9b:
ea:b6:3e:99:43:6f:40:d5:59:65:34:6c:24:24:a8:13:bc:17:
b1:ab:46:48:d2:1e:e6:e6:5a:01:34:0c:26:a6:3f:c6:14:13:
9d:20:5a:64:ff:2a:e2:83:88:d4:a0:99:66:ea:f6:ed:97:e5:
0d:eb:c3:bc:90:b1:1a:05:fd:01:f4:fd:78:3a:4a:8b:32:da:
0c:15:e0:f1:06:06:d2:87:5d:b9:b3:89:f8:33:53:d4:f6:5c:
c9:ab:d9:08:d9:2c:2b:6d:5c:2e:a5:63:de:65:65:82:89:cf:
7c:c8:a0:3f:27:2a:48:e1:47:49:c8:8c:c8:b2:57:99:e3:c4:
c5:6b:a5:13:92:ac:cf:7b:3c:b3:5f:a1:2d:c0:6f:db:87:0d:
05:3d:f7:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:26:13 2025 by rpki-client