Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/fZ1Yv3FX6Ly_LzLBiQlE1lbwU-w.roa
File: fZ1Yv3FX6Ly_LzLBiQlE1lbwU-w.roa (raw, json)
Hash identifier: cL8n6P9NXXLkLfjpzltmYU/OLmtLQ/e2zsbwdfOTEnU=
Subject key identifier: 7D:9D:58:BF:71:57:E8:BC:BF:2F:32:C1:89:09:44:D6:56:F0:53:EC
Certificate issuer: /CN=c3743c89df34ec770a65973f1005146bfb32b0f2
Certificate serial: 7417
Authority key identifier: C3:74:3C:89:DF:34:EC:77:0A:65:97:3F:10:05:14:6B:FB:32:B0:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3Q8id807HcKZZc_EAUUa_sysPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/fZ1Yv3FX6Ly_LzLBiQlE1lbwU-w.roa
Signing time: Thu 28 Apr 2022 15:40:12 +0000
ROA not before: Thu 28 Apr 2022 15:40:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197942
IP address blocks: 2001:67c:1904::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29719 (0x7417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3743c89df34ec770a65973f1005146bfb32b0f2
Validity
Not Before: Apr 28 15:40:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9d58bf7157e8bcbf2f32c1890944d656f053ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bb:c7:aa:6a:bb:d5:db:97:45:c5:8a:08:0e:
66:9a:24:19:97:67:37:3d:06:41:ad:25:8c:78:02:
40:f9:7e:2d:04:57:e8:d8:81:07:16:3e:bf:01:56:
7f:1a:5b:83:d9:20:29:33:b7:74:ea:42:41:f4:5f:
b4:71:d4:d3:c5:97:32:8e:73:47:f6:fe:a5:a3:9b:
d2:fa:5d:9f:c1:fa:7e:b1:c7:db:90:04:8b:c8:9b:
08:6f:e7:5e:ff:a8:4c:dd:37:0d:25:7c:c5:2a:8d:
8d:4b:3e:50:1b:4d:5b:4c:aa:cb:e6:89:93:2b:8c:
89:b5:f7:2c:7d:ae:1b:24:0b:2b:cb:fb:90:b7:74:
62:37:71:84:23:a3:57:b1:15:aa:bf:74:30:cc:62:
65:67:9c:d8:c3:71:fb:48:a1:ed:a5:00:a5:1c:1a:
47:e8:42:8d:94:f5:d2:ca:d3:34:fb:67:dd:bb:f1:
43:3d:1b:3d:f2:ae:98:b4:30:c4:18:4f:c6:7e:fd:
25:c0:0b:46:ee:1c:1f:33:da:97:83:67:25:ae:16:
b9:4f:9f:0d:61:8f:ac:2d:ee:a4:a9:73:d2:90:0b:
a0:a8:31:b0:89:5c:5b:ab:21:a4:c0:fc:97:fa:17:
5d:2c:d4:97:b2:91:70:96:de:51:c4:c9:4f:ff:f0:
a7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9D:58:BF:71:57:E8:BC:BF:2F:32:C1:89:09:44:D6:56:F0:53:EC
X509v3 Authority Key Identifier:
keyid:C3:74:3C:89:DF:34:EC:77:0A:65:97:3F:10:05:14:6B:FB:32:B0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3Q8id807HcKZZc_EAUUa_sysPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/fZ1Yv3FX6Ly_LzLBiQlE1lbwU-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f99db4-987e-43b1-a0ca-20f27e870d01/1/w3Q8id807HcKZZc_EAUUa_sysPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1904::/48
Signature Algorithm: sha256WithRSAEncryption
0f:bb:20:2d:56:38:1c:d4:60:9c:ed:15:7b:01:14:43:9c:36:
13:64:a2:3f:3f:c3:e9:7b:2e:89:0f:d0:55:b8:80:35:41:0e:
17:32:d5:98:76:f5:40:39:eb:fa:8f:a0:00:90:04:56:a1:b8:
b1:3d:09:09:95:8a:55:38:bd:e8:28:26:ca:48:bc:0a:db:98:
93:c2:bb:05:1f:ea:7a:97:74:b8:e7:fb:ae:6e:85:bd:32:19:
9a:fc:05:c6:1f:97:70:1b:9c:7d:11:53:7c:44:48:37:8c:9e:
d4:53:54:bf:d9:f9:bf:95:01:9c:6d:4b:24:17:87:f8:1a:38:
c4:43:94:c7:eb:1a:a7:1d:1a:ec:4c:e5:6b:1f:32:a0:0f:c4:
80:32:d2:9e:2e:f0:1f:63:b1:2c:7d:17:89:b2:0a:cb:05:3a:
02:1d:60:a5:d0:a5:1a:59:cb:41:e9:7e:44:5f:69:7e:e0:3b:
15:20:61:18:7a:36:4f:f0:86:91:bc:f0:7d:73:2c:c8:de:90:
b1:cf:cb:83:17:c7:1a:8e:e8:41:9d:42:db:0a:b8:59:c4:c6:
98:cc:60:a8:a2:ca:2d:4b:3a:7a:d7:9b:c7:9d:1a:9f:0b:c9:
25:4d:05:ec:b8:81:9a:4d:d1:b6:ab:3e:50:d6:f2:b0:fb:6e:
b1:ad:a7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:11 2025 by rpki-client