Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d2ff0f-e24a-4313-98c1-22e5547316b5/1/e11tUnHvWt1ZPymVxtofwiUtOD8.roa
File: e11tUnHvWt1ZPymVxtofwiUtOD8.roa (raw, json)
Hash identifier: o12GjOPGIgrNbKveRkng1WwofNX1yTuWQBWqUEYW6Bo=
Subject key identifier: 7B:5D:6D:52:71:EF:5A:DD:59:3F:29:95:C6:DA:1F:C2:25:2D:38:3F
Certificate issuer: /CN=e81d2dcf2b69abdbd609436440115a9e4ea19a05
Certificate serial: 0BF2E13A
Authority key identifier: E8:1D:2D:CF:2B:69:AB:DB:D6:09:43:64:40:11:5A:9E:4E:A1:9A:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6B0tzytpq9vWCUNkQBFank6hmgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d2ff0f-e24a-4313-98c1-22e5547316b5/1/e11tUnHvWt1ZPymVxtofwiUtOD8.roa
Signing time: Sat 01 Jan 2022 06:06:25 +0000
ROA not before: Sat 01 Jan 2022 06:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205016
IP address blocks: 2001:67c:198c::/48 maxlen: 48
2001:67c:2660::/48 maxlen: 48
2001:67c:2628::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200466746 (0xbf2e13a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e81d2dcf2b69abdbd609436440115a9e4ea19a05
Validity
Not Before: Jan 1 06:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b5d6d5271ef5add593f2995c6da1fc2252d383f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1d:58:6c:d7:8e:49:f4:5a:01:c4:15:2d:70:
b2:6e:5c:00:18:f3:a6:d5:bc:de:58:32:f5:90:5c:
90:2b:84:81:50:b8:59:24:b8:43:49:9b:9c:ae:30:
22:73:fc:b6:94:3b:7f:83:8d:f6:e6:7d:bd:c2:38:
16:92:cf:a3:94:83:c1:97:13:e3:41:f2:e1:ad:5e:
28:22:7c:cd:a3:b0:28:9d:ca:bf:05:73:eb:48:c4:
3f:bb:09:ef:4e:5e:44:37:8f:9a:90:b1:06:5d:50:
f9:1f:8b:a4:f0:ed:0c:e2:7c:eb:ca:8a:d2:c4:1d:
28:d0:57:54:a0:7c:0e:87:fd:92:31:cb:fa:29:10:
d4:4f:25:81:38:80:e9:24:f5:e2:e0:d1:62:8b:07:
f0:71:c2:a7:78:37:8e:04:70:62:90:41:2a:84:34:
3f:3d:4b:b2:7b:dd:2b:d5:17:27:71:bd:dc:73:2c:
e3:ef:6d:9f:71:e1:90:94:14:d2:b6:de:a8:a2:5d:
6c:2a:72:f2:ba:00:e9:de:e6:a9:c0:4c:89:a2:a2:
c6:ad:f9:02:5f:93:6a:65:c0:b1:1b:9d:e9:6e:1f:
44:a8:3e:a8:7c:68:8e:88:7e:2d:1b:1c:63:ae:25:
5b:e1:3d:31:5d:bb:d8:ed:56:fd:5e:4c:39:47:7d:
7e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:5D:6D:52:71:EF:5A:DD:59:3F:29:95:C6:DA:1F:C2:25:2D:38:3F
X509v3 Authority Key Identifier:
keyid:E8:1D:2D:CF:2B:69:AB:DB:D6:09:43:64:40:11:5A:9E:4E:A1:9A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6B0tzytpq9vWCUNkQBFank6hmgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d2ff0f-e24a-4313-98c1-22e5547316b5/1/e11tUnHvWt1ZPymVxtofwiUtOD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d2ff0f-e24a-4313-98c1-22e5547316b5/1/6B0tzytpq9vWCUNkQBFank6hmgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:198c::/48
2001:67c:2628::/48
2001:67c:2660::/48
Signature Algorithm: sha256WithRSAEncryption
44:fb:b7:17:ca:7c:c4:9e:a0:30:bd:c0:47:ab:7f:7f:fb:29:
0c:67:f8:7f:5c:0f:e6:0e:17:af:33:fe:7f:7c:d9:f3:cc:89:
cb:93:40:78:8e:71:85:76:14:c6:13:81:7b:a5:f6:42:c4:57:
b1:8d:8d:26:84:6a:de:a9:56:15:d7:32:a7:ab:26:07:ea:82:
92:3d:b9:42:4c:a7:2f:06:4b:c0:27:2d:e6:6b:17:24:6d:c5:
1c:7d:4f:d2:47:48:c1:21:9c:aa:95:f1:99:b8:68:55:86:ab:
79:2f:33:5f:91:49:31:39:5f:a7:a2:ee:36:ef:42:04:27:ae:
9e:3c:36:bb:94:61:4d:03:e3:cf:97:83:42:af:c3:02:4d:42:
9a:07:13:ef:03:f2:0e:30:3e:78:44:76:57:d3:0b:15:0c:3b:
0a:6e:f2:4c:01:77:96:14:4e:a0:8d:4b:ac:93:1b:07:27:55:
e3:8c:b1:43:a0:89:41:20:7a:1c:4d:57:90:57:74:62:cf:83:
14:84:29:05:e6:ca:ad:9f:2b:2e:aa:95:4e:78:78:84:9d:6b:
02:79:bf:ed:52:4e:af:60:4b:28:75:59:a4:f1:ef:bd:38:cd:
a3:49:6a:de:1f:9f:68:db:dd:df:81:01:4f:b9:3b:78:b4:93:
8e:44:76:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:48:13 2025 by rpki-client