Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/arUbKye16zXo5rwWIFrN8jitvbA.roa
File: arUbKye16zXo5rwWIFrN8jitvbA.roa (raw, json)
Hash identifier: bVJDto8WeDTU7pVB7Ld220P2fFXQbYxXl9zD9q06Rzw=
Subject key identifier: 6A:B5:1B:2B:27:B5:EB:35:E8:E6:BC:16:20:5A:CD:F2:38:AD:BD:B0
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 0459782B
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/arUbKye16zXo5rwWIFrN8jitvbA.roa
Signing time: Thu 31 Mar 2022 16:52:21 +0000
ROA not before: Thu 31 Mar 2022 16:52:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 148996
IP address blocks: 2a0f:7880:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72972331 (0x459782b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Mar 31 16:52:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab51b2b27b5eb35e8e6bc16205acdf238adbdb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b0:ae:6a:a9:62:33:93:2e:0f:36:1f:34:10:
72:e5:9f:82:80:1c:fe:99:06:15:93:d8:d2:f8:58:
bb:fb:57:24:13:c4:e3:b0:83:70:dc:9b:a0:25:5d:
e4:fb:a0:e9:50:21:65:63:e6:2d:06:b6:0e:d2:ac:
4d:cd:9c:f4:b1:f9:3f:c1:e3:70:f4:76:5f:8a:62:
bf:1e:d8:55:30:54:da:bd:f6:19:ff:c2:f3:c0:f2:
9e:bf:b2:91:5b:b5:0f:40:84:6d:49:3d:d8:2a:c4:
22:18:b5:66:f1:47:63:b3:34:cc:d9:3e:f2:f5:a2:
67:2c:bc:1e:25:59:2d:27:f4:d7:8b:3a:70:da:ee:
57:ee:42:07:a6:77:a4:ed:49:9c:42:31:dc:13:a5:
2a:b5:f7:6f:14:86:8a:e4:d9:87:6d:42:4e:c1:c1:
a8:0c:0c:fd:aa:aa:ba:d5:4f:bc:ac:55:0d:16:ac:
e8:18:b5:4d:c7:f8:44:f5:c6:01:4e:8a:5b:51:26:
1a:a7:3b:37:ca:fa:d3:09:dc:c1:0c:b1:8d:aa:aa:
c3:71:e2:75:90:c5:11:7a:f3:75:4f:ef:89:0d:43:
cd:f1:4a:c9:36:e2:96:48:fb:2d:17:6d:3a:56:eb:
cb:af:4c:9f:fe:33:ed:24:e0:c6:70:8f:37:c6:84:
fc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B5:1B:2B:27:B5:EB:35:E8:E6:BC:16:20:5A:CD:F2:38:AD:BD:B0
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/arUbKye16zXo5rwWIFrN8jitvbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7880:100::/40
Signature Algorithm: sha256WithRSAEncryption
45:38:ac:08:99:d4:17:6a:c9:03:a6:75:04:d8:85:f6:dc:73:
f0:ea:28:f9:5e:6d:02:d4:61:e4:92:f8:25:f3:bd:46:63:04:
73:dc:e2:ab:df:0e:c8:49:4c:05:05:d9:87:1a:0d:1b:87:c0:
19:97:dd:66:41:0b:9e:e9:9d:d9:c4:8a:95:f1:3c:1f:ca:69:
fb:b9:d4:96:a5:16:12:22:e3:45:2b:35:95:ec:45:ba:fe:4d:
90:3d:41:b5:ff:8a:c3:9f:6f:68:f4:0a:ba:13:36:ce:b3:b7:
f0:5d:9b:c8:2c:ef:25:58:33:f0:2e:97:5c:fd:be:30:8b:5e:
07:ae:68:2f:86:18:d0:cc:b9:a6:43:c8:6c:3c:12:0c:96:94:
6a:5d:d0:d2:13:6b:cb:da:4f:ae:54:8b:e9:dd:f5:cb:68:0b:
49:0b:ac:a7:ca:6a:0b:36:4c:f5:f3:f9:cc:9f:2d:90:dc:c8:
5c:f7:18:55:c1:a4:cd:2a:1f:6e:a1:3e:4c:94:ec:b8:f2:17:
a3:09:37:2a:ae:8e:3a:e8:70:93:c5:e6:90:65:db:bb:c1:51:
88:af:ab:7a:f5:41:24:41:fe:25:c5:62:ac:8c:6a:0a:4a:95:
56:24:e4:bd:fa:bf:d5:a7:63:ec:54:b1:59:d8:b4:15:ab:f1:
c9:0e:22:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:57:47 2025 by rpki-client