Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/81sIfG1rKJQyXR55w6PdGxXqaEU.roa
File: 81sIfG1rKJQyXR55w6PdGxXqaEU.roa (raw, json)
Hash identifier: kMVvhc30hyh2HKxMjj4MBnSfS72CXSPTKqS2CxBw168=
Subject key identifier: F3:5B:08:7C:6D:6B:28:94:32:5D:1E:79:C3:A3:DD:1B:15:EA:68:45
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 0502A9E3
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/81sIfG1rKJQyXR55w6PdGxXqaEU.roa
Signing time: Sat 01 Jan 2022 11:56:11 +0000
ROA not before: Sat 01 Jan 2022 11:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30780
IP address blocks: 2a06:1e00:48::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84060643 (0x502a9e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Jan 1 11:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f35b087c6d6b2894325d1e79c3a3dd1b15ea6845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fd:76:1c:03:11:e0:71:75:81:92:74:ee:7b:
d8:2c:1f:7b:0b:4b:9c:4a:f7:bb:25:bb:3e:34:ab:
4e:61:2e:d8:05:38:cf:83:5f:31:01:7b:ce:c0:d8:
a7:59:e7:13:b5:45:4b:b4:1d:49:24:97:78:cb:1b:
0a:a7:d6:e2:e7:33:06:c6:e5:52:3f:05:88:47:23:
07:60:dd:02:1c:48:ad:3b:28:7b:df:12:f2:ce:06:
93:c1:84:40:61:4d:1e:55:69:c1:d9:4e:43:dc:9c:
51:2c:71:29:9a:11:d1:80:1e:d4:12:59:06:39:3f:
80:56:f5:63:ad:f6:10:10:d6:fc:86:cf:78:ab:3c:
88:6b:eb:94:e4:45:95:90:64:f6:90:a7:fd:98:a4:
98:c8:ac:02:c6:bc:6d:6f:bb:94:18:81:ce:9c:f8:
c4:fa:0c:bf:9b:17:b6:f9:4c:47:71:9f:d5:4e:69:
7b:63:a3:b4:95:b6:55:52:76:6b:98:60:5b:f3:94:
b7:4a:59:12:e0:6f:8d:8e:be:79:3e:f1:01:a8:bb:
85:bc:1b:eb:e9:0b:6c:ca:84:f9:ea:69:0d:3c:eb:
89:21:bb:2f:6e:f0:e4:d3:24:80:b3:18:a1:54:97:
46:1a:ab:50:aa:b8:76:00:3c:46:9b:b1:6c:56:65:
43:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5B:08:7C:6D:6B:28:94:32:5D:1E:79:C3:A3:DD:1B:15:EA:68:45
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/81sIfG1rKJQyXR55w6PdGxXqaEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1e00:48::/48
Signature Algorithm: sha256WithRSAEncryption
39:53:06:8c:e8:62:ae:0b:c6:88:0e:d8:86:6d:d8:75:32:0d:
ee:b2:10:bb:8e:a5:8d:d5:fe:7c:ca:ac:2f:bd:a0:1b:d0:bc:
ee:91:15:18:df:b4:d8:2c:4e:6a:76:0c:4e:56:b6:8d:e1:71:
41:f9:12:76:93:50:02:d7:ab:eb:98:32:dc:b7:ca:52:b0:ef:
a9:19:b4:ca:66:d3:38:84:43:52:d6:48:bc:4b:cc:df:52:fa:
99:3b:78:df:30:79:1a:ed:6b:c0:b5:25:7e:3a:ba:aa:52:45:
0b:b3:7e:8b:c1:8c:f7:61:06:cf:3b:61:ad:dc:34:c2:d9:c7:
1f:64:79:9c:c7:59:5c:ed:85:30:cb:36:cd:cd:0a:8d:f3:be:
b7:d3:91:ba:ad:52:eb:f8:45:a1:4c:0f:b9:c5:66:ef:7b:71:
7e:47:41:3e:0f:9a:55:25:ad:49:48:51:9f:00:d7:f3:d6:7f:
5e:76:16:9d:10:da:c0:41:58:18:93:62:ca:6c:c6:b0:49:50:
d7:bf:8f:cb:9e:24:2c:71:80:b2:47:67:e7:3c:cc:dd:38:70:
4f:0b:9d:af:60:ad:46:7a:b2:e7:87:fb:17:26:f4:4d:bd:88:
cf:d6:d0:3c:30:3d:b9:ce:05:72:32:0f:e1:95:64:2c:0e:7a:
7b:fd:47:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:29 2025 by rpki-client