Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/fWm0t2z_p9HQABstZvZiUMwZ69U.roa
File: fWm0t2z_p9HQABstZvZiUMwZ69U.roa (raw, json)
Hash identifier: iNFKbzIIFpziLQ5uv1kttbyxUKnkQTxTz2CM+CzKgyw=
Subject key identifier: 7D:69:B4:B7:6C:FF:A7:D1:D0:00:1B:2D:66:F6:62:50:CC:19:EB:D5
Certificate issuer: /CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Certificate serial: 2B1A245E
Authority key identifier: 10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/fWm0t2z_p9HQABstZvZiUMwZ69U.roa
Signing time: Thu 21 Apr 2022 09:41:17 +0000
ROA not before: Thu 21 Apr 2022 09:41:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59793
IP address blocks: 2a02:d0c2:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723133534 (0x2b1a245e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1045dacc837798c3e6cf31f4d27946a33b0de661
Validity
Not Before: Apr 21 09:41:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d69b4b76cffa7d1d0001b2d66f66250cc19ebd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:04:c6:f3:18:79:d8:66:70:cd:97:47:0e:e9:
26:d5:45:ce:f6:fd:84:a2:5e:90:74:9c:39:af:3b:
97:8e:0c:ca:e5:7d:23:02:81:ef:92:56:ef:f5:1c:
ac:64:af:1c:b7:77:27:9c:16:2e:ff:24:b5:a9:33:
e4:5b:ca:b5:47:98:3e:df:ef:f8:6f:a1:4f:97:31:
b8:65:8c:53:11:73:cc:67:2b:e4:36:2b:d6:1f:dd:
c2:bc:64:0b:86:e7:31:1a:78:41:84:7f:1f:e5:1b:
1a:c5:db:3e:33:d4:40:60:2a:b9:92:75:e9:79:15:
c9:ca:85:fd:83:9d:61:f3:f2:ff:ee:df:f7:88:18:
c5:45:73:94:9c:5e:6f:74:79:d8:dc:2a:65:fe:99:
37:af:25:d4:33:c3:9e:60:37:9c:8b:92:80:60:3f:
f3:f8:18:18:2a:f7:74:44:71:f3:e8:a9:4a:6a:73:
2b:0e:af:3f:0d:57:6b:59:0e:1f:88:bf:cc:80:4e:
db:e6:3d:37:23:db:98:7c:3c:79:9b:07:63:c9:4c:
79:6c:4e:7d:5c:79:85:47:5e:ce:1b:44:67:70:41:
94:f4:54:18:66:29:9d:8c:14:f8:ba:fe:9b:fd:96:
07:d0:f0:82:aa:d6:f1:a6:f4:a2:12:6d:87:f6:c7:
84:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:69:B4:B7:6C:FF:A7:D1:D0:00:1B:2D:66:F6:62:50:CC:19:EB:D5
X509v3 Authority Key Identifier:
keyid:10:45:DA:CC:83:77:98:C3:E6:CF:31:F4:D2:79:46:A3:3B:0D:E6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEXazIN3mMPmzzH00nlGozsN5mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/fWm0t2z_p9HQABstZvZiUMwZ69U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/266caf-3b43-49e0-b6e1-9c174e53e4fe/1/EEXazIN3mMPmzzH00nlGozsN5mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d0c2:1::/48
Signature Algorithm: sha256WithRSAEncryption
1b:c7:2a:a7:a0:81:71:5d:7f:63:3f:37:b4:96:0a:5a:d4:03:
04:f6:bb:c7:cd:ee:fb:55:22:a0:71:e0:92:20:63:47:44:6b:
91:1b:fa:3b:ff:fb:70:d4:a3:ba:9a:e0:fc:e4:c1:1c:66:21:
f3:94:67:f0:75:ab:1b:7e:a9:d5:a9:71:e6:f1:74:ac:41:4b:
a6:46:2a:e9:9a:3a:4f:3f:9f:1a:43:73:22:67:70:29:80:2d:
2a:73:b0:9a:01:e1:b3:e1:77:85:7a:ed:da:1f:3d:24:99:f1:
e8:43:16:24:42:c3:92:95:e5:52:2d:86:11:b1:c0:32:00:06:
86:9c:f5:26:0b:84:2c:16:bc:19:0f:22:90:8c:ff:2f:7a:a7:
c8:90:28:33:4b:20:69:88:84:1e:95:9d:c5:92:bb:56:3f:11:
f8:07:d5:7e:f2:1a:3f:cf:df:b6:de:e6:72:c8:c6:0a:c9:b9:
e8:6e:4b:06:b0:fa:f5:7c:d4:65:76:da:ea:5c:51:e0:1e:f3:
23:a6:33:7e:6c:eb:c0:37:ec:0e:66:ef:05:ac:39:c8:9d:42:
56:12:ee:af:e1:9a:76:67:3f:d8:6e:a6:96:ae:9f:b4:2b:1c:
5b:93:39:42:98:31:ef:e2:1c:ba:7c:13:37:96:48:20:ab:e7:
c4:4e:53:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:42 2025 by rpki-client