Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/u4JuZL4Xje01HbfCY5W5OSfou48.roa
File: u4JuZL4Xje01HbfCY5W5OSfou48.roa (raw, json)
Hash identifier: SZYArxX34+7seMV9JJlmXj7eZsNT9IZf4QRTxgWBsp4=
Subject key identifier: BB:82:6E:64:BE:17:8D:ED:35:1D:B7:C2:63:95:B9:39:27:E8:BB:8F
Certificate issuer: /CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Certificate serial: 057D480C
Authority key identifier: 4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/u4JuZL4Xje01HbfCY5W5OSfou48.roa
Signing time: Sat 01 Jan 2022 05:03:31 +0000
ROA not before: Sat 01 Jan 2022 05:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47350
IP address blocks: 2a09:9584::/30 maxlen: 48
2a09:9580::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92096524 (0x57d480c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Validity
Not Before: Jan 1 05:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb826e64be178ded351db7c26395b93927e8bb8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d6:19:06:2e:76:d6:9c:40:26:35:b9:b0:42:
50:ab:c4:33:e7:02:55:8d:7a:a9:a2:24:d4:9e:04:
d4:3b:c5:fb:77:ec:c1:84:5d:52:39:fc:b4:d7:9a:
b8:4a:9e:bf:e7:b9:ba:ce:6c:bb:b3:74:a6:9b:8a:
f2:88:74:11:a5:da:ea:65:34:44:1c:0c:e2:cc:4c:
53:3c:f6:53:8c:9d:9a:34:be:b1:84:3e:2f:8f:31:
29:22:fc:3b:2b:b0:75:ad:e5:d6:15:94:e6:7c:2b:
27:e5:b5:10:18:f3:49:f5:6c:00:c2:55:b3:be:94:
3e:d9:b1:d9:7c:9a:e1:d2:b9:62:f5:6b:db:01:4e:
00:03:a4:62:ed:84:fa:4a:bf:b2:15:bd:bf:82:5c:
02:2a:37:3c:dc:14:f2:97:a3:89:df:0e:1a:77:6e:
c7:4d:9d:10:65:30:d6:42:e3:5c:d6:d2:9c:fe:89:
c8:ed:9b:aa:91:7c:e6:f0:2e:7b:fa:f7:4b:04:2d:
e4:14:0d:37:7d:18:f1:e7:33:23:c8:5a:13:e6:1b:
19:7a:08:9d:60:42:31:fb:c2:92:76:c6:38:63:a6:
7e:82:b7:24:51:e7:a0:9a:9c:47:7d:0e:aa:9a:f8:
5c:b0:71:47:c0:9d:e2:02:a7:f5:60:8d:68:f5:56:
f1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:82:6E:64:BE:17:8D:ED:35:1D:B7:C2:63:95:B9:39:27:E8:BB:8F
X509v3 Authority Key Identifier:
keyid:4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/u4JuZL4Xje01HbfCY5W5OSfou48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/Ss70X7sPJpMK64M895_EHiLKkjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9580::/29
Signature Algorithm: sha256WithRSAEncryption
95:6b:a1:d6:43:b9:b7:ec:63:cb:a4:ac:c0:4f:b8:b7:c4:66:
10:f5:05:df:1c:1e:fb:c5:7b:6e:77:15:e8:a3:b7:36:2d:1e:
0a:e3:19:df:cf:e9:cf:0c:bc:68:59:c0:55:2c:26:0f:d5:d7:
00:2e:8d:6f:6c:c6:8b:be:da:b6:03:9e:e7:5d:85:c7:9b:a0:
f9:10:e2:bc:97:9d:f0:05:05:31:f2:d9:1a:e3:a5:ee:cd:06:
6c:d4:78:c1:25:b3:bf:5b:5d:9a:ff:e6:d4:ab:ea:8b:15:0e:
fb:1d:94:3c:20:54:d8:1d:30:ac:f3:cd:b8:1f:27:f3:c0:d9:
e2:a1:d5:fb:a3:01:a5:b1:ff:24:26:ac:5c:4a:0b:74:a1:fd:
0c:12:5c:0b:4b:d5:57:db:89:a6:38:21:95:91:58:48:4b:81:
1a:5d:4e:04:42:78:5a:2e:07:2e:43:44:43:81:27:c0:c9:e0:
86:2b:a9:20:c4:eb:c0:55:83:d3:5c:d9:62:af:b4:50:3c:54:
d5:ad:90:5f:2a:ec:f7:d2:95:08:78:bc:54:94:21:60:4b:1a:
a1:f9:05:b1:a5:f6:b3:d6:40:98:df:77:d6:da:b5:8d:21:bd:
39:2b:d4:46:04:b7:f7:77:9e:1c:5b:34:4c:ee:4f:b3:cd:89:
8b:48:87:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:03 2025 by rpki-client