Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/rmrxGPqaKstxaK2AiLs8G2PRAEg.roa
File: rmrxGPqaKstxaK2AiLs8G2PRAEg.roa (raw, json)
Hash identifier: /fGUYUvdnw3Os8QuT/KI3sCmnYp5YDL0zDpjEqNJjgY=
Subject key identifier: AE:6A:F1:18:FA:9A:2A:CB:71:68:AD:80:88:BB:3C:1B:63:D1:00:48
Certificate issuer: /CN=712f2269d15633bdbc71d8cd3f458cbd03fe031f
Certificate serial: 0186E4B894AF396E43B54CDF5703DEE4BCAC
Authority key identifier: 71:2F:22:69:D1:56:33:BD:BC:71:D8:CD:3F:45:8C:BD:03:FE:03:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS8iadFWM728cdjNP0WMvQP-Ax8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/rmrxGPqaKstxaK2AiLs8G2PRAEg.roa
Signing time: Wed 15 Mar 2023 10:02:27 +0000
ROA not before: Wed 15 Mar 2023 10:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212616
IP address blocks: 2a0e:5b00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:b8:94:af:39:6e:43:b5:4c:df:57:03:de:e4:bc:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712f2269d15633bdbc71d8cd3f458cbd03fe031f
Validity
Not Before: Mar 15 10:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae6af118fa9a2acb7168ad8088bb3c1b63d10048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:65:e9:3e:80:5d:6d:83:62:13:ca:17:de:
b3:dc:d6:67:c9:5a:02:05:00:b5:20:fe:47:01:e6:
7e:f6:8d:a3:a2:8f:83:7d:c1:19:a2:dc:f6:fd:b2:
2e:23:01:11:06:ea:ab:98:24:e7:1c:28:29:24:85:
b3:35:ac:31:0f:ae:67:e6:08:3c:f0:7b:76:6a:6e:
ce:78:c4:0f:51:8d:58:a3:af:60:e3:77:8e:4e:1e:
5f:5e:cc:07:37:d5:74:b8:97:a1:44:0c:4e:ff:59:
db:d0:e7:58:b9:b6:3c:5b:8d:19:ad:58:8c:a8:82:
6b:42:c8:4e:35:54:41:ab:93:bb:c6:56:85:19:2c:
9e:ca:2e:89:21:de:4b:72:09:0b:15:ae:85:d6:19:
59:6f:6c:7a:d5:2a:97:0d:dc:5d:92:74:14:ed:90:
6f:9b:89:09:9a:02:81:15:b0:05:90:a8:ea:c9:0b:
6e:45:7b:c9:88:0c:d6:7a:96:40:df:61:11:7a:0e:
59:0b:f7:cd:1b:97:c0:e1:94:e2:46:bb:d2:89:aa:
60:5e:7a:d7:ae:3a:38:29:51:38:bd:57:23:96:c7:
ab:b4:3b:e8:9d:bc:b7:a8:ca:e9:76:91:65:ca:27:
6a:dc:12:3a:16:f6:88:a7:a4:f3:3f:d2:20:96:2c:
84:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6A:F1:18:FA:9A:2A:CB:71:68:AD:80:88:BB:3C:1B:63:D1:00:48
X509v3 Authority Key Identifier:
keyid:71:2F:22:69:D1:56:33:BD:BC:71:D8:CD:3F:45:8C:BD:03:FE:03:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS8iadFWM728cdjNP0WMvQP-Ax8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/rmrxGPqaKstxaK2AiLs8G2PRAEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/cS8iadFWM728cdjNP0WMvQP-Ax8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5b00::/29
Signature Algorithm: sha256WithRSAEncryption
0a:be:f4:4f:df:b8:42:58:57:4c:ca:2e:f7:c9:6d:7d:87:69:
b3:36:cc:f7:b1:ba:21:b0:21:7e:58:dc:00:44:31:72:11:77:
a6:f5:14:df:1e:f1:b0:3d:05:40:a3:ff:4c:5c:f6:fe:a5:bb:
de:68:5a:7e:a8:da:40:56:3c:85:88:a8:75:a0:e9:7a:10:b2:
fc:80:d3:fd:ac:a2:90:af:b4:35:e1:0e:03:5b:c7:72:c3:20:
41:ea:e8:a8:e7:2e:d7:b8:43:fa:35:fe:55:3a:38:7c:ef:28:
1e:28:a2:bd:7d:a9:82:f8:99:5e:06:38:97:1b:65:1c:d2:9c:
a1:33:66:89:ff:89:f9:e0:96:c6:57:53:bc:23:61:84:1b:f5:
37:b6:18:61:eb:04:59:e4:77:1e:10:65:6b:18:ac:8a:49:05:
cc:f0:b2:bb:42:18:c7:7e:dd:8c:7b:3c:75:b7:db:1e:59:fb:
fc:11:55:1e:7f:4d:3a:f7:90:3f:a1:29:a1:a0:61:39:48:b8:
ae:0c:82:4c:b6:e4:cd:f6:8e:4a:c2:e2:cc:c0:ef:52:ff:98:
a8:26:fd:cd:32:19:8a:a7:46:ee:28:f9:9a:3f:19:c9:6e:ba:
a3:7b:f4:db:8a:eb:20:84:13:d9:8a:a4:24:74:d3:96:31:01:
53:04:97:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 10:16:15 2025 by rpki-client