Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Pq3-EuqGPQ8DV4Qmiav6H4Dk7wE.roa
File: Pq3-EuqGPQ8DV4Qmiav6H4Dk7wE.roa (raw, json)
Hash identifier: YAsoq/y6p13orN2JmmRQorXdVO6ufzsi6HQqbnGCPWs=
Subject key identifier: 3E:AD:FE:12:EA:86:3D:0F:03:57:84:26:89:AB:FA:1F:80:E4:EF:01
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 3AD5B2F8
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Pq3-EuqGPQ8DV4Qmiav6H4Dk7wE.roa
Signing time: Wed 29 Jun 2022 13:44:02 +0000
ROA not before: Wed 29 Jun 2022 13:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8278
IP address blocks: 2001:648:2960::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 987083512 (0x3ad5b2f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jun 29 13:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eadfe12ea863d0f0357842689abfa1f80e4ef01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c6:91:cc:f6:4c:30:95:99:44:49:72:ae:df:
66:b9:da:cc:4a:ea:31:99:7d:cf:8b:f0:dc:c4:b0:
16:25:83:84:16:77:08:b8:75:b0:73:dc:62:96:97:
98:04:fe:e8:92:92:37:ea:5f:3b:de:b2:84:cf:9a:
db:90:dd:40:4e:c3:03:7d:5b:18:41:0c:45:2e:55:
f3:47:f8:9a:4f:2d:ae:c2:04:36:c5:30:92:8c:fd:
30:6d:eb:ab:e7:d1:e0:a2:37:30:dc:55:56:26:31:
9d:72:f6:75:00:ba:c3:27:cb:a7:55:7c:7d:fc:8c:
9d:2b:91:11:22:d6:51:b3:63:1c:65:06:1d:54:5b:
84:d8:ef:f3:4b:99:ed:4f:7c:54:0e:aa:3a:da:00:
c9:ae:f1:e0:55:c2:96:47:cf:e5:0d:9b:a8:07:dd:
ed:f1:72:95:c2:96:d4:62:70:1e:7f:87:95:71:7e:
44:79:f5:00:04:f8:f5:4a:a6:5f:5d:ce:bb:4f:ce:
ba:47:3d:ae:84:13:c1:ed:e0:a5:5b:8b:a0:02:d6:
85:d1:0e:41:42:05:3d:0f:d5:00:39:95:39:4c:aa:
0c:c9:ff:6b:e1:e4:58:e2:5b:5d:5c:76:2b:da:2c:
80:1e:d6:0e:cd:ff:16:36:3c:d7:82:77:70:6e:9f:
7a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AD:FE:12:EA:86:3D:0F:03:57:84:26:89:AB:FA:1F:80:E4:EF:01
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Pq3-EuqGPQ8DV4Qmiav6H4Dk7wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:648:2960::/48
Signature Algorithm: sha256WithRSAEncryption
70:06:d3:3b:27:c7:63:62:ad:0e:83:21:a7:bf:5f:ee:af:53:
e9:ac:e2:c9:a9:2f:59:37:3b:3e:63:17:ed:46:eb:0b:d6:f0:
90:6a:70:cb:0a:3d:be:e4:50:82:7a:a2:bc:1c:0f:97:47:c3:
81:df:1f:df:c3:41:ac:9a:86:8f:00:4b:b9:dd:0a:46:54:12:
20:c5:c2:9e:65:74:3e:cb:86:ab:af:8c:2a:e4:f8:00:4e:f3:
f5:b1:6a:78:b5:09:15:82:f5:a4:48:b4:0d:3e:31:37:96:d0:
e7:be:09:4b:d4:c6:80:b3:05:fc:2b:6c:0d:f8:46:32:5b:ee:
8b:11:88:67:af:20:26:f9:c2:cc:df:0e:56:b4:90:99:01:11:
36:3c:62:d9:58:fb:b2:4d:b1:ec:16:5c:ed:e9:57:4e:2d:cb:
3c:7f:0d:9f:df:31:91:8c:2d:e9:e5:d7:0a:49:65:ab:d6:6f:
6f:50:d8:e3:69:60:a4:92:48:89:37:e8:72:40:71:3f:fd:3a:
62:a4:01:27:5c:aa:b9:70:bd:7a:61:dc:cb:f0:79:44:e4:98:
0b:84:88:59:07:95:b4:aa:46:42:d8:ef:43:80:1e:e2:e7:e6:
93:5b:cb:59:7e:a5:ac:eb:cd:40:4e:10:6e:49:b7:89:46:cc:
93:ce:44:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 12:52:28 2025 by rpki-client