Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3oezmpdtB0yvvsX9fL9rV7b58T4.roa
File: 3oezmpdtB0yvvsX9fL9rV7b58T4.roa (raw, json)
Hash identifier: l99nDPnGPwO1sw5jXPRmFdfNH8+RWxCP1Db5/jJXSp4=
Subject key identifier: DE:87:B3:9A:97:6D:07:4C:AF:BE:C5:FD:7C:BF:6B:57:B6:F9:F1:3E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182271B6EDCA46316127AF3A448A987FCB5
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3oezmpdtB0yvvsX9fL9rV7b58T4.roa
Signing time: Fri 22 Jul 2022 18:11:25 +0000
ROA not before: Fri 22 Jul 2022 18:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0f:e040:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:27:1b:6e:dc:a4:63:16:12:7a:f3:a4:48:a9:87:fc:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 22 18:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de87b39a976d074cafbec5fd7cbf6b57b6f9f13e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c7:41:fc:d1:75:13:4b:56:58:e7:7e:ea:90:
78:77:a2:d7:68:42:94:01:30:3f:73:1e:36:af:8b:
8b:83:bf:5c:63:c9:c2:fa:e0:c8:ad:c1:cc:9f:81:
a3:0c:ba:80:cf:0d:ac:b9:03:e0:ca:d3:72:6a:c2:
36:62:44:85:38:62:e3:a4:22:77:3e:b7:35:d7:4d:
88:3b:82:38:cf:cc:c7:a2:88:8b:d5:96:1d:fc:92:
ab:a2:37:84:ac:6f:4d:ff:39:4e:3e:8c:b6:9a:2d:
27:ea:68:e9:ee:66:4c:44:5d:52:dc:bc:4d:72:53:
91:6d:af:83:11:f4:88:4b:f1:2d:46:10:bd:28:95:
79:96:ce:00:4f:60:41:b7:b0:1e:80:93:1a:16:75:
c8:5a:f0:2a:9e:55:c8:9f:8b:54:0e:6e:9a:82:18:
5c:e4:47:03:fe:98:58:e9:e9:01:11:7e:42:5c:ac:
94:1e:55:94:7c:56:20:52:00:76:1b:d8:45:fc:3d:
f7:91:55:11:4d:9b:00:31:f1:13:90:81:19:c2:d2:
85:40:23:4a:6b:bb:73:44:f7:cf:25:b3:2c:d4:84:
f3:c7:af:2c:f1:86:55:c4:95:b9:d2:4d:a4:d3:35:
1f:c1:a5:cc:95:83:5d:5c:82:72:64:76:e7:6a:28:
50:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:87:B3:9A:97:6D:07:4C:AF:BE:C5:FD:7C:BF:6B:57:B6:F9:F1:3E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3oezmpdtB0yvvsX9fL9rV7b58T4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e040:2::/48
Signature Algorithm: sha256WithRSAEncryption
45:ae:84:ac:61:47:09:f1:91:ad:08:0a:d3:f6:61:66:26:bb:
d8:24:b3:cb:53:23:5c:90:62:18:f0:1e:f3:52:d7:ab:04:b0:
bc:dd:b8:66:13:55:d4:f9:29:30:95:40:1a:c8:37:c1:66:c9:
42:b7:56:ae:4a:11:29:b3:0c:d4:34:cd:49:7f:10:3e:6c:c3:
54:5b:e0:35:f8:3e:2f:69:8b:93:d6:0c:38:49:b3:49:1a:c8:
98:a9:1c:32:e8:7c:f1:08:9e:d7:93:3f:bd:a2:86:60:a0:bd:
c8:9c:ee:2d:38:76:a8:31:82:33:82:a2:65:e4:84:53:85:db:
74:15:e0:54:72:c8:17:23:d2:21:fa:f1:db:d8:1f:7a:a0:b8:
44:ab:96:cf:7c:25:a8:15:dd:f1:83:87:70:4c:65:41:8a:70:
f4:5b:6e:27:bd:b2:22:52:29:28:3e:ca:cb:1a:e0:bc:8e:0d:
ef:d1:66:79:2b:72:3a:23:4f:37:14:b2:af:f1:d7:d0:01:a5:
30:03:16:8c:6e:b1:02:b8:ee:f6:91:6d:51:82:24:ec:40:bf:
4d:45:e8:d2:87:a4:22:73:83:8d:fb:ce:d7:d5:1a:98:e0:7a:
9c:a7:27:f2:0f:28:84:3a:db:46:0a:dd:ac:c0:ed:c4:dc:ab:
72:a7:27:54
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYInG27cpGMWEnrzpEiph/y1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIwNzIyMTgxMTI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTg3YjM5YTk3NmQwNzRjYWZiZWM1ZmQ3Y2JmNmI1N2I2ZjlmMTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsdB/NF1E0tWWOd+6pB4d6LXaEKU
ATA/cx42r4uLg79cY8nC+uDIrcHMn4GjDLqAzw2suQPgytNyasI2YkSFOGLjpCJ3
Prc1102IO4I4z8zHooiL1ZYd/JKrojeErG9N/zlOPoy2mi0n6mjp7mZMRF1S3LxN
clORba+DEfSIS/EtRhC9KJV5ls4AT2BBt7AegJMaFnXIWvAqnlXIn4tUDm6aghhc
5EcD/phY6ekBEX5CXKyUHlWUfFYgUgB2G9hF/D33kVURTZsAMfETkIEZwtKFQCNK
a7tzRPfPJbMs1ITzx68s8YZVxJW50k2k0zUfwaXMlYNdXIJyZHbnaihQjwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFN6Hs5qXbQdMr77F/Xy/a1e2+fE+MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvM29lem1wZHRCMHl2dnNYOWZMOXJWN2I1OFQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg/gQAAC
MA0GCSqGSIb3DQEBCwUAA4IBAQBFroSsYUcJ8ZGtCArT9mFmJrvYJLPLUyNckGIY
8B7zUterBLC83bhmE1XU+SkwlUAayDfBZslCt1auShEpswzUNM1JfxA+bMNUW+A1
+D4vaYuT1gw4SbNJGsiYqRwy6HzxCJ7Xkz+9ooZgoL3InO4tOHaoMYIzgqJl5IRT
hdt0FeBUcsgXI9Ih+vHb2B96oLhEq5bPfCWoFd3xg4dwTGVBinD0W24nvbIiUiko
PsrLGuC8jg3v0WZ5K3I6I083FLKv8dfQAaUwAxaMbrECuO72kW1RgiTsQL9NRejS
h6Qic4ON+87X1RqY4HqcpyfyDyiEOttGCt2swO3E3KtypydU
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:33 2025 by rpki-client