Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AB6zuJT8TyTY4D4yMW89v9hGvL8.roa
File: AB6zuJT8TyTY4D4yMW89v9hGvL8.roa (raw, json)
Hash identifier: +txeG0Cuq5kVaMmhibxRK4AliudmMLO+tRikaQEzvE0=
Subject key identifier: 00:1E:B3:B8:94:FC:4F:24:D8:E0:3E:32:31:6F:3D:BF:D8:46:BC:BF
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0184BD57134AB25DD7F4DD0FF5921830F0A0
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AB6zuJT8TyTY4D4yMW89v9hGvL8.roa
Signing time: Mon 28 Nov 2022 08:25:11 +0000
ROA not before: Mon 28 Nov 2022 08:25:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61003
IP address blocks: 2a13:200::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:57:13:4a:b2:5d:d7:f4:dd:0f:f5:92:18:30:f0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 28 08:25:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=001eb3b894fc4f24d8e03e32316f3dbfd846bcbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fa:98:8b:1a:d8:0e:26:66:1a:13:cc:93:d6:
d4:48:e3:49:3d:2f:aa:42:17:dd:66:55:ca:8f:0e:
11:57:13:24:55:70:c8:98:80:4e:7e:fb:1a:41:9f:
f2:15:91:e1:bf:4e:e1:f0:cb:84:ce:7a:f8:e0:58:
14:d2:0a:d0:fe:92:59:40:2d:f4:40:85:fe:76:84:
64:9b:5f:de:73:26:0a:01:bc:db:10:fc:49:80:e0:
5c:71:4b:46:ff:77:82:be:d7:54:68:16:7d:36:9f:
7a:d5:fd:a7:6e:4b:79:48:5c:18:1e:f9:56:53:9f:
d3:61:c1:e9:99:02:98:fe:0e:26:60:2c:29:fd:85:
12:f8:33:8c:d9:38:7f:1d:f6:ce:ba:db:7b:cf:63:
15:91:b6:44:b8:1a:b7:78:9a:ef:9f:d4:02:0a:d7:
12:03:db:ba:65:74:04:9b:73:87:7f:be:55:a0:d7:
c6:7c:bb:41:5d:13:75:c3:ef:80:34:54:1c:81:97:
01:01:92:4e:4a:be:2e:d4:08:c5:2f:df:e2:93:f2:
45:57:2c:49:84:c4:05:74:56:7a:13:79:23:d5:c4:
84:9b:fc:3d:19:5d:df:c4:86:f5:38:b5:d2:02:1b:
27:fb:9e:b5:e5:2f:65:a3:d9:7f:56:07:bf:df:c0:
e4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1E:B3:B8:94:FC:4F:24:D8:E0:3E:32:31:6F:3D:BF:D8:46:BC:BF
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AB6zuJT8TyTY4D4yMW89v9hGvL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:200::/29
Signature Algorithm: sha256WithRSAEncryption
21:df:d3:74:4b:0e:b5:dd:95:82:2b:fd:8e:1c:fe:03:73:a0:
5d:28:56:fb:90:76:3b:0c:3e:fd:66:c0:14:9b:10:9f:74:c0:
eb:77:3e:82:0c:36:18:1a:50:ce:f5:fe:11:f7:fb:54:73:92:
d1:49:48:93:9e:b9:5c:c5:1d:a5:61:86:73:0a:d2:d3:90:34:
88:70:53:c0:d3:f1:5b:6e:26:00:bc:86:64:13:82:39:2a:c4:
0d:52:22:6c:19:5e:af:16:47:e4:29:93:3f:a2:da:96:ad:ca:
bc:b3:b1:7d:05:aa:eb:8e:56:9f:f9:58:de:42:16:95:a3:b8:
a6:2b:33:84:7c:85:4a:30:16:90:86:ad:2e:ad:66:5c:c0:10:
60:2c:68:ca:fd:c0:f4:d8:af:c5:f9:dd:39:ec:48:c9:83:95:
dd:18:90:98:15:6b:e4:a8:01:45:ab:72:76:d4:ce:c1:31:96:
a6:24:7f:b9:59:96:9b:c3:ed:f6:7d:60:0b:45:0b:a3:34:2a:
95:2e:ff:d3:32:c4:c6:0e:ea:ce:a7:65:ca:f7:79:89:89:6d:
7f:bf:ba:57:09:fb:97:a8:c1:17:b8:ed:3f:b9:06:13:f6:d9:
76:4a:1d:6d:27:de:8b:25:0a:32:16:8d:f1:54:e4:33:b9:3e:
52:26:4a:da
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYS9VxNKsl3X9N0P9ZIYMPCgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMTI4MDgyNTExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDFlYjNiODk0ZmM0ZjI0ZDhlMDNlMzIzMTZmM2RiZmQ4NDZiY2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvqYixrYDiZmGhPMk9bUSONJPS+q
QhfdZlXKjw4RVxMkVXDImIBOfvsaQZ/yFZHhv07h8MuEznr44FgU0grQ/pJZQC30
QIX+doRkm1/ecyYKAbzbEPxJgOBccUtG/3eCvtdUaBZ9Np961f2nbkt5SFwYHvlW
U5/TYcHpmQKY/g4mYCwp/YUS+DOM2Th/HfbOutt7z2MVkbZEuBq3eJrvn9QCCtcS
A9u6ZXQEm3OHf75VoNfGfLtBXRN1w++ANFQcgZcBAZJOSr4u1AjFL9/ik/JFVyxJ
hMQFdFZ6E3kj1cSEm/w9GV3fxIb1OLXSAhsn+5615S9lo9l/Vge/38DkHQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAAes7iU/E8k2OA+MjFvPb/YRry/MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvQUI2enVKVDhUeVRZNEQ0eU1XODl2OWhHdkw4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMCADAN
BgkqhkiG9w0BAQsFAAOCAQEAId/TdEsOtd2Vgiv9jhz+A3OgXShW+5B2Oww+/WbA
FJsQn3TA63c+ggw2GBpQzvX+Eff7VHOS0UlIk565XMUdpWGGcwrS05A0iHBTwNPx
W24mALyGZBOCOSrEDVIibBlerxZH5CmTP6Lalq3KvLOxfQWq645Wn/lY3kIWlaO4
piszhHyFSjAWkIatLq1mXMAQYCxoyv3A9NivxfndOexIyYOV3RiQmBVr5KgBRaty
dtTOwTGWpiR/uVmWm8Pt9n1gC0ULozQqlS7/0zLExg7qzqdlyvd5iYltf7+6Vwn7
l6jBF7jtP7kGE/bZdkodbSfeiyUKMhaN8VTkM7k+UiZK2g==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:32 2025 by rpki-client