Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/G6sQNgDyZW-g5rJGnTkvOID_7-Q.roa
File: G6sQNgDyZW-g5rJGnTkvOID_7-Q.roa (raw, json)
Hash identifier: cN5FgDwSaB2EdZ1P8gAwHgsnx9h8EDiYYU7Dds5Lnjg=
Subject key identifier: 1B:AB:10:36:00:F2:65:6F:A0:E6:B2:46:9D:39:2F:38:80:FF:EF:E4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02916277
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/G6sQNgDyZW-g5rJGnTkvOID_7-Q.roa
Signing time: Wed 30 Mar 2022 22:58:57 +0000
ROA not before: Wed 30 Mar 2022 22:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7203
IP address blocks: 2a0f:1e84::/32 maxlen: 32
2a0f:e0c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43082359 (0x2916277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 30 22:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bab103600f2656fa0e6b2469d392f3880ffefe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:44:3f:7b:f3:4c:1a:94:6e:61:7b:be:26:
b7:94:b1:36:4f:d3:81:6c:eb:0d:ae:49:a1:a1:77:
70:85:b9:be:a0:87:82:48:25:5e:95:5d:e0:06:8f:
2a:c1:61:9c:31:37:2e:75:2a:d5:1e:a6:3a:d3:20:
95:19:7b:e3:3d:72:0f:1b:4d:da:0d:4b:39:6e:5b:
80:cf:f3:7b:95:b1:40:a5:54:d6:84:a6:9b:b8:c4:
e7:46:d4:cc:6c:6f:4f:da:a2:37:32:bb:b2:2a:a5:
b2:81:fd:2f:28:6c:11:a7:b2:f6:31:2c:ae:a6:7e:
90:d8:97:53:9e:26:93:d8:5b:95:4b:f5:be:0c:97:
7c:10:eb:f6:c3:58:ac:0b:7a:e9:50:d9:bf:a4:fa:
a6:0b:3f:38:00:19:c9:16:a4:aa:f2:ad:7a:c0:e8:
cf:84:b0:6b:44:10:9a:db:31:46:49:24:6f:06:41:
ac:bc:ff:83:9b:77:6b:9e:83:87:aa:84:60:2d:a2:
06:c7:44:d3:f0:b9:38:c2:8f:11:06:f2:f5:3a:5d:
fd:5d:58:fe:12:26:8c:ec:e6:7f:0a:83:56:a8:54:
9a:e5:8b:c2:59:fb:22:dd:34:d9:f8:c3:3f:1a:eb:
b5:20:d7:0f:f4:47:a2:62:0c:ff:15:c5:39:88:75:
05:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AB:10:36:00:F2:65:6F:A0:E6:B2:46:9D:39:2F:38:80:FF:EF:E4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/G6sQNgDyZW-g5rJGnTkvOID_7-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:1e84::/32
2a0f:e0c0::/29
Signature Algorithm: sha256WithRSAEncryption
6b:7f:6f:81:cf:13:52:3f:21:2c:9d:5a:8f:21:fb:b5:cd:d3:
3b:87:ac:ad:ac:f7:13:cb:0c:a6:da:6d:9c:47:aa:14:22:f8:
ab:c4:1a:38:03:fd:be:c4:dc:32:80:f9:9e:5e:a5:df:e3:f7:
2f:41:17:13:d6:62:43:7a:46:08:f0:7b:04:f5:41:f8:89:c6:
d2:ab:b5:93:a6:3a:6e:80:e5:f8:d8:1d:43:0b:a9:78:b7:e2:
eb:50:a1:50:3d:18:86:db:41:ff:4d:4d:6c:39:d8:9c:fc:1d:
f5:b0:88:1d:47:bd:50:c1:38:3c:b1:f5:62:e9:aa:e8:6c:aa:
2a:0a:36:99:be:92:e0:5a:34:51:ac:d8:86:fb:79:c4:cf:c9:
09:74:6d:d6:97:da:93:de:ca:57:02:47:12:a3:2b:47:8c:a3:
44:71:82:70:8b:45:89:65:07:97:73:88:90:a5:d7:3c:a1:d8:
d7:e0:8c:1b:b3:79:fd:8c:e7:5a:1b:fa:78:ee:32:c9:8a:f2:
80:70:b5:a8:a4:ef:98:39:67:c3:85:fd:20:5f:ec:d5:a8:99:
d0:f2:2a:72:c7:c2:6e:8b:81:ce:ef:c2:14:0f:3d:99:0f:9b:
d0:5b:7d:44:c1:a7:82:91:d6:3d:73:c0:0b:ed:a8:09:5f:18:
d4:10:70:bb
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEApFidzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU1OWFhZmJmYzA5MzEyNDJlMWQ2MzcyOThjZjFkZDIyM2U0YzI2MB4XDTIyMDMz
MDIyNTg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWJhYjEwMzYwMGYy
NjU2ZmEwZTZiMjQ2OWQzOTJmMzg4MGZmZWZlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMjARD9780walG5he74mt5SxNk/TgWzrDa5JoaF3cIW5vqCH
gkglXpVd4AaPKsFhnDE3LnUq1R6mOtMglRl74z1yDxtN2g1LOW5bgM/ze5WxQKVU
1oSmm7jE50bUzGxvT9qiNzK7siqlsoH9LyhsEaey9jEsrqZ+kNiXU54mk9hblUv1
vgyXfBDr9sNYrAt66VDZv6T6pgs/OAAZyRakqvKtesDoz4Swa0QQmtsxRkkkbwZB
rLz/g5t3a56Dh6qEYC2iBsdE0/C5OMKPEQby9Tpd/V1Y/hImjOzmfwqDVqhUmuWL
wln7It002fjDPxrrtSDXD/RHomIM/xXFOYh1BaMCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQbqxA2APJlb6DmskadOS84gP/v5DAfBgNVHSMEGDAWgBR9VZqvv8CTEkLh
1jcpjPHdIj5MJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWV2FyN19Ba3hKQzRkWTNLWXp4M1NJLVRDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvNDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8x
L0c2c1FOZ0R5WlctZzVySkduVGt2T0lEXzctUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
NDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8xL2ZWV2FyN19Ba3hK
QzRkWTNLWXp4M1NJLVRDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAIwDgMFACoPHoQDBQMqD+DAMA0GCSqGSIb3
DQEBCwUAA4IBAQBrf2+BzxNSPyEsnVqPIfu1zdM7h6ytrPcTywym2m2cR6oUIvir
xBo4A/2+xNwygPmeXqXf4/cvQRcT1mJDekYI8HsE9UH4icbSq7WTpjpugOX42B1D
C6l4t+LrUKFQPRiG20H/TU1sOdic/B31sIgdR71QwTg8sfVi6arobKoqCjaZvpLg
WjRRrNiG+3nEz8kJdG3Wl9qT3spXAkcSoytHjKNEcYJwi0WJZQeXc4iQpdc8odjX
4Iwbs3n9jOdaG/p47jLJivKAcLWopO+YOWfDhf0gX+zVqJnQ8ipyx8Jui4HO78IU
Dz2ZD5vQW31EwaeCkdY9c8AL7agJXxjUEHC7
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:30:20 2025 by rpki-client