Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HVYaBQ2xpmHvft5Fw3yfHkOOR2M.roa
File: HVYaBQ2xpmHvft5Fw3yfHkOOR2M.roa (raw, json)
Hash identifier: D6zDzkkyWpxADikgggJ1GoTs82Ia0/BnOc++DACPjs8=
Subject key identifier: 1D:56:1A:05:0D:B1:A6:61:EF:7E:DE:45:C3:7C:9F:1E:43:8E:47:63
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182D8CA8DFF77F1B1AC28CC885D8113C2E6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HVYaBQ2xpmHvft5Fw3yfHkOOR2M.roa
Signing time: Fri 26 Aug 2022 06:15:29 +0000
ROA not before: Fri 26 Aug 2022 06:15:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:a01::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e00:123::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a12:d540::/29 maxlen: 29
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d8:ca:8d:ff:77:f1:b1:ac:28:cc:88:5d:81:13:c2:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 26 06:15:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d561a050db1a661ef7ede45c37c9f1e438e4763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1f:4b:e2:3b:09:f6:e2:3f:79:a2:cf:a8:fc:
b8:77:99:fe:17:78:b4:e6:1f:9f:55:4a:2c:a3:29:
4d:1e:5c:4a:29:e0:b1:71:f2:3f:6f:ef:3d:2a:f4:
e4:4f:a9:18:62:68:29:c6:63:bd:a6:96:29:36:3e:
d2:f5:fb:84:3f:57:b7:46:72:aa:56:7b:fa:e5:11:
cb:32:2e:b9:6f:bd:7f:96:17:77:f6:90:62:37:c1:
96:d9:ca:a2:f4:c8:b3:31:95:c5:8c:37:f2:98:15:
c1:32:86:74:88:59:e3:89:1a:01:ec:9d:fe:3f:97:
f7:5e:14:a9:4b:48:bf:08:7a:e6:0d:51:54:32:5e:
46:50:7d:f0:97:77:87:d9:ee:6c:bb:4f:4f:75:9f:
b7:2a:89:d2:64:4a:22:72:2a:12:82:15:9f:5a:88:
bf:05:c4:9e:8c:ec:ec:07:81:92:76:4e:22:cf:7c:
c7:d7:02:b7:c0:43:8f:32:bf:10:19:fb:39:c0:c5:
81:56:4a:de:31:84:7f:a8:97:33:b2:c9:80:eb:3e:
df:01:97:42:ce:70:0f:e1:77:b9:b3:ea:9d:f5:8f:
84:a2:94:1a:35:6a:81:d8:55:ca:70:10:f5:6f:ff:
e5:13:b3:9e:7e:81:e1:fc:d8:60:1e:10:3d:8e:86:
bb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:56:1A:05:0D:B1:A6:61:EF:7E:DE:45:C3:7C:9F:1E:43:8E:47:63
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HVYaBQ2xpmHvft5Fw3yfHkOOR2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:5a80::/29
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e842::/32
2a12:ac40::/29
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
43:b8:be:a3:f3:b0:b2:5a:e5:25:51:ce:97:e5:76:31:a5:39:
8e:ce:28:6d:ca:38:6c:31:94:ff:74:5b:99:ea:5c:ac:e4:b8:
ff:8a:fc:3d:d1:2e:74:d0:d4:41:e8:e8:86:28:4c:d0:cc:fb:
ee:26:d7:50:38:2d:ad:3a:16:fa:68:a5:88:d9:59:fa:ab:f0:
e5:e0:d2:1c:eb:53:a2:83:ce:b8:18:44:d0:d1:22:e4:8f:9f:
29:32:dc:ef:c2:d3:d9:37:6b:5f:96:e7:e4:c0:a1:ce:9c:94:
15:69:07:81:5c:75:ba:78:c7:91:93:68:c2:67:17:fd:85:2a:
06:ab:22:7b:f8:0e:16:96:5a:81:0a:f9:c0:55:3b:d1:36:2f:
5b:79:9a:bb:ee:ff:e2:15:3c:f4:73:8e:e8:86:d3:6e:82:49:
01:17:56:fb:0b:65:51:24:90:15:4c:33:a7:d8:d3:4f:b0:07:
71:ae:a9:59:dc:f7:89:76:20:7b:eb:3f:8a:80:74:a4:dc:3e:
54:0e:2f:35:77:4a:46:26:d8:c6:29:88:11:b2:42:3a:03:f7:
55:27:c5:b9:cc:f1:68:d0:d6:e2:e9:c9:27:50:cd:f1:bd:50:
64:44:fc:20:3b:61:18:21:d9:5e:a8:5d:82:0a:8f:1d:a4:f7:
14:a2:41:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:21:41 2025 by rpki-client