Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KfvNFt_vfdAIpQaHwkQodDwp3Vo.roa
File: KfvNFt_vfdAIpQaHwkQodDwp3Vo.roa (raw, json)
Hash identifier: UTsRo/r01hq1RZFMjocKhAxu2/9lRJ28FRQTgoNNzgw=
Subject key identifier: 29:FB:CD:16:DF:EF:7D:D0:08:A5:06:87:C2:44:28:74:3C:29:DD:5A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018645F9E164439F9938C04AB07343E03431
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KfvNFt_vfdAIpQaHwkQodDwp3Vo.roa
Signing time: Sun 12 Feb 2023 14:14:09 +0000
ROA not before: Sun 12 Feb 2023 14:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 2a12:ecc0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:45:f9:e1:64:43:9f:99:38:c0:4a:b0:73:43:e0:34:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 12 14:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29fbcd16dfef7dd008a50687c24428743c29dd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5d:f4:58:20:9c:9a:11:48:86:8d:66:8a:df:
15:4a:a3:e1:62:ca:cd:8c:9e:02:3e:f8:bd:96:7e:
aa:11:1e:48:7a:7f:c6:57:ce:4d:a5:54:c2:c3:00:
9d:d1:fb:2e:be:90:b6:cd:81:32:83:17:5d:e8:37:
17:e4:35:d8:1c:ba:9b:c0:71:c0:99:5f:36:15:d2:
cb:db:bb:cf:89:6d:18:b4:20:df:d9:cb:6d:f3:9f:
0f:53:46:0a:ec:eb:e9:5b:9c:00:29:b3:19:83:3f:
c7:fe:da:6f:e5:f2:1c:ad:2f:65:c8:88:3a:9c:f9:
69:f8:eb:2e:b7:13:6b:27:8b:2e:21:5c:ff:53:80:
93:b1:f0:a1:b9:d0:bf:4f:b4:ea:2c:ac:a3:bc:4d:
75:ae:a2:28:cb:ec:ac:d0:4c:10:d9:13:54:5e:4d:
e2:43:71:2f:58:c4:c4:dc:45:fd:5c:a0:46:d6:21:
a9:7b:e7:bf:bf:20:49:b4:51:da:0c:2f:61:85:0a:
5b:d4:24:9f:e0:70:5a:5a:94:b7:c1:cc:a9:3b:5e:
27:f3:b9:0a:d0:25:43:f4:ab:4d:0f:f3:d1:16:48:
a0:1a:b2:90:b6:cf:fa:29:84:c3:4d:b6:f1:17:d7:
7a:67:72:21:03:89:f7:77:28:3a:b3:9a:5b:e6:08:
a7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FB:CD:16:DF:EF:7D:D0:08:A5:06:87:C2:44:28:74:3C:29:DD:5A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KfvNFt_vfdAIpQaHwkQodDwp3Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ecc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
78:a7:4f:b1:a8:eb:47:be:42:88:bf:29:02:d4:8f:30:4e:a1:
3d:e5:b9:bc:84:f5:78:3b:70:ed:fb:c3:3a:2b:dc:c5:ed:55:
41:6c:73:59:bc:0f:af:25:9a:fb:00:71:bd:cb:3a:bf:b0:82:
a2:62:ba:0e:06:0c:38:ad:ad:f5:0b:46:6a:1a:44:71:3a:36:
53:2e:b8:52:f1:5d:2c:2b:f0:d2:91:52:9a:76:15:3d:ed:97:
18:b0:c8:38:20:0c:85:44:24:cf:f5:80:5b:ac:95:8f:cd:42:
33:2e:ad:c5:a7:13:79:2b:07:4a:70:40:7b:5a:b2:cb:5b:33:
9d:2a:14:7e:44:f0:03:0a:d6:71:76:82:22:36:3b:3d:fe:e9:
d9:40:46:65:bd:f6:26:11:a9:ef:fa:35:b1:b4:0c:07:7d:b3:
22:23:9a:12:a3:4b:71:8d:ec:9d:d8:0f:e1:90:61:ec:c4:11:
37:41:3f:b5:4b:d6:3f:3b:69:45:2f:2a:c9:8b:aa:4f:db:2b:
c4:43:ff:f6:9a:7a:56:51:fc:e7:05:20:fc:a2:73:4e:75:ea:
36:1b:bb:75:e8:e1:84:ee:14:83:64:65:f6:56:94:20:59:69:
08:3d:0a:ff:8f:87:41:08:63:40:88:cd:6a:af:f4:5a:c3:a4:
03:c5:f1:24
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYZF+eFkQ5+ZOMBKsHND4DQxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwMjEyMTQxNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOWZiY2QxNmRmZWY3ZGQwMDhhNTA2ODdjMjQ0Mjg3NDNjMjlkZDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV30WCCcmhFIho1mit8VSqPhYsrN
jJ4CPvi9ln6qER5Ien/GV85NpVTCwwCd0fsuvpC2zYEygxdd6DcX5DXYHLqbwHHA
mV82FdLL27vPiW0YtCDf2ctt858PU0YK7OvpW5wAKbMZgz/H/tpv5fIcrS9lyIg6
nPlp+OsutxNrJ4suIVz/U4CTsfChudC/T7TqLKyjvE11rqIoy+ys0EwQ2RNUXk3i
Q3EvWMTE3EX9XKBG1iGpe+e/vyBJtFHaDC9hhQpb1CSf4HBaWpS3wcypO14n87kK
0CVD9KtND/PRFkigGrKQts/6KYTDTbbxF9d6Z3IhA4n3dyg6s5pb5ginAwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCn7zRbf733QCKUGh8JEKHQ8Kd1aMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvS2Z2TkZ0X3ZmZEFJcFFhSHdrUW9kRHdwM1ZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhLswAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQB4p0+xqOtHvkKIvykC1I8wTqE95bm8hPV4O3Dt
+8M6K9zF7VVBbHNZvA+vJZr7AHG9yzq/sIKiYroOBgw4ra31C0ZqGkRxOjZTLrhS
8V0sK/DSkVKadhU97ZcYsMg4IAyFRCTP9YBbrJWPzUIzLq3FpxN5KwdKcEB7WrLL
WzOdKhR+RPADCtZxdoIiNjs9/unZQEZlvfYmEanv+jWxtAwHfbMiI5oSo0txjeyd
2A/hkGHsxBE3QT+1S9Y/O2lFLyrJi6pP2yvEQ//2mnpWUfznBSD8onNOdeo2G7t1
6OGE7hSDZGX2VpQgWWkIPQr/j4dBCGNAiM1qr/Raw6QDxfEk
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:49 2025 by rpki-client