Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/LkmWtHn0U_MKhIK0yOpg9RTohn4.roa
File: LkmWtHn0U_MKhIK0yOpg9RTohn4.roa (raw, json)
Hash identifier: oEVjyJlNeHiL/Ats6Z3FcHH1gBKa7X0wl2Aj1iPYEGM=
Subject key identifier: 2E:49:96:B4:79:F4:53:F3:0A:84:82:B4:C8:EA:60:F5:14:E8:86:7E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182D66C796236902EE3E64F2B1EFA71219B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/LkmWtHn0U_MKhIK0yOpg9RTohn4.roa
Signing time: Thu 25 Aug 2022 19:13:29 +0000
ROA not before: Thu 25 Aug 2022 19:13:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201364
IP address blocks: 2a0f:2705::/32 maxlen: 32
2a0f:ee05::/32 maxlen: 32
2a0b:b740::/32 maxlen: 32
2a0f:ee04::/32 maxlen: 32
2a0f:2704::/32 maxlen: 32
2a0b:b742::/32 maxlen: 32
2a0f:db46::/32 maxlen: 32
2a0f:2707::/32 maxlen: 32
2a0f:e9c6::/32 maxlen: 32
2a0f:ee00::/29 maxlen: 29
2a0f:e9c5::/32 maxlen: 32
2a0f:ee07::/32 maxlen: 32
2a0b:b743::/32 maxlen: 32
2a0f:2700::/29 maxlen: 29
2a0b:b744::/32 maxlen: 32
2a0f:e9c3::/32 maxlen: 32
2a0f:db45::/32 maxlen: 32
2a0b:b740::/29 maxlen: 29
2a0f:ee03::/32 maxlen: 32
2a0f:dd45::/32 maxlen: 32
2a0f:ee00::/32 maxlen: 32
2a0b:b747::/32 maxlen: 32
2a0f:2700::/32 maxlen: 32
2a0f:2703::/32 maxlen: 32
2a0f:ee06::/32 maxlen: 32
2a0b:b741::/32 maxlen: 32
2a0f:2706::/32 maxlen: 32
2a0f:e9c0::/32 maxlen: 32
2a0f:dd42::/32 maxlen: 32
2a0f:db41::/32 maxlen: 32
2a0f:dd43::/32 maxlen: 32
2a0f:db42::/32 maxlen: 32
2a0f:dd41::/32 maxlen: 32
2a0b:b746::/32 maxlen: 32
2a0f:dd44::/32 maxlen: 32
2a0f:dd40::/32 maxlen: 32
2a0f:db43::/32 maxlen: 32
2a0f:e9c2::/32 maxlen: 32
2a0f:db40::/32 maxlen: 32
2a0f:ee01::/32 maxlen: 32
2a0f:db44::/32 maxlen: 32
2a0f:dd46::/32 maxlen: 32
2a0f:2701::/32 maxlen: 32
2a0b:b745::/32 maxlen: 32
2a0f:ee02::/32 maxlen: 32
2a0f:e9c0::/29 maxlen: 29
2a0f:2702::/32 maxlen: 32
2a0f:dd47::/32 maxlen: 32
2a0f:db40::/29 maxlen: 29
2a0f:db47::/32 maxlen: 32
2a0f:e9c1::/32 maxlen: 32
2a0f:e9c4::/32 maxlen: 32
2a0f:dd40::/29 maxlen: 29
2a0f:e9c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d6:6c:79:62:36:90:2e:e3:e6:4f:2b:1e:fa:71:21:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 25 19:13:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e4996b479f453f30a8482b4c8ea60f514e8867e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:af:e5:c4:01:fe:a5:5b:96:83:6e:42:fb:47:
81:8c:3c:0c:0e:07:1c:ac:e6:f4:3f:aa:02:e8:6e:
dc:11:f1:7b:d3:dd:b7:88:8e:7a:02:29:90:47:dd:
61:07:93:56:23:12:8b:30:49:aa:08:32:f1:1a:69:
44:82:79:fc:10:c9:33:58:38:28:b6:e0:37:b5:ab:
40:bf:bb:f4:77:16:3a:6f:d3:11:7c:fb:ca:7a:82:
ba:0f:53:01:87:49:dd:ac:dc:c5:24:a3:8b:81:7b:
45:c7:d3:d4:63:54:32:2d:84:d2:4c:ea:f7:0f:2b:
50:6f:7d:6a:de:bc:99:fd:c0:b4:db:57:de:6d:f7:
00:dc:b8:17:19:55:ce:a2:4d:75:7b:b4:3e:9f:7f:
8d:72:d9:74:71:8a:33:bd:aa:90:1f:40:e8:59:fb:
ac:45:34:ae:2f:65:ed:91:16:03:66:d5:ad:90:7c:
3e:4a:e6:67:11:b7:fc:58:f1:c6:00:08:a4:42:24:
e7:68:37:44:a3:e6:af:14:db:3f:02:99:a6:3a:d1:
15:98:dd:fa:07:15:05:81:e2:84:01:4e:fe:eb:07:
82:5c:46:cb:bb:0a:07:b5:c8:09:0b:f1:09:af:60:
81:7d:ee:f5:af:b6:19:81:af:2b:50:af:12:3e:4e:
5c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:49:96:B4:79:F4:53:F3:0A:84:82:B4:C8:EA:60:F5:14:E8:86:7E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/LkmWtHn0U_MKhIK0yOpg9RTohn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b740::/29
2a0f:2700::/29
2a0f:db40::/29
2a0f:dd40::/29
2a0f:e9c0::/29
2a0f:ee00::/29
Signature Algorithm: sha256WithRSAEncryption
52:c6:1b:8b:cc:1c:78:41:62:a4:88:da:96:d7:b3:d3:5c:b8:
44:4b:19:e4:5b:38:a9:f8:71:67:f7:58:37:bd:64:14:dc:2f:
fa:8f:88:9e:46:81:74:a3:55:e2:9b:2f:41:d4:3d:bd:e0:21:
b5:f4:c6:15:89:c4:84:c0:f7:44:d5:43:41:65:c6:8e:da:9a:
9d:80:05:8d:00:87:a6:6f:f9:78:a4:2c:5e:b2:df:86:13:ee:
25:44:b5:5e:ec:d0:dc:d8:e6:5e:17:c9:c6:cc:b5:aa:5e:cb:
9e:b7:48:4c:c6:a7:78:a8:ff:1c:b6:7e:73:d8:17:e5:5e:b5:
f1:6f:a2:68:49:65:09:88:cd:8f:9b:3f:a2:25:6c:cc:e1:62:
7f:f5:2b:ed:01:d0:64:6e:98:bb:ed:e9:35:36:d1:14:ac:08:
43:db:f1:a2:f2:b3:ec:e3:2d:c7:40:67:2c:14:73:21:d0:93:
0b:74:a6:a3:2c:b2:ed:a7:84:8a:34:08:8e:7b:d2:31:07:1f:
a8:ba:60:4a:69:6e:c0:10:47:59:58:d8:85:4f:20:b2:60:24:
6c:5d:bd:df:04:39:03:b4:29:ef:16:d7:fd:80:d3:f5:d1:25:
88:85:4a:ff:2b:ec:2e:0a:4e:af:a3:12:92:b9:02:ad:f1:18:
22:60:4f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:16:38 2025 by rpki-client