Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MiUfn99ERu47NhvGlXeCwNbaiLU.roa
File: MiUfn99ERu47NhvGlXeCwNbaiLU.roa (raw, json)
Hash identifier: uL2qsRNSGRrSP67i5yg6zlNR3ENfs93PDSMR1904WC4=
Subject key identifier: 32:25:1F:9F:DF:44:46:EE:3B:36:1B:C6:95:77:82:C0:D6:DA:88:B5
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0184094E998ABE6D212672CE0D4F55571B9C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MiUfn99ERu47NhvGlXeCwNbaiLU.roa
Signing time: Mon 24 Oct 2022 09:24:16 +0000
ROA not before: Mon 24 Oct 2022 09:24:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a12:f540::/29 maxlen: 29
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:4e:99:8a:be:6d:21:26:72:ce:0d:4f:55:57:1b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 24 09:24:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32251f9fdf4446ee3b361bc6957782c0d6da88b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a1:dc:44:0d:3e:b4:81:ef:5f:2e:17:fb:1e:
b9:ed:b8:00:59:85:cb:27:76:39:23:e5:9f:83:57:
12:66:b4:b2:57:1a:5e:83:01:4f:ab:21:5b:74:87:
ad:96:37:1f:4a:17:db:c0:5d:55:e9:c0:e3:9d:fc:
0d:ca:7e:2e:b7:8d:eb:2d:02:1e:14:d7:0c:17:8c:
2f:2d:45:f3:5b:5b:b3:e4:92:4e:e8:3e:1f:7c:92:
9d:ab:01:6e:8e:4b:a5:f7:86:cc:5c:a5:50:0d:d4:
dc:b9:e1:1d:08:d1:a0:1a:89:ae:e3:72:66:40:04:
0e:03:a3:d3:ca:bc:cc:a3:fa:23:cd:74:11:bb:67:
d9:c2:6e:2b:a9:e3:6a:43:86:14:ab:1f:3d:28:80:
af:42:a3:95:39:e1:f3:90:11:38:fb:fe:65:95:80:
d2:5b:48:84:5d:e5:59:ff:9e:b3:12:7c:13:e2:c4:
9c:f3:75:bf:41:6d:fa:a0:aa:de:44:10:0c:bc:aa:
34:4c:66:26:54:7c:30:eb:b3:15:ca:aa:f1:e4:ca:
69:35:cb:08:36:42:21:e3:a2:6f:f6:0e:31:dc:82:
e8:ff:40:aa:e8:0d:9d:a5:98:90:37:2a:11:18:9d:
a0:d8:72:43:b8:89:bb:99:35:90:77:71:f1:c6:36:
c6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:25:1F:9F:DF:44:46:EE:3B:36:1B:C6:95:77:82:C0:D6:DA:88:B5
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MiUfn99ERu47NhvGlXeCwNbaiLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/32
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/29
2a12:d540::/29
2a12:f540::/29
Signature Algorithm: sha256WithRSAEncryption
18:6f:a6:1f:1c:9e:1d:11:1c:2c:e9:82:45:55:6d:ee:43:7d:
14:b5:0d:2a:3c:02:44:ab:d3:22:34:7e:15:62:ad:87:3a:b7:
98:97:f5:5f:42:e9:0b:1e:bf:c6:ff:d0:1d:6b:3c:07:e8:eb:
d6:8a:2c:b3:94:96:00:ed:7b:1e:54:e9:88:4e:ad:cb:cd:2d:
18:9d:de:8d:75:9b:fb:17:14:e0:8f:c2:bd:89:85:5a:ad:84:
bd:71:3c:11:62:95:05:4e:68:70:be:cf:b6:a1:37:99:83:3f:
54:74:67:13:56:e0:dc:a8:2e:24:c8:a2:78:0b:2f:56:21:2b:
18:50:70:94:7c:06:19:ff:5e:f7:5d:b0:fe:3b:f7:36:48:0d:
bd:5b:b0:37:7c:05:23:7e:96:bf:7a:e1:80:79:9d:a4:43:d0:
15:04:4f:09:33:f9:81:cb:02:c5:a4:8c:5e:c4:fe:03:95:f4:
9f:4a:a4:3a:22:0f:b2:f4:f1:57:d2:f9:e5:5f:cc:ba:41:dc:
da:93:ff:3e:b5:2d:e4:25:d6:63:60:b7:db:79:ab:6e:a8:74:
3d:a6:cb:d7:88:2f:9f:3f:a1:ae:7d:30:f5:46:62:a6:e0:bf:
74:31:eb:8f:af:19:8c:85:c0:27:22:b5:06:f1:d0:45:25:19:
7f:c0:ef:38
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgISAYQJTpmKvm0hJnLODU9VVxucMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMDI0MDkyNDE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjI1MWY5ZmRmNDQ0NmVlM2IzNjFiYzY5NTc3ODJjMGQ2ZGE4OGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaHcRA0+tIHvXy4X+x657bgAWYXL
J3Y5I+Wfg1cSZrSyVxpegwFPqyFbdIetljcfShfbwF1V6cDjnfwNyn4ut43rLQIe
FNcMF4wvLUXzW1uz5JJO6D4ffJKdqwFujkul94bMXKVQDdTcueEdCNGgGomu43Jm
QAQOA6PTyrzMo/ojzXQRu2fZwm4rqeNqQ4YUqx89KICvQqOVOeHzkBE4+/5llYDS
W0iEXeVZ/56zEnwT4sSc83W/QW36oKreRBAMvKo0TGYmVHww67MVyqrx5MppNcsI
NkIh46Jv9g4x3ILo/0Cq6A2dpZiQNyoRGJ2g2HJDuIm7mTWQd3HxxjbG5QIDAQAB
o4IC1DCCAtAwHQYDVR0OBBYEFDIlH5/fREbuOzYbxpV3gsDW2oi1MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvTWlVZm45OUVSdTQ3Tmh2R2xYZUN3TmJhaUxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHpBggrBgEFBQcBBwEB/wSB2TCB1jCB0wQCAAIwgcwDBQMq
B/MAAwUDKgySQAMFACoOGoADBQMqDlqAAwUAKg7HgAMFASoPCgADBwAqDx4AASMD
BwAqDx4ABFYDBwAqDx4ACYcDBwAqDx4ACrwDBwAqDx4A3vkDBwAqDx6BEpMDBwAq
Dx6BQxkDBwAqDx6BkugDBwAqDx6Bo9ADBwAqDx6Bza4DBQMqDyEAAwcAKg89gAEj
AwUAKg89ggMFACoPPYQDBQAqDz2HAwUAKg/oQgMFAyoP6UADBQMqEqxAAwUDKhLV
QAMFAyoS9UAwDQYJKoZIhvcNAQELBQADggEBABhvph8cnh0RHCzpgkVVbe5DfRS1
DSo8AkSr0yI0fhVirYc6t5iX9V9C6Qsev8b/0B1rPAfo69aKLLOUlgDtex5U6YhO
rcvNLRid3o11m/sXFOCPwr2JhVqthL1xPBFilQVOaHC+z7ahN5mDP1R0ZxNW4Nyo
LiTIongLL1YhKxhQcJR8Bhn/XvddsP479zZIDb1bsDd8BSN+lr964YB5naRD0BUE
Twkz+YHLAsWkjF7E/gOV9J9KpDoiD7L08VfS+eVfzLpB3NqT/z61LeQl1mNgt9t5
q26odD2my9eIL58/oa59MPVGYqbgv3Qx64+vGYyFwCcitQbx0EUlGX/A7zg=
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:48 2025 by rpki-client