Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RTXjkb7v1NPnvKDx2vgYsuTOVjQ.roa
File: RTXjkb7v1NPnvKDx2vgYsuTOVjQ.roa (raw, json)
Hash identifier: XT0wLI+Shkr7hI00WvL41sD4J/Ume5nVG0BSo9E0d/Y=
Subject key identifier: 45:35:E3:91:BE:EF:D4:D3:E7:BC:A0:F1:DA:F8:18:B2:E4:CE:56:34
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183C7A4E8C4EEA9BBAE5245A04254AC136D
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RTXjkb7v1NPnvKDx2vgYsuTOVjQ.roa
Signing time: Tue 11 Oct 2022 15:23:36 +0000
ROA not before: Tue 11 Oct 2022 15:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a12:d6c0::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0e:c780::/29 maxlen: 29
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:a4:e8:c4:ee:a9:bb:ae:52:45:a0:42:54:ac:13:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 11 15:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4535e391beefd4d3e7bca0f1daf818b2e4ce5634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b8:f4:0b:4b:de:d5:55:a7:95:54:90:bf:f7:
0e:e5:8a:fa:6a:f4:07:24:68:ad:34:d7:87:21:f0:
f0:fa:a3:39:98:4b:d2:f0:3a:f7:e9:8f:dd:da:47:
17:6b:ae:5c:fa:54:c3:69:88:3f:6b:f4:93:7d:61:
95:21:0c:68:b6:b7:06:9e:a5:d2:04:61:3e:9c:30:
df:5a:f7:7b:f1:db:25:06:74:af:ef:f0:01:7e:df:
85:05:11:d4:4b:ec:a8:74:ca:29:08:fd:df:0f:9c:
38:e4:b9:38:bb:7b:ac:27:47:76:10:06:16:be:fc:
c1:0d:46:1e:4c:ae:93:af:33:09:f0:ca:04:cd:fd:
3a:03:25:11:9d:8a:c8:0b:90:50:44:7e:1c:01:e9:
5a:4e:9c:7f:d7:46:19:60:57:bc:fa:6e:98:d3:b7:
c6:3c:22:2f:13:37:82:6e:49:3f:0c:bb:36:8e:1e:
1f:e5:95:bb:39:7c:65:41:a1:36:06:db:eb:a6:35:
be:22:02:f5:1a:2e:81:d7:a1:5a:aa:f9:9f:41:51:
35:b2:2c:68:f2:b0:0f:24:88:e0:95:79:e6:7a:fc:
b9:f3:04:6a:4f:f1:36:64:0b:e5:2c:26:55:51:e2:
b4:c3:b2:7d:2a:44:d3:62:4e:cc:2e:31:39:cc:5d:
13:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:35:E3:91:BE:EF:D4:D3:E7:BC:A0:F1:DA:F8:18:B2:E4:CE:56:34
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RTXjkb7v1NPnvKDx2vgYsuTOVjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:5a80::/29
2a0e:c780::/29
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/29
2a12:d540::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
7e:4f:39:5f:d6:53:40:68:f6:f2:62:c6:91:e1:0a:24:91:f6:
36:b3:2c:c1:be:96:57:a6:7d:75:19:11:50:84:81:f0:ac:32:
aa:11:04:4c:bd:34:4b:82:79:58:c4:79:e8:36:31:6a:3b:88:
e1:d1:5b:b6:1c:fd:7f:90:fa:93:37:a9:7e:9b:01:42:f4:27:
bb:24:fe:8b:53:90:b3:53:7b:0c:a3:2a:fc:ed:05:28:28:3c:
fe:92:fb:9c:53:86:3d:82:4a:4f:48:1c:cc:b0:27:02:03:05:
19:f5:30:28:7e:b9:60:62:f5:09:cc:45:34:f3:2e:7d:29:5a:
b4:9a:9b:e8:d5:c5:3c:da:39:e5:7d:5c:dd:a5:ab:76:d8:be:
87:f1:aa:e1:ad:15:d7:75:70:88:13:69:75:cd:a9:60:a2:2c:
a2:18:c4:0d:76:3d:2e:d0:6d:3b:be:72:6b:a0:0c:2f:7b:66:
15:5e:47:a4:6e:8c:d4:32:57:74:d1:53:1c:4f:ca:38:92:58:
c1:f3:72:46:aa:82:81:72:b0:9d:24:de:c8:6c:6d:e6:b6:02:
cb:18:a5:c9:fc:4b:6d:45:04:d7:a7:cc:81:4b:35:ea:a5:0c:
88:fc:33:65:76:06:ae:1c:85:07:6d:00:46:0b:29:a2:bd:83:
33:fa:eb:2c
-----BEGIN CERTIFICATE-----
MIIFwTCCBKmgAwIBAgISAYPHpOjE7qm7rlJFoEJUrBNtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMDExMTUyMzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTM1ZTM5MWJlZWZkNGQzZTdiY2EwZjFkYWY4MThiMmU0Y2U1NjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLj0C0ve1VWnlVSQv/cO5Yr6avQH
JGitNNeHIfDw+qM5mEvS8Dr36Y/d2kcXa65c+lTDaYg/a/STfWGVIQxotrcGnqXS
BGE+nDDfWvd78dslBnSv7/ABft+FBRHUS+yodMopCP3fD5w45Lk4u3usJ0d2EAYW
vvzBDUYeTK6TrzMJ8MoEzf06AyURnYrIC5BQRH4cAelaTpx/10YZYFe8+m6Y07fG
PCIvEzeCbkk/DLs2jh4f5ZW7OXxlQaE2BtvrpjW+IgL1Gi6B16FaqvmfQVE1sixo
8rAPJIjglXnmevy58wRqT/E2ZAvlLCZVUeK0w7J9KkTTYk7MLjE5zF0T3wIDAQAB
o4ICzTCCAskwHQYDVR0OBBYEFEU145G+79TT57yg8dr4GLLkzlY0MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvUlRYamtiN3YxTlBudktEeDJ2Z1lzdVRPVmpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHiBggrBgEFBQcBBwEB/wSB0jCBzzCBzAQCAAIwgcUDBQMq
B/MAAwUDKgySQAMFAyoOWoADBQMqDseAAwUBKg8KAAMHACoPHgABIwMHACoPHgAE
VgMHACoPHgAJhwMHACoPHgAKvAMHACoPHgDe+QMHACoPHoESkwMHACoPHoFDGQMH
ACoPHoGS6AMHACoPHoGj0AMHACoPHoHNrgMFAyoPIQADBwAqDz2AASMDBQAqDz2C
AwUAKg89hAMFACoPPYcDBQAqD+hCAwUDKg/pQAMFAyoSrEADBQMqEtVAAwUDKhLW
wDANBgkqhkiG9w0BAQsFAAOCAQEAfk85X9ZTQGj28mLGkeEKJJH2NrMswb6WV6Z9
dRkRUISB8KwyqhEETL00S4J5WMR56DYxajuI4dFbthz9f5D6kzepfpsBQvQnuyT+
i1OQs1N7DKMq/O0FKCg8/pL7nFOGPYJKT0gczLAnAgMFGfUwKH65YGL1CcxFNPMu
fSlatJqb6NXFPNo55X1c3aWrdti+h/Gq4a0V13VwiBNpdc2pYKIsohjEDXY9LtBt
O75ya6AML3tmFV5HpG6M1DJXdNFTHE/KOJJYwfNyRqqCgXKwnSTeyGxt5rYCyxil
yfxLbUUE16fMgUs16qUMiPwzZXYGrhyFB20ARgspor2DM/rrLA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:07 2025 by rpki-client