Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VxQsjUqY5KBIWtjW6ydfl8-XnzI.roa
File: VxQsjUqY5KBIWtjW6ydfl8-XnzI.roa (raw, json)
Hash identifier: 9+kwidpIWl69wjCcp4Oyc+GJZEehjNQND0+3AxNVrwY=
Subject key identifier: 57:14:2C:8D:4A:98:E4:A0:48:5A:D8:D6:EB:27:5F:97:CF:97:9F:32
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01849F29F4F0A8EF2C55855163458AB238D6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VxQsjUqY5KBIWtjW6ydfl8-XnzI.roa
Signing time: Tue 22 Nov 2022 11:47:17 +0000
ROA not before: Tue 22 Nov 2022 11:47:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:39c1::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a0f:39c0::/32 maxlen: 32
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac40:f::/48 maxlen: 48
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:29:f4:f0:a8:ef:2c:55:85:51:63:45:8a:b2:38:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 22 11:47:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57142c8d4a98e4a0485ad8d6eb275f97cf979f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bd:82:f2:c4:16:42:bd:b4:a2:29:c4:19:35:
15:17:1f:8b:43:8e:68:75:35:43:a0:cc:fb:7f:52:
86:14:68:52:b1:4b:38:43:0e:13:ea:d7:72:4b:0c:
38:04:8f:13:6b:fd:8b:e2:66:6f:29:f4:58:84:19:
c4:1d:18:05:38:07:1b:02:7b:b1:d2:0e:3c:c8:71:
fe:3e:80:ee:38:bc:d6:b4:18:bf:ef:c2:22:a4:62:
8c:9f:11:4f:d1:44:a7:e5:e3:de:05:d6:e4:05:d8:
47:c3:c0:4c:50:2e:39:6f:2b:b3:04:b1:76:4e:bd:
37:7a:0c:17:24:88:35:85:da:77:16:54:0c:2a:33:
4b:a0:5a:88:ff:c2:8f:42:a8:bc:dc:58:8d:9e:9a:
29:dd:1d:c8:1e:bb:cc:c8:f0:7f:00:e5:07:fe:51:
89:fb:16:08:d5:45:9b:ed:bf:ef:11:d4:94:c7:5d:
c2:5f:d1:01:d2:3c:29:be:3c:5d:bf:6d:0b:c6:d3:
61:ba:29:10:9c:a6:a9:3f:6c:94:0f:f2:54:65:0c:
5e:d5:fc:74:37:88:f5:dd:36:1e:ab:5d:f8:94:02:
35:7c:2a:6e:ae:d5:9c:33:1b:28:fb:dd:88:fe:6a:
7d:7b:64:33:19:c9:a6:1c:7f:ea:f1:ab:2e:49:51:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:14:2C:8D:4A:98:E4:A0:48:5A:D8:D6:EB:27:5F:97:CF:97:9F:32
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VxQsjUqY5KBIWtjW6ydfl8-XnzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/32
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:39c0::/31
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
36:7d:17:f6:bd:87:01:16:a4:9a:fa:d7:66:19:e7:a1:a2:5e:
71:9e:f8:d4:da:dd:93:56:df:e3:b8:65:ff:c2:27:72:81:c7:
0d:dd:a0:9c:d4:79:78:bd:1a:e4:11:29:ad:5c:0a:dc:ea:5e:
0a:08:42:07:74:d2:0c:d1:1d:3a:d4:3f:e1:9d:ca:42:8d:e8:
ad:d9:80:e8:dc:bf:ad:92:bb:d5:7e:2b:1a:7e:35:26:45:21:
58:7d:46:b5:3c:6b:67:3c:ef:62:14:58:27:d0:25:cd:c0:05:
bf:5b:a3:7e:8f:e1:75:95:09:a4:ab:1b:60:51:b3:1d:2f:4a:
4b:1f:57:50:c8:cf:7e:72:47:da:64:df:c6:cf:b5:15:65:bb:
70:80:e5:52:fa:c7:20:64:40:26:bc:03:90:3a:8c:77:bb:d1:
24:ba:53:a9:ff:16:6d:19:26:c8:c4:98:16:e9:f2:91:3d:87:
ce:3c:80:f6:b4:07:43:23:2e:e3:f5:25:91:45:ab:76:d4:c6:
a2:4e:d6:0f:7e:85:59:67:4c:2c:2b:4b:c8:83:51:45:d6:2f:
8c:1a:60:b6:bc:94:b0:ce:fc:92:ae:15:53:d4:67:e9:91:08:
81:8b:9f:f5:1a:36:a1:57:3d:69:0b:25:fe:67:cc:fa:57:85:
f2:d5:1c:f0
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgISAYSfKfTwqO8sVYVRY0WKsjjWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMTIyMTE0NzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzE0MmM4ZDRhOThlNGEwNDg1YWQ4ZDZlYjI3NWY5N2NmOTc5ZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhr2C8sQWQr20oinEGTUVFx+LQ45o
dTVDoMz7f1KGFGhSsUs4Qw4T6tdySww4BI8Ta/2L4mZvKfRYhBnEHRgFOAcbAnux
0g48yHH+PoDuOLzWtBi/78IipGKMnxFP0USn5ePeBdbkBdhHw8BMUC45byuzBLF2
Tr03egwXJIg1hdp3FlQMKjNLoFqI/8KPQqi83FiNnpop3R3IHrvMyPB/AOUH/lGJ
+xYI1UWb7b/vEdSUx13CX9EB0jwpvjxdv20LxtNhuikQnKapP2yUD/JUZQxe1fx0
N4j13TYeq134lAI1fCpurtWcMxso+92I/mp9e2QzGcmmHH/q8asuSVGsSwIDAQAB
o4IC0TCCAs0wHQYDVR0OBBYEFFcULI1KmOSgSFrY1usnX5fPl58yMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvVnhRc2pVcVk1S0JJV3RqVzZ5ZGZsOC1YbnpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHmBggrBgEFBQcBBwEB/wSB1jCB0zCB0AQCAAIwgckDBQMq
B/MAAwUAKg4agAMFAyoOWoADBQAqDseAAwUBKg8KAAMHACoPHgABIwMHACoPHgAE
VgMHACoPHgAJhwMHACoPHgAKvAMHACoPHgDe+QMHACoPHoESkwMHACoPHoFDGQMH
ACoPHoGS6AMHACoPHoGj0AMHACoPHoHNrgMFASoPOcADBwAqDz2AASMDBQAqDz2C
AwUAKg89hAMFACoPPYcDBQAqD+hCAwUDKg/pQAMHACoSrEAAAAMHACoSrEAADwMF
AyoS1UAwDQYJKoZIhvcNAQELBQADggEBADZ9F/a9hwEWpJr612YZ56GiXnGe+NTa
3ZNW3+O4Zf/CJ3KBxw3doJzUeXi9GuQRKa1cCtzqXgoIQgd00gzRHTrUP+GdykKN
6K3ZgOjcv62Su9V+Kxp+NSZFIVh9RrU8a2c872IUWCfQJc3ABb9bo36P4XWVCaSr
G2BRsx0vSksfV1DIz35yR9pk38bPtRVlu3CA5VL6xyBkQCa8A5A6jHe70SS6U6n/
Fm0ZJsjEmBbp8pE9h848gPa0B0MjLuP1JZFFq3bUxqJO1g9+hVlnTCwrS8iDUUXW
L4waYLa8lLDO/JKuFVPUZ+mRCIGLn/UaNqFXPWkLJf5nzPpXhfLVHPA=
-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:42 2025 by rpki-client