Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/W0bYV7jskU5fQNn5u6g6Rizl1lo.roa
File: W0bYV7jskU5fQNn5u6g6Rizl1lo.roa (raw, json)
Hash identifier: Mr70WXHa8Xxa9u0gybAw22Ueyb4z5KJjCJf3KHZl5oU=
Subject key identifier: 5B:46:D8:57:B8:EC:91:4E:5F:40:D9:F9:BB:A8:3A:46:2C:E5:D6:5A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018234D447422D221512CA0F37362E1F10EE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/W0bYV7jskU5fQNn5u6g6Rizl1lo.roa
Signing time: Mon 25 Jul 2022 10:08:23 +0000
ROA not before: Mon 25 Jul 2022 10:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7081
IP address blocks: 2a0f:e540::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:34:d4:47:42:2d:22:15:12:ca:0f:37:36:2e:1f:10:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 25 10:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b46d857b8ec914e5f40d9f9bba83a462ce5d65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b2:dd:3f:ba:8b:c4:0f:04:d8:fe:1a:ff:16:
bf:16:58:f1:c3:a0:6f:6c:fa:7e:8b:dc:db:8a:67:
6d:62:82:b5:33:66:36:f9:71:20:4f:52:ef:ec:bb:
11:c7:20:0a:61:d8:cd:9a:d2:9f:2f:3d:f8:cb:04:
0e:f2:1b:3b:cc:f2:6e:d6:df:fb:81:63:62:26:de:
7a:42:0b:c8:ac:d3:97:d9:dd:2e:df:a7:21:c9:04:
8e:f3:2b:36:40:b9:df:2b:62:09:e5:9c:c6:60:ed:
da:9d:5f:c6:57:a9:61:2e:1b:5e:73:83:3b:c8:b1:
ae:76:73:e8:69:4c:73:88:5c:38:97:ed:28:52:7b:
e5:32:0c:b3:f1:c9:39:12:b6:00:ae:62:ce:a7:83:
41:64:37:0f:c5:47:b7:60:4e:41:42:01:c9:cf:31:
3c:54:89:dc:23:69:7b:e3:2a:b1:12:15:6d:7d:d0:
d5:f5:79:fc:d2:44:2a:90:3f:d3:19:2b:19:14:d2:
bc:dd:0d:b4:c9:14:cc:b4:09:13:89:24:66:ae:4e:
a6:03:dd:cd:92:c5:87:ac:75:09:5c:bd:0a:20:ae:
e9:e2:27:71:da:c3:0f:85:dc:f1:81:7a:19:5b:d5:
81:fb:39:3e:dd:7f:b6:70:99:87:d4:32:1b:55:6b:
97:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:46:D8:57:B8:EC:91:4E:5F:40:D9:F9:BB:A8:3A:46:2C:E5:D6:5A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/W0bYV7jskU5fQNn5u6g6Rizl1lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e540::/32
Signature Algorithm: sha256WithRSAEncryption
6f:55:1c:ed:4d:18:3d:cd:c7:05:30:f7:9e:6e:bd:be:64:b5:
e4:61:5c:ad:eb:cb:41:41:76:48:51:71:33:fb:7b:6b:77:30:
e6:be:79:38:dd:51:55:42:9f:f4:f8:bc:dc:13:59:b1:28:51:
9d:bc:19:dc:92:fc:46:1f:f1:20:a8:ec:86:8b:4a:e6:9f:4e:
f7:53:90:b1:1d:f3:cf:b5:18:bc:cc:28:d9:9b:9e:c2:7a:a5:
21:e4:e1:fb:2f:ce:b7:c8:73:b4:6b:62:8a:2b:da:3a:3e:fb:
d0:fc:0f:6f:58:ba:96:8f:9c:47:33:f1:67:36:f6:92:b9:d3:
36:07:4c:0a:3e:df:0d:6d:bd:3b:fa:19:c5:14:01:ce:7c:e9:
c5:5b:0f:d4:ae:b2:89:4f:c0:ea:16:e6:bd:5c:51:3d:0b:7a:
a7:a8:2c:4b:ba:ea:90:53:b5:47:4d:59:16:76:c1:26:ad:4a:
10:c2:e4:4c:2f:24:f1:20:be:6c:ca:35:e1:12:3d:6b:44:80:
ee:3a:d7:1a:c7:7b:e1:cf:6c:66:49:0a:d6:73:84:9a:24:43:
95:51:bb:dc:c8:1a:e8:d1:db:f2:ef:70:71:f0:60:c9:ed:c4:
05:a4:71:65:b7:1b:98:b3:99:2f:c7:9c:bf:4b:75:48:73:af:
5e:27:a6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:55:02 2025 by rpki-client