Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/W32mLi07wue0JxoWPD9hYJl4-Oo.roa
File: W32mLi07wue0JxoWPD9hYJl4-Oo.roa (raw, json)
Hash identifier: om3edlH3ub4g1KAi8LxUpmzfQwxuSEYql4Qb/T9Lv54=
Subject key identifier: 5B:7D:A6:2E:2D:3B:C2:E7:B4:27:1A:16:3C:3F:61:60:99:78:F8:EA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182B5E675D9D63A4D9A048A8CA7AFEE9C25
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/W32mLi07wue0JxoWPD9hYJl4-Oo.roa
Signing time: Fri 19 Aug 2022 11:39:15 +0000
ROA not before: Fri 19 Aug 2022 11:39:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204084
IP address blocks: 2a0f:e740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b5:e6:75:d9:d6:3a:4d:9a:04:8a:8c:a7:af:ee:9c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 19 11:39:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b7da62e2d3bc2e7b4271a163c3f61609978f8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:48:91:df:93:c5:db:f3:bf:1c:a7:01:80:
32:d2:18:87:b9:b6:bd:b5:e1:8d:8d:bf:07:f0:c9:
91:47:76:5a:61:d0:11:d9:15:1d:ed:04:1b:97:e1:
44:0f:27:05:a3:de:50:d6:9f:42:f7:7a:4e:30:93:
44:dc:d0:14:35:c5:76:96:98:97:99:1a:af:80:05:
a5:ee:fc:c0:5b:c0:78:36:3c:a4:6d:09:07:8f:c1:
74:94:8a:47:1d:61:7a:c4:2c:73:6f:db:c9:dd:8e:
fc:15:62:49:c4:90:6e:d0:6f:db:49:38:30:17:f2:
12:9d:35:0e:0c:4a:44:37:a2:f8:40:9d:e6:ed:fa:
69:25:39:a1:4f:a7:01:25:cd:b5:b8:5e:d3:68:a7:
72:5a:73:79:85:a7:14:0c:62:95:cd:c3:e9:6d:bf:
f6:63:ba:bc:4c:cb:55:c6:36:4e:36:a1:a6:94:38:
10:fe:ac:03:c2:4d:8c:a4:1e:be:52:85:df:59:eb:
f8:76:df:d2:fa:61:21:f1:e6:2c:dc:c1:6e:ce:bb:
ba:14:64:22:17:a6:41:00:a1:fe:fe:b6:7e:43:6c:
0c:f7:65:3d:88:6d:8e:1a:60:aa:2d:c5:2a:79:a0:
d1:d4:dc:1d:57:b6:68:29:22:68:4a:b0:f2:10:be:
66:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7D:A6:2E:2D:3B:C2:E7:B4:27:1A:16:3C:3F:61:60:99:78:F8:EA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/W32mLi07wue0JxoWPD9hYJl4-Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e740::/29
Signature Algorithm: sha256WithRSAEncryption
b6:23:db:55:c2:02:a2:e6:da:5a:b2:c0:d8:57:62:e1:96:d1:
8d:85:d5:0a:3d:53:d6:2c:6b:8c:1a:5d:ab:59:71:eb:09:66:
4b:48:41:be:dd:19:06:ae:e5:cf:b5:ce:70:da:37:c7:64:52:
f4:f9:8f:bc:42:fa:19:a8:95:e5:a2:ee:d2:da:cc:2c:13:ef:
fb:42:2d:9a:0d:1e:67:ee:86:ef:04:59:ab:e2:94:5e:20:69:
83:8c:53:a3:50:7a:08:53:64:46:08:45:aa:39:cc:ad:15:dd:
c7:da:2a:dd:b8:40:ab:43:22:e0:d5:67:14:8d:60:b7:60:3d:
ca:b8:b0:ee:8e:ca:b4:68:59:a5:e5:97:15:05:15:9e:54:ba:
c2:57:31:1d:40:85:51:82:11:9b:4e:14:47:59:98:b3:cb:02:
30:3e:db:4a:9b:50:1e:0e:1f:30:8d:03:5b:5b:69:0b:3a:ed:
dc:88:50:6c:a9:d4:81:98:22:9c:5f:88:dd:e7:ac:8b:92:e4:
8b:d2:07:4a:97:7f:5c:cd:49:bb:a4:60:8e:a7:f2:f5:a0:40:
cf:9d:0a:d7:f2:e5:af:24:ff:6b:46:40:c4:ef:6a:ec:9a:9e:
93:d6:a9:f5:b6:9a:9e:6e:35:f6:2d:25:75:67:e8:38:1c:62:
17:84:17:27
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYK15nXZ1jpNmgSKjKev7pwlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIwODE5MTEzOTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjdkYTYyZTJkM2JjMmU3YjQyNzFhMTYzYzNmNjE2MDk5NzhmOGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbxIkd+TxdvzvxynAYAy0hiHuba9
teGNjb8H8MmRR3ZaYdAR2RUd7QQbl+FEDycFo95Q1p9C93pOMJNE3NAUNcV2lpiX
mRqvgAWl7vzAW8B4NjykbQkHj8F0lIpHHWF6xCxzb9vJ3Y78FWJJxJBu0G/bSTgw
F/ISnTUODEpEN6L4QJ3m7fppJTmhT6cBJc21uF7TaKdyWnN5hacUDGKVzcPpbb/2
Y7q8TMtVxjZONqGmlDgQ/qwDwk2MpB6+UoXfWev4dt/S+mEh8eYs3MFuzru6FGQi
F6ZBAKH+/rZ+Q2wM92U9iG2OGmCqLcUqeaDR1NwdV7ZoKSJoSrDyEL5mdQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFt9pi4tO8LntCcaFjw/YWCZePjqMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvVzMybUxpMDd3dWUwSnhvV1BEOWhZSmw0LU9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg/nQDAN
BgkqhkiG9w0BAQsFAAOCAQEAtiPbVcICoubaWrLA2Fdi4ZbRjYXVCj1T1ixrjBpd
q1lx6wlmS0hBvt0ZBq7lz7XOcNo3x2RS9PmPvEL6GaiV5aLu0trMLBPv+0Itmg0e
Z+6G7wRZq+KUXiBpg4xTo1B6CFNkRghFqjnMrRXdx9oq3bhAq0Mi4NVnFI1gt2A9
yriw7o7KtGhZpeWXFQUVnlS6wlcxHUCFUYIRm04UR1mYs8sCMD7bSptQHg4fMI0D
W1tpCzrt3IhQbKnUgZginF+I3eesi5Lki9IHSpd/XM1Ju6Rgjqfy9aBAz50K1/Ll
ryT/a0ZAxO9q7Jqek9ap9baanm419i0ldWfoOBxiF4QXJw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:18 2025 by rpki-client