Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WQPO-xw41Bc8oSCXQ49Y6cn2uyA.roa
File: WQPO-xw41Bc8oSCXQ49Y6cn2uyA.roa (raw, json)
Hash identifier: CqeHMd7TffV03wZ1f7TCIN3BTeG3FnHXDds7lscfR0Y=
Subject key identifier: 59:03:CE:FB:1C:38:D4:17:3C:A1:20:97:43:8F:58:E9:C9:F6:BB:20
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01880F71642F30639A33107AAA4035516DCA
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WQPO-xw41Bc8oSCXQ49Y6cn2uyA.roa
Signing time: Fri 12 May 2023 10:11:09 +0000
ROA not before: Fri 12 May 2023 10:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53667
IP address blocks: 2a0f:7f03::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:71:64:2f:30:63:9a:33:10:7a:aa:40:35:51:6d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 12 10:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5903cefb1c38d4173ca12097438f58e9c9f6bb20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:0a:11:3c:11:a0:a6:8e:3d:8b:d8:83:4d:
c6:12:79:b2:2a:e0:76:80:bf:1d:f0:c6:3d:99:3a:
3a:35:19:75:15:b2:1a:15:1e:d4:ac:47:a6:f1:aa:
31:1b:02:05:f3:38:b5:6a:e3:9e:b1:af:02:75:08:
43:e0:78:44:4f:ec:55:aa:ba:2d:95:d3:ca:60:96:
e1:c3:7a:68:22:e5:0e:71:a8:a7:9c:6a:d9:93:06:
67:a1:1c:bc:65:71:10:54:3b:a9:29:92:51:c6:71:
47:c9:e7:84:08:40:e9:8d:17:86:f4:84:d7:a6:8e:
be:69:f1:8f:12:3f:d5:df:bc:fd:2c:80:5e:d5:63:
a2:40:ea:53:2c:47:db:1c:c7:b8:e9:7b:ef:57:71:
7f:4f:27:69:84:f5:a5:7b:05:81:4e:74:0b:6a:e2:
0b:27:ca:1b:57:a9:c7:ef:14:7d:34:c8:00:ea:b0:
51:55:1e:bc:29:f3:02:ba:a2:b6:8a:8a:10:5a:b7:
8b:ee:c2:15:3c:bb:55:5d:9b:72:23:e0:df:11:9c:
10:d8:71:86:8b:78:30:41:73:e7:ed:08:2c:8c:a0:
e6:80:e8:fa:13:22:fb:c1:b8:96:15:f1:64:39:fe:
9f:d0:2c:eb:ee:83:49:42:2f:88:6f:d8:c1:51:55:
75:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:03:CE:FB:1C:38:D4:17:3C:A1:20:97:43:8F:58:E9:C9:F6:BB:20
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WQPO-xw41Bc8oSCXQ49Y6cn2uyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7f03::/32
Signature Algorithm: sha256WithRSAEncryption
b9:0f:b8:62:a9:8c:77:d0:29:16:e8:04:11:40:8b:2b:2f:2c:
35:7f:1d:eb:35:39:78:71:78:c1:78:48:e7:80:73:4e:be:86:
57:9e:96:f6:cf:ed:59:2c:fe:fb:c5:d2:a9:84:1c:c5:c4:11:
dd:44:97:54:cb:34:6a:dc:2d:6f:60:fb:47:8e:73:22:cb:60:
65:97:94:0f:56:79:75:a7:33:29:7d:5c:90:a1:38:92:be:12:
7e:31:1c:03:81:6e:7f:4f:36:34:8d:5b:ed:52:59:5b:7e:d6:
91:fc:75:70:c1:91:51:6f:63:11:31:e0:39:f5:20:4a:e3:77:
dc:21:6b:69:8c:0d:04:01:cf:40:5c:7b:d2:0c:42:0f:6c:7c:
de:13:fd:aa:ed:8d:a2:8d:b7:e9:18:64:04:e4:8f:26:76:0a:
51:38:5d:c7:05:d7:61:e2:4b:01:41:9b:88:13:02:ad:76:06:
5f:82:58:88:72:15:6e:93:e6:3d:03:62:9b:d1:81:ed:b7:03:
91:29:47:bc:af:b7:7a:0c:34:86:4d:06:a0:7e:10:0a:9d:3e:
db:a7:2b:11:a3:51:aa:14:20:df:f4:95:39:54:1e:80:60:6a:
15:02:9c:7d:0c:65:55:21:06:be:2f:eb:f7:94:04:c8:44:7f:
69:44:30:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:09 2025 by rpki-client