Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Z1YeAOULmWqgACm497HRXo4VhIg.roa
File: Z1YeAOULmWqgACm497HRXo4VhIg.roa (raw, json)
Hash identifier: i3iM9hVb9eqB+OyalmR1EJ6YSMfsFo+YzNrf9alWuZA=
Subject key identifier: 67:56:1E:00:E5:0B:99:6A:A0:00:29:B8:F7:B1:D1:5E:8E:15:84:88
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03B3AE45
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Z1YeAOULmWqgACm497HRXo4VhIg.roa
Signing time: Wed 29 Jun 2022 07:19:51 +0000
ROA not before: Wed 29 Jun 2022 07:19:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 2a07:7885::/32 maxlen: 32
2a07:7881::/32 maxlen: 32
2a07:7882::/32 maxlen: 32
2a0f:39c1::/32 maxlen: 32
2a0f:39c2::/32 maxlen: 32
2a0f:39c5::/32 maxlen: 32
2a07:7884::/32 maxlen: 32
2a0f:39c4::/32 maxlen: 32
2a07:7887::/32 maxlen: 32
2a0f:39c7::/32 maxlen: 32
2a0f:e840::/32 maxlen: 32
2a07:7886::/32 maxlen: 32
2a0f:39c6::/32 maxlen: 32
2a0f:39c3::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
2a0f:39c0::/32 maxlen: 32
2a07:7883::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62107205 (0x3b3ae45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 29 07:19:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67561e00e50b996aa00029b8f7b1d15e8e158488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e8:1a:cd:2d:1c:b7:e0:3c:85:df:77:2f:a3:
71:9a:d6:ea:ad:54:11:dc:ec:3c:02:ef:6f:e0:ff:
9a:8e:6a:50:f5:75:96:7d:74:80:c2:cc:d9:e4:d6:
7a:5f:e6:96:1e:f3:cf:4d:f6:a5:d1:80:58:47:f9:
b3:6f:f4:ed:21:35:24:4b:ba:33:1e:33:5b:25:de:
7e:b8:36:64:ba:2f:e1:49:d8:e2:e3:48:f5:82:7f:
86:59:b3:6f:91:1f:81:07:64:65:17:6b:56:d7:18:
e5:2b:a7:4c:6d:4d:45:84:2f:f8:df:01:db:12:52:
d6:15:62:e7:1a:0f:46:eb:9a:58:8d:19:72:69:4d:
3e:e4:fc:e3:c7:ad:4f:d0:e7:55:e4:e9:09:99:c7:
ad:a2:54:b5:5c:48:5f:51:15:73:86:3e:7b:75:6c:
62:70:78:ff:93:5c:0e:03:6c:2d:c8:f1:49:5c:40:
3f:d1:bb:cb:c4:f6:b3:28:7f:95:b6:21:66:17:41:
d3:7a:4f:b7:04:1c:29:de:21:02:18:e1:19:92:8a:
65:5a:b2:d1:b9:33:6e:89:66:a6:50:14:03:85:ca:
74:ed:dc:21:6a:1a:63:7b:05:f5:a9:62:4e:f7:83:
89:c5:e9:31:b7:26:b1:17:59:f4:28:89:88:cd:ed:
48:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:56:1E:00:E5:0B:99:6A:A0:00:29:B8:F7:B1:D1:5E:8E:15:84:88
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Z1YeAOULmWqgACm497HRXo4VhIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:7881::-2a07:7887:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:39c0::/29
2a0f:e840::/32
2a0f:e842::/32
Signature Algorithm: sha256WithRSAEncryption
8b:34:60:11:00:ff:79:79:21:f1:bf:ba:ab:d6:36:a8:8e:af:
ab:eb:3d:ea:4b:da:56:81:3b:cd:44:c5:cc:48:75:9f:80:15:
ee:34:5f:45:89:4f:2e:d3:76:07:b7:75:3a:0b:fa:a4:84:be:
01:8c:5c:f2:de:5c:30:2e:79:55:6d:f7:4b:b4:bd:33:43:c4:
10:2b:48:fa:0a:41:ec:94:3b:4b:a2:12:af:4f:5b:55:9e:28:
07:3b:1c:23:a0:bd:72:1c:cc:77:32:74:a6:a8:3c:0c:b8:82:
16:2f:db:7b:3f:99:a4:d5:00:e3:17:f6:be:b5:74:27:10:c8:
17:63:60:b9:32:79:b7:e4:cd:df:c3:93:c6:da:88:35:52:1d:
62:37:4a:aa:5a:37:7c:c5:fb:8b:ab:e9:c9:93:dd:d3:7b:a0:
9a:34:88:76:20:46:00:27:e2:0b:a9:56:3a:7d:46:1d:16:28:
11:11:ee:a4:07:37:4e:11:1e:fa:4a:4c:13:ea:bc:87:70:9f:
7f:e4:ab:dd:31:10:81:cf:28:d1:fa:68:c4:e3:4c:b4:78:f1:
8e:83:d5:21:d7:b5:fb:48:bf:b3:b1:35:8a:13:f0:e5:ad:63:
66:c9:98:a2:90:60:72:0a:c7:a3:d7:9f:fd:cb:9e:55:5a:ca:
80:6c:dc:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:09:04 2025 by rpki-client