Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/b9DWyjpvWhlqq3KKSVPwV1GAB2g.roa
File: b9DWyjpvWhlqq3KKSVPwV1GAB2g.roa (raw, json)
Hash identifier: GGipvUwJWIouWl3+Ipqy1mzAMy5coTGEa/SaMM/lCms=
Subject key identifier: 6F:D0:D6:CA:3A:6F:5A:19:6A:AB:72:8A:49:53:F0:57:51:80:07:68
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183644923CCB82B624C26C9CEE7A0E9BC2A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/b9DWyjpvWhlqq3KKSVPwV1GAB2g.roa
Signing time: Thu 22 Sep 2022 08:20:58 +0000
ROA not before: Thu 22 Sep 2022 08:20:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e00:123::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a12:d540::/29 maxlen: 29
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:64:49:23:cc:b8:2b:62:4c:26:c9:ce:e7:a0:e9:bc:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 22 08:20:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fd0d6ca3a6f5a196aab728a4953f05751800768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:33:73:47:10:a4:8a:0d:15:c7:de:84:a4:
c2:84:83:9a:6a:3a:f9:34:f2:0c:fa:8b:8f:12:da:
7a:9e:ef:f7:fd:3f:cb:73:9e:1d:72:4a:9e:eb:db:
36:14:73:58:d7:de:61:ac:97:17:ec:a0:3f:e4:9b:
9e:54:41:77:eb:ff:7a:29:a5:d8:2c:42:4d:96:be:
dc:e2:49:e4:ae:c7:55:96:a3:1b:ae:dd:e9:ff:bc:
b0:85:63:0e:00:05:91:42:22:b9:3b:3a:06:9d:8d:
49:51:14:f8:3d:4c:ad:4a:a3:0b:9b:49:e5:a0:a9:
df:8b:a4:f1:cb:e6:fd:1c:8a:3d:82:2f:fd:9d:4c:
6d:9f:a5:d4:c0:ec:55:dc:e8:3e:f1:04:bf:2c:c8:
f1:a8:f9:ed:c0:6c:0f:48:b4:e4:2a:16:39:38:a0:
dc:8c:78:ef:1d:4d:ad:c5:2b:9c:d7:a8:13:34:bb:
5f:cb:64:14:13:d9:02:f5:09:4e:0f:9b:e6:7d:83:
17:68:55:25:b1:16:38:60:92:5b:2f:31:d7:f5:4e:
a2:f4:1f:e4:e3:43:1b:b3:aa:c4:91:ad:8b:8b:85:
52:f3:5d:50:b3:25:e6:65:1d:fe:d2:75:a7:ef:4b:
70:35:ad:8f:ec:02:27:8e:d8:98:ee:1d:78:98:98:
79:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D0:D6:CA:3A:6F:5A:19:6A:AB:72:8A:49:53:F0:57:51:80:07:68
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/b9DWyjpvWhlqq3KKSVPwV1GAB2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:5a80::/29
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/29
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
6b:06:21:30:65:5e:bf:e9:0e:e8:0d:4e:85:f5:4d:be:4c:ff:
f3:f5:59:bd:86:db:f7:44:08:6f:bc:e4:52:40:e3:c2:35:62:
aa:17:44:cb:89:c4:31:7d:f9:4c:61:20:bd:33:95:f4:78:62:
51:dc:7e:a8:63:bd:8c:52:73:86:4c:88:c4:95:99:d8:a8:97:
9e:12:f2:77:73:d0:51:f2:3b:a3:cd:58:53:49:32:3b:fe:2f:
7f:5f:e9:e9:53:98:0b:f7:30:cd:bd:65:14:6e:30:1b:db:02:
a8:b3:26:be:b5:f2:69:4f:ce:ea:06:ec:87:9d:8e:09:b1:61:
c4:07:8c:98:1b:e2:e7:43:60:ef:22:a4:d9:26:b9:2d:99:6c:
5e:c8:1c:76:34:ef:90:0f:ae:53:2e:9a:f4:f5:67:20:f4:be:
0c:75:4c:a0:1d:0d:be:c3:e2:0a:84:3b:bd:b9:65:c6:e9:a1:
06:5a:f9:0b:3a:c1:9e:81:06:b5:9f:b5:c3:ab:52:a9:9a:fd:
79:3a:2a:f4:a9:39:b3:d6:ba:86:ec:62:01:ac:4e:29:c7:32:
9c:74:75:88:4d:19:92:a0:b7:b1:f4:1e:c6:c3:43:37:42:0a:
76:a7:52:68:0c:59:c5:2b:5d:fe:c6:a2:fb:c1:01:3d:76:5a:
80:d6:eb:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:06:47 2025 by rpki-client