Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/irmUDdhZ2_iG5nWSzbTEOAxFqjc.roa
File: irmUDdhZ2_iG5nWSzbTEOAxFqjc.roa (raw, json)
Hash identifier: BE+KVr5im8nPlgcVBZzE3g/rv7L9IX7QVUQ+3lAW+VU=
Subject key identifier: 8A:B9:94:0D:D8:59:DB:F8:86:E6:75:92:CD:B4:C4:38:0C:45:AA:37
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183C7A4E7F37A065538750BC1568117D61E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/irmUDdhZ2_iG5nWSzbTEOAxFqjc.roa
Signing time: Tue 11 Oct 2022 15:23:36 +0000
ROA not before: Tue 11 Oct 2022 15:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a12:d6c1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:a4:e7:f3:7a:06:55:38:75:0b:c1:56:81:17:d6:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 11 15:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ab9940dd859dbf886e67592cdb4c4380c45aa37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6b:43:1d:ba:6f:73:04:6d:b9:37:ac:ab:0b:
32:93:1c:85:20:61:39:73:93:8c:29:35:04:f8:59:
5b:76:cf:02:d3:a2:31:ee:03:e1:2e:7a:98:6b:fd:
97:3a:32:06:a0:04:cf:d9:1c:fc:d6:bc:9a:67:ad:
c0:1a:82:fe:d3:43:66:01:cd:85:b9:7a:7c:41:24:
99:bd:58:60:56:f3:66:ae:78:b4:ef:5a:41:18:e5:
61:49:5f:e6:11:9c:eb:03:ad:2c:99:fe:90:0b:1f:
81:14:bb:d7:71:7a:69:44:78:d5:81:74:35:56:8e:
59:4d:32:a4:8c:51:7f:2b:ac:9a:c6:3f:6f:a1:ca:
df:2d:36:15:5a:db:2f:18:00:df:ab:b6:57:c8:2c:
ce:d6:85:c6:6f:d5:71:bb:58:1a:e4:3c:1a:e1:fc:
f5:76:52:32:e1:dd:63:d9:fa:ee:c1:55:5c:b9:69:
37:9b:03:aa:6c:03:2d:a4:74:37:3d:81:b1:20:cb:
25:9e:f0:94:f5:a7:c0:8b:63:c8:de:42:b3:04:25:
13:32:7f:64:cc:13:6b:9b:62:9f:42:db:74:b1:87:
fc:b8:fc:51:06:c0:a2:9b:d2:b4:4e:87:2d:a3:72:
8b:15:c4:74:54:0f:4f:cf:c8:3e:37:02:79:03:3a:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B9:94:0D:D8:59:DB:F8:86:E6:75:92:CD:B4:C4:38:0C:45:AA:37
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/irmUDdhZ2_iG5nWSzbTEOAxFqjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d6c1::/32
Signature Algorithm: sha256WithRSAEncryption
8a:4c:ff:dc:1c:3f:79:ab:5a:6e:05:2a:e7:a7:ff:14:4d:ac:
6b:91:e3:1d:38:f1:0d:87:e7:94:ff:8a:a3:c6:83:f7:91:8c:
66:19:c5:9f:92:b9:bb:05:3d:0c:54:29:db:15:cc:f6:ed:de:
f4:c6:19:65:af:8a:23:91:3a:6f:7b:10:5c:8a:6c:08:3e:11:
43:44:3b:d4:74:3b:8d:d1:62:4a:dc:85:64:f1:ac:9c:84:ad:
c0:3e:5a:b4:4b:fb:6d:de:d2:43:29:d3:78:5a:07:aa:17:55:
22:49:c9:b6:39:3d:71:4b:b2:74:0e:d2:d7:bc:83:5e:a1:38:
2d:34:d7:bf:ae:38:26:a3:30:d0:71:53:1e:ce:1b:8d:ad:47:
a0:13:69:1d:bf:1c:7a:c3:21:9c:e8:74:98:3b:ed:ac:09:c6:
22:83:82:4f:5e:1a:4a:be:59:f6:b3:a9:1e:29:3f:1c:01:cf:
19:29:ca:62:f9:22:14:2b:b7:6e:5c:fc:b5:02:1c:1c:71:0a:
c4:1b:be:e5:d2:e2:eb:f6:d7:02:dc:ff:c8:75:d6:97:2c:9f:
8e:8f:7a:81:02:0a:b0:4d:d4:5e:de:04:9f:8c:65:04:c2:48:
ea:1a:dc:77:fd:29:cc:37:20:6b:f1:bd:2e:3b:a7:2a:be:51:
7b:05:76:de
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYPHpOfzegZVOHULwVaBF9YeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMDExMTUyMzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWI5OTQwZGQ4NTlkYmY4ODZlNjc1OTJjZGI0YzQzODBjNDVhYTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWtDHbpvcwRtuTesqwsykxyFIGE5
c5OMKTUE+Flbds8C06Ix7gPhLnqYa/2XOjIGoATP2Rz81ryaZ63AGoL+00NmAc2F
uXp8QSSZvVhgVvNmrni071pBGOVhSV/mEZzrA60smf6QCx+BFLvXcXppRHjVgXQ1
Vo5ZTTKkjFF/K6yaxj9vocrfLTYVWtsvGADfq7ZXyCzO1oXGb9Vxu1ga5Dwa4fz1
dlIy4d1j2fruwVVcuWk3mwOqbAMtpHQ3PYGxIMslnvCU9afAi2PI3kKzBCUTMn9k
zBNrm2KfQtt0sYf8uPxRBsCim9K0Tocto3KLFcR0VA9Pz8g+NwJ5AzoWwQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIq5lA3YWdv4huZ1ks20xDgMRao3MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvaXJtVURkaFoyX2lHNW5XU3piVEVPQXhGcWpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhLWwTAN
BgkqhkiG9w0BAQsFAAOCAQEAikz/3Bw/eatabgUq56f/FE2sa5HjHTjxDYfnlP+K
o8aD95GMZhnFn5K5uwU9DFQp2xXM9u3e9MYZZa+KI5E6b3sQXIpsCD4RQ0Q71HQ7
jdFiStyFZPGsnIStwD5atEv7bd7SQynTeFoHqhdVIknJtjk9cUuydA7S17yDXqE4
LTTXv644JqMw0HFTHs4bja1HoBNpHb8cesMhnOh0mDvtrAnGIoOCT14aSr5Z9rOp
Hik/HAHPGSnKYvkiFCu3blz8tQIcHHEKxBu+5dLi6/bXAtz/yHXWlyyfjo96gQIK
sE3UXt4En4xlBMJI6hrcd/0pzDcga/G9LjunKr5RewV23g==
-----END CERTIFICATE-----
Generated at Tue Apr 22 03:33:31 2025 by rpki-client