Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tk7WYUBHIr1xTsxxQzd3rvq1E44.roa
File: tk7WYUBHIr1xTsxxQzd3rvq1E44.roa (raw, json)
Hash identifier: +pnWF1VQH4TqYGQK8KocqbMuqOQ6nln4v1UXgjWdFRU=
Subject key identifier: B6:4E:D6:61:40:47:22:BD:71:4E:CC:71:43:37:77:AE:FA:B5:13:8E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0372D416
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tk7WYUBHIr1xTsxxQzd3rvq1E44.roa
Signing time: Mon 06 Jun 2022 06:41:29 +0000
ROA not before: Mon 06 Jun 2022 06:41:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.39.208.0/24 maxlen: 24
193.41.38.0/24 maxlen: 24
193.39.143.0/24 maxlen: 24
2a0f:a203::/32 maxlen: 32
2a07:7885::/32 maxlen: 32
2a0e:2240:5::/48 maxlen: 48
2a0f:3d83::/32 maxlen: 32
2a0e:2240:3::/48 maxlen: 48
2a07:7884::/32 maxlen: 32
2a0f:3d81::/32 maxlen: 32
2a07:7887::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:a201::/32 maxlen: 32
2a0f:a204::/32 maxlen: 32
2a0f:3d86::/32 maxlen: 32
2a07:7881::/32 maxlen: 32
2a07:7882::/32 maxlen: 32
2a0f:a207::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:a200::/32 maxlen: 32
2a0f:a206::/32 maxlen: 32
2a0e:2240:4::/48 maxlen: 48
2a0f:a205::/32 maxlen: 32
2a0f:3d85::/32 maxlen: 32
2a0f:a202::/32 maxlen: 32
2a07:7886::/32 maxlen: 32
2a07:7880::/32 maxlen: 32
2a07:7883::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57857046 (0x372d416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 6 06:41:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b64ed661404722bd714ecc71433777aefab5138e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:16:a7:94:2c:f6:4d:0b:a3:51:70:be:8c:18:
e9:b4:af:c1:d0:06:e9:ab:f2:bd:75:0d:29:f3:18:
95:b9:ae:f6:41:bd:b3:64:dc:cc:85:8c:c6:e8:80:
69:90:da:28:7a:73:94:b6:78:6a:49:da:cb:5c:c1:
1b:c7:ba:70:8f:d6:80:2f:b4:30:6b:99:c6:00:2e:
5a:87:2f:43:1c:e6:9f:6e:21:40:f6:96:60:2b:b6:
6d:00:d8:cb:0d:32:46:cd:72:8c:e7:29:d7:6a:2b:
f0:73:5a:af:19:86:c0:f4:cf:e5:20:1a:5b:2c:5e:
f5:bf:58:71:69:dd:da:27:6d:fe:b1:7e:27:47:7d:
ba:aa:eb:e8:c0:45:ac:42:67:70:91:03:1b:e3:6b:
06:11:31:cc:a3:cc:5d:50:92:81:75:f1:4b:ca:4e:
14:83:1c:5b:61:2d:b0:9b:c7:5c:b7:0d:ee:77:2d:
e5:99:58:3b:01:ed:cb:22:9f:58:d9:13:7c:72:79:
dd:bb:e6:48:97:12:5f:82:50:ab:d4:2d:20:0d:16:
89:00:46:db:15:62:fe:df:70:81:7b:d1:b0:b5:3a:
f8:5b:85:d9:01:29:6c:32:92:74:cc:13:7d:ca:a4:
00:92:fc:b2:2e:f3:33:fc:41:c9:dd:32:37:e0:4a:
f6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4E:D6:61:40:47:22:BD:71:4E:CC:71:43:37:77:AE:FA:B5:13:8E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tk7WYUBHIr1xTsxxQzd3rvq1E44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.143.0/24
193.39.208.0/24
193.41.38.0/24
IPv6:
2a07:7880::/29
2a0e:2240:3::-2a0e:2240:5:ffff:ffff:ffff:ffff:ffff
2a0f:3d81::/32
2a0f:3d83::-2a0f:3d87:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:a200::/29
Signature Algorithm: sha256WithRSAEncryption
01:50:92:0b:a3:f5:6d:f4:aa:de:ae:84:00:03:67:a9:db:1d:
96:45:f2:11:1a:9b:e1:11:20:85:7d:a6:88:17:cd:84:46:cb:
64:ab:80:8a:81:ca:d2:b6:1b:5f:e2:7d:49:a5:fe:9a:2f:1b:
86:8b:8f:f7:6a:e8:84:a5:29:1d:1b:60:11:91:8d:2a:2f:53:
7a:83:b2:9c:35:26:9d:8b:63:11:68:5b:2c:e8:d2:55:88:38:
6f:bc:ec:62:27:14:32:82:9c:0f:89:a1:1c:94:d4:3d:26:6e:
26:13:92:1c:69:66:ab:88:cb:9a:62:3a:c3:f1:76:3d:19:28:
ae:e0:b9:57:fd:d2:c9:61:07:9c:be:5e:93:47:bb:2b:e7:a8:
82:72:9b:d3:4d:80:e5:77:70:b2:85:3d:ab:68:df:0d:5f:41:
60:9d:cf:bd:a6:a1:d2:89:1d:ea:25:0a:9f:c5:72:70:eb:66:
da:49:51:e3:18:5a:e6:f4:1e:5d:db:2d:e1:ff:e9:0f:4f:38:
74:e4:5a:ac:b0:b4:cb:9f:73:0b:cd:56:55:f0:e6:c0:53:39:
b2:cc:0b:5a:22:33:70:cd:52:48:87:c8:13:83:db:62:3a:47:
06:28:1b:bb:49:63:3a:23:db:39:05:a4:8a:79:e8:5a:be:4e:
91:58:82:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:21 2025 by rpki-client