Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/u9rhK3quHBc4nGkDRxKgS-Q-PwM.roa
File: u9rhK3quHBc4nGkDRxKgS-Q-PwM.roa (raw, json)
Hash identifier: mEZNjaqB/5mwbXjYd+cDK7c01VoUJmkJOqhcQtl3E/Q=
Subject key identifier: BB:DA:E1:2B:7A:AE:1C:17:38:9C:69:03:47:12:A0:4B:E4:3E:3F:03
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01847AA721A8EFB2936FEB26FCB44157BDB8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/u9rhK3quHBc4nGkDRxKgS-Q-PwM.roa
Signing time: Tue 15 Nov 2022 09:38:04 +0000
ROA not before: Tue 15 Nov 2022 09:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a12:f540::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac40:f::/48 maxlen: 48
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:a7:21:a8:ef:b2:93:6f:eb:26:fc:b4:41:57:bd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 15 09:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbdae12b7aae1c17389c69034712a04be43e3f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a1:69:3a:96:99:ff:37:66:f0:30:df:19:68:
e0:de:d4:5a:ab:19:38:82:50:21:15:70:ae:e5:56:
42:01:49:89:63:dc:02:d6:40:18:02:21:f0:66:cc:
91:e9:25:a4:65:58:37:c1:27:11:2a:04:be:79:6a:
c0:4d:03:9d:73:d1:2e:fe:65:bc:76:94:ae:b4:ca:
ef:0c:9b:83:57:c5:ee:e1:29:3f:4b:f2:f5:09:57:
ba:29:0c:fc:2b:e6:82:66:04:90:a5:3e:4b:b0:75:
7e:52:1c:2a:6e:d1:86:5f:11:91:c5:6e:a3:19:1b:
c6:f5:40:05:57:32:ec:1c:2a:52:2a:24:97:3c:4c:
d0:5d:b2:9f:ed:78:e8:35:69:05:3f:4d:24:2d:bb:
e6:8b:76:d4:6a:15:11:3f:a5:9a:bc:d6:ba:cc:fe:
81:fc:df:ed:94:8e:7c:e2:22:dc:3b:24:79:aa:fb:
d8:79:65:db:34:91:17:fd:f0:e8:5a:08:03:47:38:
ce:25:a5:67:4d:3d:ea:99:40:00:ed:23:cb:d8:e0:
46:35:43:18:4d:83:05:2d:07:1d:09:fc:bf:af:53:
6e:ce:4c:66:2d:f5:f3:88:e0:ac:e3:0a:a5:f1:f0:
bf:27:96:15:0c:58:b7:97:c2:f4:fc:8b:85:ae:60:
ef:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DA:E1:2B:7A:AE:1C:17:38:9C:69:03:47:12:A0:4B:E4:3E:3F:03
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/u9rhK3quHBc4nGkDRxKgS-Q-PwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/32
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:d540::/29
2a12:f540::/29
Signature Algorithm: sha256WithRSAEncryption
a1:1e:2a:01:23:5d:43:e6:59:c7:b5:5d:1c:82:e2:5f:63:48:
89:56:51:10:2d:ff:85:24:9f:7c:f5:7f:b4:f5:83:fd:30:cb:
d3:9d:cd:23:40:65:5d:c9:66:5a:10:51:b9:ec:69:55:27:bd:
9c:0a:ec:48:34:d9:0d:37:e0:52:ae:aa:1a:96:a5:c3:1d:2e:
6d:af:0f:2e:34:dc:a6:3d:4e:35:17:87:9a:9c:ae:cc:4d:2b:
8a:ab:55:f8:56:72:b3:0f:91:ad:9a:cd:32:83:07:b5:f7:82:
ae:db:9a:56:6d:99:a7:60:f5:fc:b6:10:0f:76:1e:43:d7:29:
a7:66:dd:b2:d9:0b:f3:17:33:5a:ee:8e:32:c1:83:94:2d:42:
98:c2:c5:05:30:ee:93:7a:6d:4c:4f:83:e8:f1:40:79:63:74:
ef:d9:05:bb:cb:a5:ab:19:a3:da:79:cb:69:b0:84:3c:47:bd:
88:32:11:f0:e4:d1:cb:26:ba:85:ac:76:b5:15:af:8f:6a:ed:
d9:42:04:a7:3f:e1:90:61:74:18:b6:59:40:5b:e4:54:28:ca:
35:23:79:b9:2c:9d:fb:21:31:53:1e:de:8c:9e:b9:4f:10:e8:
23:68:ad:32:20:69:47:c9:62:63:0c:36:d4:aa:ef:ea:6c:53:
b1:88:fe:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:02:02 2025 by rpki-client