Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/v2Lfd92A695Vzdl4SINSd4NvIWs.roa
File: v2Lfd92A695Vzdl4SINSd4NvIWs.roa (raw, json)
Hash identifier: lW1MkKDHcFhQ+IzSzo7NjsBqy8sboRY3jPuJZ4FGLTc=
Subject key identifier: BF:62:DF:77:DD:80:EB:DE:55:CD:D9:78:48:83:52:77:83:6F:21:6B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01856DCAF9D9B6B53FB48FA5EE78C0A8E3DB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/v2Lfd92A695Vzdl4SINSd4NvIWs.roa
Signing time: Sun 01 Jan 2023 14:44:56 +0000
ROA not before: Sun 01 Jan 2023 14:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 394414
IP address blocks: 2a06:1180:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:f9:d9:b6:b5:3f:b4:8f:a5:ee:78:c0:a8:e3:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 1 14:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf62df77dd80ebde55cdd97848835277836f216b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:51:56:fa:31:3a:08:58:87:cd:a2:d8:6c:bb:
ec:78:8c:a3:bb:5e:14:59:9f:2a:ad:44:68:80:34:
88:f4:b4:88:a4:2c:b0:01:87:ce:9c:d6:b2:d7:49:
45:56:6b:c2:d9:ad:90:e1:1c:66:44:3c:7d:91:69:
0b:b7:7e:92:24:72:b7:62:e4:c3:9d:bb:7f:56:70:
58:fd:b6:62:49:77:58:0e:b2:5c:4a:85:54:f4:48:
29:b7:1a:de:f9:e7:c9:ce:c7:f4:a3:c5:7d:0a:37:
62:8b:51:a2:64:db:29:9b:b1:06:e9:78:06:ab:8d:
fd:2e:e6:21:6c:df:a5:47:6f:6e:69:6a:48:cc:ef:
90:3e:bf:20:8c:5a:54:0a:9c:9b:3c:8e:ac:85:72:
4b:be:ca:dc:3a:cc:9c:a4:94:df:cf:63:82:8d:c6:
34:de:f7:de:f6:bb:72:3f:2e:c3:f0:85:1b:3b:63:
78:c9:b3:26:b7:e0:27:c9:4c:f1:d9:b9:70:98:68:
cf:46:62:a5:43:8b:88:86:ec:1b:6b:ab:81:d6:67:
79:66:85:f2:86:17:d7:0c:71:83:a1:7b:f6:b7:9b:
3b:43:bb:9c:ab:e0:db:20:f3:c5:f1:ed:a9:eb:76:
23:cf:27:92:30:c9:9f:6d:67:84:63:ca:26:c5:68:
e5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:62:DF:77:DD:80:EB:DE:55:CD:D9:78:48:83:52:77:83:6F:21:6B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/v2Lfd92A695Vzdl4SINSd4NvIWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1180:1::/48
Signature Algorithm: sha256WithRSAEncryption
b7:cd:d1:10:49:6c:ca:f6:23:f4:92:e7:5d:40:06:cf:f2:a5:
13:ec:29:7a:75:e6:45:4d:0b:0c:be:db:b7:a8:ea:12:6a:35:
52:5d:3a:da:7e:90:59:22:43:5c:91:1e:84:d4:a6:6d:58:c3:
67:86:cb:05:e4:45:17:31:52:8f:b3:9d:8a:a8:15:5d:46:9b:
0b:b6:92:7b:8d:72:e2:9b:15:f4:9d:72:81:a0:2e:df:91:95:
87:50:62:f2:17:04:22:0f:c9:b6:cf:28:00:d6:06:26:39:ef:
3f:7b:09:46:d5:ea:1a:ae:bb:84:56:97:4d:98:18:8c:39:84:
16:2c:6c:f9:63:ab:ce:63:43:5b:16:3d:af:85:e3:a0:d7:d7:
5b:b5:92:46:e2:fa:fe:ae:7a:f0:51:c9:56:3f:02:e9:ab:4e:
13:41:8b:1c:93:14:d9:cb:b8:f9:f5:d2:f1:ea:eb:fd:77:9f:
26:38:e8:88:c0:e4:36:d1:2b:76:32:ab:df:69:3e:ab:69:7b:
a7:ca:47:f1:c9:fe:c6:84:94:ef:3b:52:ab:73:35:1b:80:34:
9a:dd:31:25:f2:5f:20:f8:a4:71:06:e8:fb:93:88:cd:b1:0f:
e3:f5:4d:34:ae:87:21:85:38:66:d7:7e:37:fc:55:ca:d1:9c:
8a:52:cf:93
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtyvnZtrU/tI+l7njAqOPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwMTAxMTQ0NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjYyZGY3N2RkODBlYmRlNTVjZGQ5Nzg0ODgzNTI3NzgzNmYyMTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhFFW+jE6CFiHzaLYbLvseIyju14U
WZ8qrURogDSI9LSIpCywAYfOnNay10lFVmvC2a2Q4RxmRDx9kWkLt36SJHK3YuTD
nbt/VnBY/bZiSXdYDrJcSoVU9Egptxre+efJzsf0o8V9Cjdii1GiZNspm7EG6XgG
q439LuYhbN+lR29uaWpIzO+QPr8gjFpUCpybPI6shXJLvsrcOsycpJTfz2OCjcY0
3vfe9rtyPy7D8IUbO2N4ybMmt+AnyUzx2blwmGjPRmKlQ4uIhuwba6uB1md5ZoXy
hhfXDHGDoXv2t5s7Q7ucq+DbIPPF8e2p63YjzyeSMMmfbWeEY8omxWjljQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFL9i33fdgOveVc3ZeEiDUneDbyFrMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvdjJMZmQ5MkE2OTVWemRsNFNJTlNkNE52SVdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgYRgAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQC3zdEQSWzK9iP0kuddQAbP8qUT7Cl6deZFTQsM
vtu3qOoSajVSXTrafpBZIkNckR6E1KZtWMNnhssF5EUXMVKPs52KqBVdRpsLtpJ7
jXLimxX0nXKBoC7fkZWHUGLyFwQiD8m2zygA1gYmOe8/ewlG1eoarruEVpdNmBiM
OYQWLGz5Y6vOY0NbFj2vheOg19dbtZJG4vr+rnrwUclWPwLpq04TQYsckxTZy7j5
9dLx6uv9d58mOOiIwOQ20St2MqvfaT6raXunykfxyf7GhJTvO1KrczUbgDSa3TEl
8l8g+KRxBuj7k4jNsQ/j9U00rochhThm1343/FXK0ZyKUs+T
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:49 2025 by rpki-client