Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xcUogWLI5YuXbMHP-m4P6hbsxPg.roa
File: xcUogWLI5YuXbMHP-m4P6hbsxPg.roa (raw, json)
Hash identifier: 0CPOKas87qJ7vOI5Tu9Bsx0Al0xXoaHxK2C8IU3/ei0=
Subject key identifier: C5:C5:28:81:62:C8:E5:8B:97:6C:C1:CF:FA:6E:0F:EA:16:EC:C4:F8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018611F046B681AE7BB53D2D97B7711E18C4
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xcUogWLI5YuXbMHP-m4P6hbsxPg.roa
Signing time: Thu 02 Feb 2023 11:43:24 +0000
ROA not before: Thu 02 Feb 2023 11:43:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 2a0f:2705::/32 maxlen: 32
2a0f:e9c0::/32 maxlen: 32
2a0f:dd42::/32 maxlen: 32
2a0f:ee05::/32 maxlen: 32
2a0f:db41::/32 maxlen: 32
2a0f:dd43::/32 maxlen: 32
2a0f:ee04::/32 maxlen: 32
2a0f:2704::/32 maxlen: 32
2a0f:db42::/32 maxlen: 32
2a0f:dd41::/32 maxlen: 32
2a0f:dd44::/32 maxlen: 32
2a0f:db46::/32 maxlen: 32
2a0f:2707::/32 maxlen: 32
2a0f:dd40::/32 maxlen: 32
2a0f:e9c6::/32 maxlen: 32
2a0f:e9c5::/32 maxlen: 32
2a0f:ee07::/32 maxlen: 32
2a0f:db43::/32 maxlen: 32
2a0f:e9c2::/32 maxlen: 32
2a0f:db40::/32 maxlen: 32
2a0f:ee01::/32 maxlen: 32
2a0f:db44::/32 maxlen: 32
2a0f:dd46::/32 maxlen: 32
2a0f:2701::/32 maxlen: 32
2a0f:ee02::/32 maxlen: 32
2a0f:e9c3::/32 maxlen: 32
2a0f:2702::/32 maxlen: 32
2a0f:dd47::/32 maxlen: 32
2a0f:db45::/32 maxlen: 32
2a0f:ee03::/32 maxlen: 32
2a0f:db47::/32 maxlen: 32
2a0f:dd45::/32 maxlen: 32
2a0f:e9c1::/32 maxlen: 32
2a0f:2700::/32 maxlen: 32
2a0f:e9c4::/32 maxlen: 32
2a0f:2703::/32 maxlen: 32
2a0f:ee06::/32 maxlen: 32
2a0f:e9c7::/32 maxlen: 32
2a0f:2706::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:f0:46:b6:81:ae:7b:b5:3d:2d:97:b7:71:1e:18:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 2 11:43:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5c5288162c8e58b976cc1cffa6e0fea16ecc4f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d7:a4:de:6b:d9:50:44:da:10:a2:a9:e3:08:
b8:bd:2e:80:d8:6c:48:50:27:58:44:f4:f0:fd:a8:
d6:92:32:1e:de:99:01:1b:44:3d:71:05:5b:24:91:
a5:d9:79:63:de:c7:1a:fd:23:88:a3:00:27:0d:d1:
60:c9:b3:10:d9:24:38:6f:e2:6a:e8:ac:0e:99:fc:
c8:b3:5e:f5:ec:5b:58:33:61:2d:27:6b:55:06:16:
ff:49:44:81:d0:e2:16:c5:3c:97:17:65:66:ed:20:
a0:f3:ea:53:fb:41:b2:a6:e6:b9:65:76:8b:2b:31:
87:ee:79:1e:7b:3f:98:6a:7f:cf:7c:f0:28:e8:b4:
a7:e4:34:71:81:29:43:85:50:8f:b0:ca:08:22:68:
8b:8f:b2:28:59:d0:d1:0b:b7:74:23:89:f3:ea:17:
34:1b:b8:4f:df:b6:57:7a:b1:ae:09:f3:02:c5:9f:
db:4c:b4:0c:54:b6:47:26:e5:39:fa:09:0a:ea:dd:
16:5f:51:48:52:7e:96:f8:1d:89:8a:4b:29:09:6b:
ff:dd:4f:20:2c:9b:a2:4b:5d:27:61:7b:18:60:bb:
5e:b6:6c:7f:e8:81:0d:63:6f:dc:cf:79:da:9a:bf:
f7:26:0e:e9:c8:49:96:b1:24:b1:46:6f:df:57:1e:
1c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C5:28:81:62:C8:E5:8B:97:6C:C1:CF:FA:6E:0F:EA:16:EC:C4:F8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xcUogWLI5YuXbMHP-m4P6hbsxPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:2700::/29
2a0f:db40::/29
2a0f:dd40::/29
2a0f:e9c0::/29
2a0f:ee01::-2a0f:ee07:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9b:ae:1f:ec:71:e5:0e:33:a2:16:d9:59:ff:a0:c7:01:12:20:
2d:85:1e:3d:d5:15:c9:eb:34:8f:24:bc:4a:99:54:bf:c4:fc:
dd:4c:4f:68:45:9f:0a:81:6b:50:66:ca:97:b9:bb:03:21:94:
3c:3d:b9:2a:b6:01:e1:4e:ea:8a:ef:de:4a:e8:d2:0d:08:f2:
b8:1a:b9:11:3d:6d:92:62:31:1b:2e:5a:c6:87:c3:1f:df:2b:
04:ce:6e:74:b6:99:f6:c7:ec:3f:55:fd:11:5c:21:ba:4f:bf:
c9:20:78:40:7b:be:55:29:46:50:55:47:e4:57:5b:54:39:41:
4d:02:22:5c:ba:35:78:2b:5a:7c:d2:92:19:ef:88:df:27:0e:
b5:66:df:4f:ce:c5:3d:86:79:49:24:07:32:d9:72:0f:a3:2a:
a7:78:59:dd:00:cf:db:50:26:c0:16:7e:32:09:7a:5e:0e:98:
ac:35:15:79:f9:fc:1c:d6:31:ad:cc:3e:12:1b:53:9f:9a:1f:
a4:86:c8:e4:25:2f:f9:62:09:e6:32:ad:03:03:d7:c7:46:8a:
42:06:f7:56:16:23:27:9b:17:9d:93:e1:2e:df:d9:46:22:16:
f8:58:f4:0f:e2:80:f6:1b:00:f1:52:46:ae:00:fc:52:98:98:
27:61:01:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:00 2025 by rpki-client