Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/EF9Mm0udiIMJ_trLffyEh1b9zzc.roa
File: EF9Mm0udiIMJ_trLffyEh1b9zzc.roa (raw, json)
Hash identifier: e89+1dq7g6anSFtU8olBcwoihwuOS4hdcN2Am/XLZI8=
Subject key identifier: 10:5F:4C:9B:4B:9D:88:83:09:FE:DA:CB:7D:FC:84:87:56:FD:CF:37
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018468437A01D92C905E44737953029B90C6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/EF9Mm0udiIMJ_trLffyEh1b9zzc.roa
Signing time: Fri 11 Nov 2022 19:56:03 +0000
ROA not before: Fri 11 Nov 2022 19:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396362
IP address blocks: 2a0f:e841::/32 maxlen: 32
2a0f:e843::/32 maxlen: 32
2a13:1940::/29 maxlen: 29
2a0e:1a82::/32 maxlen: 32
2a0f:1e80:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:68:43:7a:01:d9:2c:90:5e:44:73:79:53:02:9b:90:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 11 19:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=105f4c9b4b9d888309fedacb7dfc848756fdcf37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:dc:54:74:94:bb:3f:7c:6f:99:df:96:64:f1:
44:a4:28:61:36:b5:7d:c1:5d:88:e8:13:cc:5e:c6:
f6:f0:22:d8:53:d9:b9:9a:19:0e:6c:7e:b0:6a:75:
86:bc:fd:28:c2:6a:bd:98:51:66:2f:d6:77:f5:56:
b8:f8:4a:37:da:5c:eb:89:39:ed:ba:a6:17:24:ad:
12:9e:09:c3:91:6b:2a:da:10:76:ac:7c:18:97:9a:
ec:86:34:5a:a4:5c:06:7a:4c:50:81:0a:08:df:27:
bd:a2:0e:b7:b5:a5:14:bc:24:63:ef:89:ff:4f:e1:
b3:ec:53:94:87:3a:a2:25:74:e4:f2:11:15:41:cc:
7f:29:72:d1:d6:97:03:a9:b5:68:b7:5a:03:78:d0:
38:46:31:54:0e:79:99:38:f6:e8:a1:53:ae:04:79:
3a:2e:31:00:30:29:d1:37:34:50:ab:31:f3:a9:4a:
0d:03:a7:f8:e1:d4:de:aa:c6:6b:99:45:22:6a:2f:
eb:c6:3d:5d:bd:5f:e9:0f:f7:9a:3a:1c:79:34:6a:
03:d9:36:76:60:29:5d:23:85:dc:fe:2f:bc:ad:e1:
37:df:80:e0:85:32:e6:83:c5:27:2b:61:21:52:53:
04:9c:eb:67:16:09:e1:fb:fc:ec:d0:ed:12:35:ba:
e4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5F:4C:9B:4B:9D:88:83:09:FE:DA:CB:7D:FC:84:87:56:FD:CF:37
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/EF9Mm0udiIMJ_trLffyEh1b9zzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1a82::/32
2a0f:1e80:1::/48
2a0f:e841::/32
2a0f:e843::/32
2a13:1940::/29
Signature Algorithm: sha256WithRSAEncryption
6e:f0:05:95:97:36:4d:9f:12:c5:b4:45:a5:71:50:19:d2:e7:
41:01:4d:e4:31:af:64:ae:07:ee:be:0f:34:a6:b6:f2:46:ea:
8e:37:65:aa:53:c2:e3:ac:c8:19:27:62:b5:71:0c:75:42:76:
43:26:64:e9:c0:ba:b7:22:23:c7:13:5c:3b:39:22:08:91:a7:
17:92:68:29:b5:1b:3e:2f:79:b8:b4:ab:d8:8e:72:ac:c4:6c:
29:28:d9:ef:dc:51:29:84:55:a8:28:40:7f:a3:29:34:c2:a4:
0f:af:33:a2:2c:1e:5d:c3:1f:ea:d9:58:9e:03:d9:4f:89:27:
d0:95:79:fc:d0:7e:49:17:fd:49:fd:fe:a9:57:a2:2c:a7:6e:
29:a2:ca:b3:88:c7:e4:2a:e3:cd:6e:80:bf:f0:72:87:5d:09:
14:59:78:0e:2e:fa:09:bb:f1:9f:51:fe:88:c1:c3:07:fa:7d:
08:53:b2:38:3f:bb:51:d2:4a:ac:fb:34:5b:46:f6:25:ac:18:
07:ee:42:33:80:4d:cb:f1:32:64:67:bc:f4:a5:10:17:6b:f4:
a6:cd:67:38:11:4a:10:73:3d:bf:b7:27:49:6e:59:b5:64:e7:
f4:24:cf:5d:43:13:87:02:b9:dd:b0:1c:59:0e:90:66:2a:d9:
c9:77:35:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 05:54:31 2025 by rpki-client