Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GwNZwP7Jh-Jb3VyCwH6O1ftxe90.roa
File: GwNZwP7Jh-Jb3VyCwH6O1ftxe90.roa (raw, json)
Hash identifier: iiTIu8Akucd67P7MaE2EcoSkwnXwdvNm6iHERS4025c=
Subject key identifier: 1B:03:59:C0:FE:C9:87:E2:5B:DD:5C:82:C0:7E:8E:D5:FB:71:7B:DD
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01876AD8C016E0880C6244036B247A252FED
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GwNZwP7Jh-Jb3VyCwH6O1ftxe90.roa
Signing time: Mon 10 Apr 2023 11:06:42 +0000
ROA not before: Mon 10 Apr 2023 11:06:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 2a13:9280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:d8:c0:16:e0:88:0c:62:44:03:6b:24:7a:25:2f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 10 11:06:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b0359c0fec987e25bdd5c82c07e8ed5fb717bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:07:49:2c:1a:6b:7c:29:f0:ff:7e:d6:80:e5:
6a:25:28:2d:5a:06:fe:ed:54:52:39:6b:be:2b:f4:
18:e9:1b:82:7b:e4:1b:cc:05:8c:de:98:49:d4:c9:
dc:6d:77:0d:21:2c:58:30:09:dc:b9:10:02:39:47:
aa:98:ba:77:c3:71:a0:0a:05:e8:9b:75:9e:78:27:
2b:5c:e9:17:48:54:cd:15:36:50:3f:6f:be:fa:30:
58:f1:cd:3a:32:ab:72:40:1b:c9:a9:27:d1:48:f9:
1a:22:aa:c2:7b:9b:d5:27:59:1e:08:56:d4:f2:f4:
8e:70:05:44:a1:dc:00:b9:54:98:a8:d8:9f:bc:d5:
69:60:52:08:73:a2:3b:5f:f5:b8:20:fb:93:df:7b:
20:3a:12:57:5f:f6:6d:17:e3:92:cd:9c:1b:09:42:
82:be:ae:ed:1f:25:98:2f:9d:bd:30:d3:8c:ba:79:
61:44:9e:31:9b:17:33:ba:41:bc:f1:aa:70:a9:6f:
b8:4c:26:ca:41:7f:a0:39:e8:21:ba:73:34:a1:49:
d1:27:98:23:af:37:b2:b9:ef:91:f5:8d:b0:21:e7:
7c:ab:09:67:6b:d7:34:b0:42:29:3f:db:53:a6:1f:
31:32:aa:91:2e:03:6b:26:0a:95:0e:12:70:52:44:
e1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:03:59:C0:FE:C9:87:E2:5B:DD:5C:82:C0:7E:8E:D5:FB:71:7B:DD
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GwNZwP7Jh-Jb3VyCwH6O1ftxe90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9280::/29
Signature Algorithm: sha256WithRSAEncryption
ad:7e:d2:74:0e:1f:e3:2f:df:db:7b:f7:62:e5:a3:7f:0a:21:
52:7a:60:67:4a:54:af:74:3b:62:53:9b:ac:59:79:6c:c7:01:
b7:e0:c3:b2:89:a1:7a:e0:37:cb:d8:28:7f:2b:9e:ee:cb:b7:
7e:b8:b2:69:a1:ca:92:6a:b0:29:49:7e:74:c8:91:c2:ae:b2:
fd:5f:08:94:5a:78:c3:76:4b:c6:de:2c:6a:5e:14:7d:2e:6b:
6e:83:d9:71:07:77:38:c5:50:28:1d:99:49:99:d3:ec:cf:5d:
41:4f:5c:11:92:01:6e:b7:97:7a:53:eb:56:e1:6c:2b:48:31:
44:e1:e9:ae:46:0d:0e:e9:b2:1e:e7:dd:94:7c:56:d2:2d:61:
21:da:39:b1:bd:e9:3d:27:e3:c5:bd:8b:45:b5:81:95:ea:0e:
a9:45:65:66:6f:65:b4:de:89:bd:47:65:07:a6:52:fa:cc:f7:
05:77:63:34:55:6c:4e:ee:56:ca:90:a3:2d:32:74:ba:1c:59:
50:e6:2f:77:d3:cb:d9:9f:e2:33:93:69:19:f4:cb:bd:23:f2:
68:1c:85:a8:c3:b0:d1:6f:fd:00:f0:0a:96:e1:65:58:62:bb:
1f:23:32:87:cf:78:c4:b7:9c:19:5d:cc:5d:49:88:a6:c2:45:
ce:fc:11:f1
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYdq2MAW4IgMYkQDayR6JS/tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwNDEwMTEwNjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjAzNTljMGZlYzk4N2UyNWJkZDVjODJjMDdlOGVkNWZiNzE3YmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgdJLBprfCnw/37WgOVqJSgtWgb+
7VRSOWu+K/QY6RuCe+QbzAWM3phJ1MncbXcNISxYMAncuRACOUeqmLp3w3GgCgXo
m3WeeCcrXOkXSFTNFTZQP2+++jBY8c06MqtyQBvJqSfRSPkaIqrCe5vVJ1keCFbU
8vSOcAVEodwAuVSYqNifvNVpYFIIc6I7X/W4IPuT33sgOhJXX/ZtF+OSzZwbCUKC
vq7tHyWYL529MNOMunlhRJ4xmxczukG88apwqW+4TCbKQX+gOeghunM0oUnRJ5gj
rzeyue+R9Y2wIed8qwlna9c0sEIpP9tTph8xMqqRLgNrJgqVDhJwUkThFwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBsDWcD+yYfiW91cgsB+jtX7cXvdMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvR3dOWndQN0poLUpiM1Z5Q3dINk8xZnR4ZTkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhOSgDAN
BgkqhkiG9w0BAQsFAAOCAQEArX7SdA4f4y/f23v3YuWjfwohUnpgZ0pUr3Q7YlOb
rFl5bMcBt+DDsomheuA3y9gofyue7su3friyaaHKkmqwKUl+dMiRwq6y/V8IlFp4
w3ZLxt4sal4UfS5rboPZcQd3OMVQKB2ZSZnT7M9dQU9cEZIBbreXelPrVuFsK0gx
ROHprkYNDumyHufdlHxW0i1hIdo5sb3pPSfjxb2LRbWBleoOqUVlZm9ltN6JvUdl
B6ZS+sz3BXdjNFVsTu5WypCjLTJ0uhxZUOYvd9PL2Z/iM5NpGfTLvSPyaByFqMOw
0W/9APAKluFlWGK7HyMyh894xLecGV3MXUmIpsJFzvwR8Q==
-----END CERTIFICATE-----
Generated at Fri May 9 08:24:23 2025 by rpki-client