Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/eyUJrWYyDRU-ByA02lvMigkJ4v8.roa
File: eyUJrWYyDRU-ByA02lvMigkJ4v8.roa (raw, json)
Hash identifier: UWBQyuUpM7DnA3oPjcMGCwYkwHhOSNH6bQKWc7l12U0=
Subject key identifier: 7B:25:09:AD:66:32:0D:15:3E:07:20:34:DA:5B:CC:8A:09:09:E2:FF
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018A886A1D67CAD49F772DE20AD25646773E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/eyUJrWYyDRU-ByA02lvMigkJ4v8.roa
Signing time: Tue 12 Sep 2023 08:02:50 +0000
ROA not before: Tue 12 Sep 2023 08:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:d902::/32 maxlen: 32
2a13:2dc5::/32 maxlen: 32
2a13:2d41::/32 maxlen: 32
2a13:2d42::/32 maxlen: 32
2a13:d901::/32 maxlen: 32
2a13:2dc4::/32 maxlen: 32
2a13:c700::/29 maxlen: 29
2a13:2d43::/32 maxlen: 32
2a13:2dc7::/32 maxlen: 32
2a13:d900::/32 maxlen: 32
2a13:d903::/32 maxlen: 32
2a13:2d40::/32 maxlen: 32
2a13:2d46::/32 maxlen: 32
2a13:2d45::/32 maxlen: 32
2a13:2dc1::/32 maxlen: 32
2a13:2dc2::/32 maxlen: 32
2a13:d906::/32 maxlen: 32
2a13:2d44::/32 maxlen: 32
2a13:d907::/32 maxlen: 32
2a13:d904::/32 maxlen: 32
2a13:d700::/29 maxlen: 29
2a13:2d47::/32 maxlen: 32
2a13:2dc6::/32 maxlen: 32
2a13:d905::/32 maxlen: 32
2a13:2dc0::/32 maxlen: 32
2a13:2dc3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:88:6a:1d:67:ca:d4:9f:77:2d:e2:0a:d2:56:46:77:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 12 08:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b2509ad66320d153e072034da5bcc8a0909e2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:ec:27:85:dc:85:c4:bb:84:6d:30:f2:e4:
cf:41:49:94:e7:14:bd:69:ee:3f:b4:23:1b:b2:8e:
d8:78:11:99:ce:ac:dc:58:40:bc:be:74:81:18:90:
20:fb:71:95:01:d3:50:04:00:d0:d6:cb:f6:70:2a:
89:90:76:46:cc:4c:99:6b:89:8a:4c:f1:e5:d5:6a:
f7:8e:0a:77:50:1c:33:7d:a5:b5:8c:07:29:14:87:
26:19:bf:a9:26:11:99:c5:18:3a:3c:e6:53:83:aa:
b5:9f:9a:e0:4f:09:98:73:8c:04:ed:9d:a0:a3:87:
db:38:a5:da:7a:3c:6f:d8:cf:9c:a4:3f:05:e9:aa:
84:b6:23:d6:57:eb:d0:6d:3d:83:2d:ba:35:8b:62:
86:b4:4d:65:b9:dc:c6:36:5c:a6:54:67:ab:60:88:
38:9d:a1:45:f5:c2:a9:88:50:fa:5d:04:34:42:35:
d5:03:85:a4:34:3a:ea:8a:68:ab:d1:59:02:4d:0a:
ef:74:f2:b7:ee:e3:d2:f3:08:4c:e0:d8:4e:36:71:
1b:15:af:27:38:4d:be:32:62:00:d6:14:fb:63:1c:
1f:cb:32:56:0b:f9:19:9c:5e:d8:0e:7d:7d:0e:03:
0d:2e:e8:23:cf:25:92:f3:ba:42:b4:31:c4:ff:94:
cd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:25:09:AD:66:32:0D:15:3E:07:20:34:DA:5B:CC:8A:09:09:E2:FF
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/eyUJrWYyDRU-ByA02lvMigkJ4v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2d40::/29
2a13:2dc0::/29
2a13:c700::/29
2a13:d700::/29
2a13:d900::/29
Signature Algorithm: sha256WithRSAEncryption
70:50:13:53:a4:37:d6:2d:a3:30:66:24:17:98:0d:6d:6d:d9:
d6:2b:0f:29:d8:61:2e:28:5c:a2:f3:15:9c:70:d5:a7:4d:ee:
c3:b2:7d:fd:18:83:34:71:fc:37:3f:b1:b0:ca:8a:1a:2b:47:
f6:70:19:28:49:b9:9a:d5:8e:a6:c5:08:75:16:a9:ad:8b:37:
dd:0b:e3:7b:dc:39:df:33:6d:d1:57:c6:b8:7e:55:e2:2c:0e:
92:b9:9e:23:dd:30:b5:47:43:22:68:54:8a:42:c6:c5:58:27:
74:7d:35:fd:d0:3a:89:30:fe:95:06:c8:66:92:39:6e:ce:2f:
e4:84:b3:80:e3:87:09:b3:1b:70:4c:0c:1b:70:01:77:36:ad:
71:5d:d9:eb:8b:87:bd:74:e2:cd:37:d4:3c:0e:c3:2b:55:fb:
34:9e:26:2f:b7:c1:36:a4:e0:a4:c4:93:e2:db:1f:02:31:f2:
ff:76:96:79:21:6a:0c:21:3a:c0:ee:46:d8:ca:28:11:9e:41:
7a:ff:92:a0:e5:47:df:ec:39:a8:27:a6:0e:3a:b9:f6:4f:f5:
d1:9d:3c:49:15:87:11:47:1f:73:61:4e:e1:a5:e4:79:c8:ee:
87:39:42:e5:0f:77:7c:93:c5:68:69:64:5c:46:66:64:ed:4f:
17:84:ed:16
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgISAYqIah1nytSfdy3iCtJWRnc+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwOTEyMDgwMjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjI1MDlhZDY2MzIwZDE1M2UwNzIwMzRkYTViY2M4YTA5MDllMmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxX7sJ4XchcS7hG0w8uTPQUmU5xS9
ae4/tCMbso7YeBGZzqzcWEC8vnSBGJAg+3GVAdNQBADQ1sv2cCqJkHZGzEyZa4mK
TPHl1Wr3jgp3UBwzfaW1jAcpFIcmGb+pJhGZxRg6POZTg6q1n5rgTwmYc4wE7Z2g
o4fbOKXaejxv2M+cpD8F6aqEtiPWV+vQbT2DLbo1i2KGtE1ludzGNlymVGerYIg4
naFF9cKpiFD6XQQ0QjXVA4WkNDrqimir0VkCTQrvdPK37uPS8whM4NhONnEbFa8n
OE2+MmIA1hT7YxwfyzJWC/kZnF7YDn19DgMNLugjzyWS87pCtDHE/5TNTQIDAQAB
o4ICJjCCAiIwHQYDVR0OBBYEFHslCa1mMg0VPgcgNNpbzIoJCeL/MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvZXlVSnJXWXlEUlUtQnlBMDJsdk1pZ2tKNHY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzApBAIAAjAjAwUDKhMtQAMF
AyoTLcADBQMqE8cAAwUDKhPXAAMFAyoT2QAwDQYJKoZIhvcNAQELBQADggEBAHBQ
E1OkN9YtozBmJBeYDW1t2dYrDynYYS4oXKLzFZxw1adN7sOyff0YgzRx/Dc/sbDK
ihorR/ZwGShJuZrVjqbFCHUWqa2LN90L43vcOd8zbdFXxrh+VeIsDpK5niPdMLVH
QyJoVIpCxsVYJ3R9Nf3QOokw/pUGyGaSOW7OL+SEs4DjhwmzG3BMDBtwAXc2rXFd
2euLh7104s031DwOwytV+zSeJi+3wTak4KTEk+LbHwIx8v92lnkhagwhOsDuRtjK
KBGeQXr/kqDlR9/sOagnpg46ufZP9dGdPEkVhxFHH3NhTuGl5HnI7oc5QuUPd3yT
xWhpZFxGZmTtTxeE7RY=
-----END CERTIFICATE-----
Generated at Sat May 10 05:11:04 2025 by rpki-client