Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/kAkm39f1bMcjlJ3b58ldno7JZa4.roa
File: kAkm39f1bMcjlJ3b58ldno7JZa4.roa (raw, json)
Hash identifier: elIpo8pZM+1K/oxeGj0q8mPqOCOUieMYUXh1+ndY+P0=
Subject key identifier: 90:09:26:DF:D7:F5:6C:C7:23:94:9D:DB:E7:C9:5D:9E:8E:C9:65:AE
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018458155683601F3C63363C63F6A9E41872
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/kAkm39f1bMcjlJ3b58ldno7JZa4.roa
Signing time: Tue 08 Nov 2022 16:31:44 +0000
ROA not before: Tue 08 Nov 2022 16:31:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399975
IP address blocks: 2a0f:140::/29 maxlen: 29
2a0f:e540::/29 maxlen: 29
2a0f:cc00::/29 maxlen: 29
2a13:1380::/29 maxlen: 29
2a0f:fc00::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:e4c0::/29 maxlen: 29
2a0f:2d80::/29 maxlen: 29
2a13:1480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:58:15:56:83:60:1f:3c:63:36:3c:63:f6:a9:e4:18:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 8 16:31:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=900926dfd7f56cc723949ddbe7c95d9e8ec965ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:12:dd:be:05:94:ad:f6:e5:37:ec:73:a9:9d:
6a:5a:00:03:4a:a5:fc:42:46:1f:5d:00:18:d1:80:
e8:bc:b4:40:2f:18:0a:74:da:1a:ae:e9:36:58:12:
bb:e2:08:0e:59:33:b0:8c:63:5b:ab:85:e9:cf:a9:
45:26:8e:fe:d0:14:20:03:41:a2:98:09:f8:f5:61:
82:51:7e:67:78:1b:42:ee:0b:a2:56:c7:d4:a7:57:
67:48:f7:b7:71:d1:b3:79:ac:15:8c:d6:54:fe:cf:
e7:6a:92:82:e4:4d:25:4a:4c:98:5b:bd:1a:b2:19:
0d:d1:9d:36:a2:13:ce:38:5b:55:d0:4c:b8:a7:90:
34:f0:5d:16:16:f9:b2:29:c3:09:fd:7c:15:98:f1:
f9:c8:3d:ca:91:48:ba:50:c5:29:15:74:5a:60:e5:
06:c6:e8:c1:9e:c3:c6:12:35:22:9b:bf:ba:ab:cf:
8c:7e:88:14:8e:16:c7:bf:1e:34:b8:3d:d0:54:ba:
10:37:68:3a:a4:db:ce:82:db:60:8a:df:d4:76:97:
05:14:b4:f3:f3:6e:28:f5:c7:01:78:f0:ad:c8:6d:
42:e7:59:c0:ff:74:4f:4f:66:8a:d9:ba:20:e4:83:
b7:ad:6c:47:65:02:0c:ad:a4:e6:b1:3b:d2:d7:d6:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:09:26:DF:D7:F5:6C:C7:23:94:9D:DB:E7:C9:5D:9E:8E:C9:65:AE
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/kAkm39f1bMcjlJ3b58ldno7JZa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:140::/29
2a0f:2d80::/29
2a0f:2f80::/29
2a0f:cc00::/29
2a0f:e4c0::/29
2a0f:e540::/29
2a0f:fc00::/29
2a13:1380::/29
2a13:1480::/29
Signature Algorithm: sha256WithRSAEncryption
41:b8:be:94:e4:48:86:66:5b:79:c7:cd:c0:71:d9:57:7d:ac:
39:b1:87:8d:b0:04:33:5e:40:c3:a2:18:8d:f6:b8:71:c0:87:
08:64:a4:0e:16:4d:df:67:47:b5:da:7d:8c:77:59:bc:69:07:
a4:f9:80:33:cc:a6:09:27:0e:6f:b5:fc:2d:90:91:83:39:90:
07:f6:86:76:6a:47:ad:82:ed:1a:ff:83:a2:21:64:69:b7:8a:
9d:35:28:7d:6e:78:20:97:99:65:26:b1:e5:77:6b:d2:a4:7b:
36:77:6b:53:8f:da:88:f1:77:a4:04:ac:31:8c:b5:54:93:9a:
11:01:03:58:a4:c0:19:8e:9f:54:d1:d6:1e:02:cf:a5:58:84:
be:5c:ec:a4:a4:77:3b:9f:17:0e:1b:26:77:23:01:60:d3:10:
5a:df:1a:d7:5b:0b:ca:e2:cd:6f:80:d2:4a:ae:06:aa:b5:85:
33:e2:ce:42:c4:0b:25:3a:d2:81:6d:e2:15:fe:a7:1e:4b:3a:
2e:68:e0:74:bb:4f:ea:64:5d:0f:b6:3e:c6:c7:38:2c:74:8c:
41:4c:2c:1e:c8:7d:fb:91:82:89:e2:87:da:53:a4:10:82:7b:
85:76:34:68:30:6b:8e:26:95:15:5f:af:8e:ac:2d:23:43:6c:
1b:9e:9c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 09:16:04 2025 by rpki-client