Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mHMzOZ_f8_3_Rtp9PlcjvBBTomI.roa
File: mHMzOZ_f8_3_Rtp9PlcjvBBTomI.roa (raw, json)
Hash identifier: pFMoK8J5K2AFSrx2iulGxX7WiFQIvxTzqKH5hToiluM=
Subject key identifier: 98:73:33:39:9F:DF:F3:FD:FF:46:DA:7D:3E:57:23:BC:10:53:A2:62
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183E4EF1134B009FCEA96DB519F30B0EE6E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mHMzOZ_f8_3_Rtp9PlcjvBBTomI.roa
Signing time: Mon 17 Oct 2022 07:53:36 +0000
ROA not before: Mon 17 Oct 2022 07:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a12:f540::/29 maxlen: 29
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0e:c780::/29 maxlen: 29
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e4:ef:11:34:b0:09:fc:ea:96:db:51:9f:30:b0:ee:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 17 07:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=987333399fdff3fdff46da7d3e5723bc1053a262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:78:55:6e:72:e3:8a:76:ad:ff:8e:00:78:14:
fb:29:c6:b0:5a:52:43:dc:20:22:56:29:81:fd:ac:
4f:87:33:a4:ef:f2:d3:cb:fa:3e:e3:21:27:0c:0a:
a3:6f:06:dd:93:aa:32:46:99:c6:4a:4f:57:5d:63:
ed:60:8a:0b:f2:8d:4f:d1:c9:36:a2:d9:99:03:7e:
c2:cf:11:19:bb:b4:ee:0a:55:4b:a1:cf:17:18:c4:
df:65:d4:23:e4:61:fb:92:e6:f1:d8:98:95:c9:4e:
df:fd:26:3e:87:b6:be:a3:7d:6b:92:3a:f3:cd:15:
0a:ac:bd:e9:18:78:ce:d5:37:2b:c2:d8:ae:3f:09:
4f:ac:cc:d0:1b:1c:24:bb:91:c9:e4:03:eb:3a:bb:
4b:ad:fd:28:a7:c4:ad:6c:34:69:23:47:75:24:dd:
e5:f0:4f:21:59:46:2d:f3:d2:31:a9:0e:88:bc:6e:
08:e3:26:72:a0:2a:41:00:2d:6b:d9:3e:c4:80:50:
0e:bb:8c:66:95:a2:3d:93:a6:74:82:ac:13:03:64:
8b:4c:be:96:f7:e8:a0:d4:da:a8:23:96:b2:68:dd:
aa:4f:bc:19:e2:8e:54:e5:4b:7c:c0:27:d3:5b:1c:
3e:5c:e8:2b:32:d9:a8:47:44:b7:cf:87:6c:09:bf:
8f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:73:33:39:9F:DF:F3:FD:FF:46:DA:7D:3E:57:23:BC:10:53:A2:62
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mHMzOZ_f8_3_Rtp9PlcjvBBTomI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/29
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/29
2a12:d540::/29
2a12:f540::/29
Signature Algorithm: sha256WithRSAEncryption
79:6d:03:0a:a9:cb:58:a1:df:2f:89:e7:51:9d:9b:0b:03:06:
d2:73:1d:1f:38:63:45:b8:51:0d:f8:9e:f3:66:e4:51:c2:b9:
a3:0d:04:02:e2:ff:ce:0e:76:bd:74:00:14:7a:9a:87:97:8c:
7a:fe:49:c3:d8:8d:8c:a1:1e:54:15:a4:63:53:41:e2:27:c6:
e1:28:9a:58:29:fd:04:2e:d0:10:b8:fe:dd:8f:50:8f:38:aa:
22:10:78:6c:b9:ce:cb:54:d1:d5:ca:89:46:d6:76:88:b2:24:
29:ee:cc:57:8d:db:7a:3f:19:2f:d0:a7:ae:8c:6c:1e:ec:89:
c7:34:6f:22:01:53:34:e0:d9:ae:b3:e6:40:18:c7:d2:ed:cd:
27:35:66:25:19:47:d8:74:fa:0b:1b:32:32:70:41:75:0e:db:
73:1f:64:a7:1c:d2:65:8b:19:da:98:4f:02:c5:c5:b6:7e:77:
39:6a:13:48:22:40:f4:ba:51:11:81:52:ab:2f:9a:b8:92:62:
62:52:70:b5:4b:3d:6d:2e:87:79:68:03:38:7e:d8:86:b0:48:
4f:84:c7:78:ad:a8:8a:fa:1b:3e:5b:58:1c:5c:bb:aa:fa:4e:
27:b1:25:87:e9:a4:2b:96:c3:ba:6a:06:ee:a5:e2:87:71:de:
46:50:0d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 05:00:16 2025 by rpki-client