Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sWKT9etxQqlIYptAHyR1KA62N0E.roa
File: sWKT9etxQqlIYptAHyR1KA62N0E.roa (raw, json)
Hash identifier: 9PdPgBldCHSX8I1Gq21NPm42opWtOcW5A/CZ/bQzj8Y=
Subject key identifier: B1:62:93:F5:EB:71:42:A9:48:62:9B:40:1F:24:75:28:0E:B6:37:41
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018BFC35BCD309F5F986BD0455FF44F43D74
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sWKT9etxQqlIYptAHyR1KA62N0E.roa
Signing time: Thu 23 Nov 2023 12:44:22 +0000
ROA not before: Thu 23 Nov 2023 12:44:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205544
IP address blocks: 2a0f:e6c6:1::/48 maxlen: 48
2a13:e101:1::/48 maxlen: 48
2a0f:e1c0:1::/48 maxlen: 48
2a12:ecc0:1::/48 maxlen: 48
2a13:3380:1::/48 maxlen: 48
2a0f:e6c7:1::/48 maxlen: 48
2a13:e100:1::/48 maxlen: 48
2a12:ecc0:f::/48 maxlen: 48
2a13:c700:1::/48 maxlen: 48
2a0f:e440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fc:35:bc:d3:09:f5:f9:86:bd:04:55:ff:44:f4:3d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 23 12:44:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b16293f5eb7142a948629b401f2475280eb63741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ca:48:cb:ee:52:5d:f7:c3:83:5e:45:fd:8c:
05:85:b3:48:21:7a:b2:87:02:39:42:00:c4:a4:41:
9c:7f:c2:6f:d2:b5:fd:e6:40:96:bb:79:ea:20:c1:
e7:8b:1c:04:fb:0e:57:6a:e4:85:9c:72:00:ed:51:
3a:2f:c3:44:41:59:4f:03:c1:4b:03:3e:c3:f1:74:
a4:0a:34:49:6a:00:fc:3b:be:43:ff:17:87:0f:b6:
e1:d8:97:f2:f5:26:7e:c0:82:02:02:26:44:39:8a:
af:f0:48:7f:62:cd:19:da:00:76:fa:9d:4d:a3:aa:
75:7e:e4:ba:1b:0d:16:02:2f:f7:f9:77:52:8f:ca:
68:f2:a4:d0:50:55:ab:0b:96:bf:36:63:a4:18:62:
4e:1c:1b:1f:8f:16:66:1c:aa:47:cd:49:82:3b:b7:
f8:52:54:ac:3e:ab:b5:2c:49:3d:ff:9b:1c:72:c3:
d6:cd:b1:b0:18:32:46:5b:6a:45:c3:3a:08:80:00:
05:fc:53:05:70:35:c5:e1:c0:5e:d0:b1:f2:44:58:
90:81:7c:47:7a:b6:ca:54:6e:d6:81:2c:1a:bc:31:
78:01:88:58:19:31:1d:54:f9:a0:4f:f7:63:87:c5:
32:33:b0:44:d4:16:c9:08:ab:13:8c:99:e1:ac:5b:
4a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:62:93:F5:EB:71:42:A9:48:62:9B:40:1F:24:75:28:0E:B6:37:41
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sWKT9etxQqlIYptAHyR1KA62N0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e1c0:1::/48
2a0f:e440::/29
2a0f:e6c6:1::/48
2a0f:e6c7:1::/48
2a12:ecc0:1::/48
2a12:ecc0:f::/48
2a13:3380:1::/48
2a13:c700:1::/48
2a13:e100:1::/48
2a13:e101:1::/48
Signature Algorithm: sha256WithRSAEncryption
7c:e6:ba:e1:27:4a:a9:30:cf:44:b8:a4:24:b7:23:7b:93:e4:
43:5d:40:64:6c:b1:cc:a7:98:35:da:3c:bb:1e:05:b3:a7:d6:
da:cc:79:b5:c8:0f:dc:ee:25:f6:1b:2f:f6:72:2d:60:57:6c:
e2:b7:48:95:ce:72:08:6e:1f:05:8a:59:89:d0:89:f9:8c:f7:
94:d3:5b:c7:2f:02:5c:56:32:2c:f8:17:f5:40:28:94:56:40:
88:a6:0e:28:14:85:46:48:85:3c:4c:90:ad:6a:09:47:5b:7a:
96:f0:24:cc:18:47:90:94:95:10:2e:4e:16:dc:5d:3d:2c:14:
de:21:91:d1:a7:48:8e:d8:67:7f:ac:cc:a1:37:f7:c3:b4:3d:
8f:3a:0f:e7:cd:b0:e5:1d:a7:21:d2:5c:f4:fd:a1:be:f2:31:
1e:70:0d:82:e8:1f:6c:dd:4b:61:06:1b:79:b2:57:d7:fb:90:
77:eb:2b:77:1a:b1:68:c4:91:e3:63:42:12:f5:21:9b:f7:0f:
58:88:b1:95:3b:8d:63:2c:0f:f2:61:af:f3:a5:75:10:a8:ae:
9d:d5:04:94:ad:86:7a:b6:07:9e:09:59:36:a7:e2:a0:a4:38:
23:a5:ac:fd:45:0f:21:fb:07:c6:00:b6:f9:46:42:5d:1e:2f:
10:29:5c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:11:50 2025 by rpki-client