Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tsywFq2k2gOE3QLNH3zLUTInFu4.roa
File: tsywFq2k2gOE3QLNH3zLUTInFu4.roa (raw, json)
Hash identifier: XhF193vPPuvh6X3tV8+4B6QJtH1m/4aWYbwx8E178VU=
Subject key identifier: B6:CC:B0:16:AD:A4:DA:03:84:DD:02:CD:1F:7C:CB:51:32:27:16:EE
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03AAFDAC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tsywFq2k2gOE3QLNH3zLUTInFu4.roa
Signing time: Mon 27 Jun 2022 07:36:40 +0000
ROA not before: Mon 27 Jun 2022 07:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62160
IP address blocks: 2a0f:4f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61537708 (0x3aafdac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 27 07:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6ccb016ada4da0384dd02cd1f7ccb51322716ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f2:04:09:5f:c0:81:ad:8d:f7:4e:6b:41:83:
d3:c5:6e:af:72:86:29:5e:fe:42:8a:ce:55:b0:3c:
f5:ce:c0:de:ac:3d:43:bd:69:57:fb:ac:49:65:be:
96:7d:da:e2:9b:9e:c0:ca:3d:f5:b0:7b:f6:13:39:
d4:a7:fb:cc:f8:19:f0:cf:3e:7f:44:63:a8:1b:f3:
f7:4c:65:ad:1a:3e:0c:76:1b:d6:14:fa:2a:fc:2c:
0e:85:6a:56:a2:e9:73:4c:49:3d:d8:2b:83:f4:3e:
a0:b0:46:44:e4:19:25:ed:b9:cc:89:4c:fb:78:db:
d7:7c:86:f2:be:83:76:96:bd:99:8d:f3:61:85:3d:
ee:11:78:dd:ef:46:93:43:74:0c:85:bb:8f:26:90:
a9:c5:4b:d6:23:9f:65:06:d3:c4:a0:31:b3:3f:af:
ed:1c:a8:6a:c8:b5:91:c4:8c:8b:a4:89:bd:d4:2a:
f4:d7:41:ca:7f:a4:70:e5:6a:72:c9:0c:86:9f:f4:
5d:e4:65:84:38:2d:bc:6d:6b:5c:63:f2:74:67:98:
5c:73:15:62:45:e5:14:2a:56:b9:1f:93:26:a4:ab:
cb:e0:08:cb:23:54:fd:76:6b:b9:57:2c:03:61:ff:
05:dc:81:22:09:0e:b3:d3:01:f3:51:7d:81:f7:a7:
ae:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CC:B0:16:AD:A4:DA:03:84:DD:02:CD:1F:7C:CB:51:32:27:16:EE
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tsywFq2k2gOE3QLNH3zLUTInFu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:4f80::/29
Signature Algorithm: sha256WithRSAEncryption
74:7f:28:84:59:10:ef:b3:74:8e:b0:1f:a1:5e:30:1e:0f:ff:
db:f1:17:8a:de:6e:56:d2:09:55:ec:f4:00:f8:d8:83:21:6c:
08:c0:c3:d7:74:77:52:01:fa:b2:86:ba:ff:35:f4:5d:af:4a:
12:86:be:1b:9d:4a:46:54:22:28:b2:e3:30:9d:ed:d3:f9:ad:
1c:bf:1f:8b:1f:9c:7f:1f:89:03:be:1f:d6:ad:9c:a4:7f:82:
44:cd:6a:cb:59:0c:49:1d:60:11:6a:50:73:e2:84:ae:c2:0c:
da:20:ff:df:d5:86:fe:ac:b7:5d:4d:c5:f3:7a:b5:90:51:e6:
05:4f:67:11:82:42:6f:e2:e9:77:3c:75:8f:df:72:b2:0f:60:
a6:c6:79:0e:61:33:e6:3a:02:e8:16:55:b8:b4:06:8a:66:f5:
d0:ab:ed:e4:96:74:e4:00:a2:f7:75:b2:5b:c4:d0:32:15:6e:
65:46:f9:5b:e6:a3:1a:5c:08:69:4e:a8:58:23:3e:49:36:0f:
04:d4:cd:7d:17:77:02:c2:bf:0b:0c:26:d4:c4:07:48:82:ab:
d7:1d:59:30:e3:46:4e:e5:5d:c0:25:88:37:65:57:91:bf:46:
51:93:91:15:88:fb:c6:c5:f5:ce:7d:0f:29:f4:f9:0f:c5:e9:
3a:dd:04:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 05:53:49 2025 by rpki-client