Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wBJpR_uGMoG1sR-WF0gmT4p1zBI.roa
File: wBJpR_uGMoG1sR-WF0gmT4p1zBI.roa (raw, json)
Hash identifier: zK/j71m6w2+9qfNi7Rx4wmyW18U8sz/4gqa6h3WrKZs=
Subject key identifier: C0:12:69:47:FB:86:32:81:B5:B1:1F:96:17:48:26:4F:8A:75:CC:12
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01823B24BDF686A1A3BF77422D9E7D6AA3AB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wBJpR_uGMoG1sR-WF0gmT4p1zBI.roa
Signing time: Tue 26 Jul 2022 15:33:59 +0000
ROA not before: Tue 26 Jul 2022 15:33:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396362
IP address blocks: 2a0f:e841::/32 maxlen: 32
2a0f:e843::/32 maxlen: 32
2a0f:a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3b:24:bd:f6:86:a1:a3:bf:77:42:2d:9e:7d:6a:a3:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 26 15:33:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0126947fb863281b5b11f961748264f8a75cc12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9b:d9:07:e6:f0:04:d6:8f:ef:0f:e1:c7:95:
d2:08:7a:96:b9:33:ba:a1:5b:fc:41:77:da:b3:d0:
8f:7a:66:ec:45:d1:3f:71:ac:97:83:44:33:ea:d5:
7b:b1:5f:47:51:b9:c5:37:5d:f9:34:9e:9c:9b:c6:
02:6c:2d:08:4e:0d:d1:6c:ee:00:71:cf:cb:43:26:
0f:00:d4:de:4f:c2:c1:ae:be:50:5a:00:ac:df:29:
0b:e2:5b:5b:69:8a:f4:36:58:10:33:e8:b0:c1:37:
c3:c9:0b:d3:ea:82:c7:93:a3:60:cc:92:9d:a5:09:
60:55:3a:6e:b9:46:c8:29:7f:89:71:05:bd:58:51:
a9:f2:a9:53:fd:51:85:de:53:8f:73:4c:22:e3:bd:
ef:55:2b:80:9a:f6:97:87:ae:28:7e:45:ab:85:42:
9a:bf:d9:be:4b:68:9a:60:7d:41:3b:16:1c:63:ab:
d8:4b:98:64:77:8d:65:40:e6:2b:f5:b8:ce:3c:80:
8b:ff:36:83:5c:89:ae:2a:c2:1c:f8:54:7b:89:01:
99:a0:ee:3f:7f:21:4b:77:ea:4b:ca:fb:8b:60:ab:
1d:c8:7a:d5:d1:f4:87:d8:21:99:f0:9a:69:1b:a8:
2c:70:0b:7a:db:11:69:80:6f:72:0a:8a:45:12:7a:
6e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:12:69:47:FB:86:32:81:B5:B1:1F:96:17:48:26:4F:8A:75:CC:12
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wBJpR_uGMoG1sR-WF0gmT4p1zBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:a00::/32
2a0f:e841::/32
2a0f:e843::/32
Signature Algorithm: sha256WithRSAEncryption
60:e8:c9:04:7c:47:15:e9:46:a8:79:08:13:4b:27:fe:04:58:
04:92:14:dc:72:da:50:bd:87:bd:e0:c8:33:7f:86:ac:67:21:
6c:37:54:0e:35:9f:7e:da:93:b6:19:e5:40:7e:0e:15:76:92:
6e:b1:8e:84:14:48:e2:c1:37:e8:89:18:58:b1:29:a1:5f:d4:
59:76:b7:12:bb:88:52:e4:37:f6:19:f3:27:b8:24:06:d4:5b:
ba:df:f7:86:ca:ed:b0:59:b3:db:95:68:d2:32:a1:e3:f5:cb:
1b:97:77:7d:d1:3e:e9:39:fa:4b:a8:34:5f:ef:1c:24:d5:4f:
ce:01:3f:81:fc:90:64:59:77:6a:9b:8b:ee:3d:87:c8:97:3f:
5b:09:57:f1:8d:8b:37:9c:68:85:ce:af:cc:6f:15:58:2b:97:
03:3b:88:1a:03:b6:a8:bf:38:a1:6a:e9:14:82:8c:50:a5:bd:
82:cb:50:40:62:76:06:26:c7:36:bf:10:43:4e:99:ef:5e:11:
75:94:59:f0:86:08:fa:e6:36:60:66:cb:5d:ea:9e:d6:87:a0:
0c:9e:b3:02:66:fc:e7:ae:c6:bd:9e:d4:49:39:1e:45:72:49:
80:dd:aa:72:16:d4:f2:56:fd:a1:8e:c7:61:06:10:88:00:b3:
c1:63:8d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:53:14 2025 by rpki-client