Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Ux5bSMEHfqDucw6BA8y_Hn1LLpA.roa
File: Ux5bSMEHfqDucw6BA8y_Hn1LLpA.roa (raw, json)
Hash identifier: WzbTyWK6/+37ksCDTa3NON4Ok5QOnQV7RIH1HFUmx8M=
Subject key identifier: 53:1E:5B:48:C1:07:7E:A0:EE:73:0E:81:03:CC:BF:1E:7D:4B:2E:90
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0127C081
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Ux5bSMEHfqDucw6BA8y_Hn1LLpA.roa
Signing time: Sat 01 Jan 2022 00:59:45 +0000
ROA not before: Sat 01 Jan 2022 00:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208210
IP address blocks: 62.3.50.0/24 maxlen: 24
2a0c:b641:420::/44 maxlen: 48
2a0f:8400::/32 maxlen: 48
2a0f:8401::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19382401 (0x127c081)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=531e5b48c1077ea0ee730e8103ccbf1e7d4b2e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a0:97:c3:2d:ee:c6:71:1f:f2:94:5f:05:f8:
51:d4:ba:7e:47:04:93:2f:67:0e:c9:78:6f:c7:8c:
09:33:76:fa:54:68:88:76:ac:5f:39:5f:0d:83:27:
01:0d:4b:51:6c:2e:ff:0a:b7:75:08:fb:6e:20:a2:
c2:50:49:a6:ab:66:0b:22:cb:41:ce:e7:d7:8a:0c:
8f:32:cd:59:74:70:1d:e3:03:ed:df:7f:35:19:ab:
76:f3:68:6a:76:21:ba:4c:d6:60:b3:0f:37:47:0c:
05:93:10:ae:d4:74:e7:8d:cc:73:1a:d6:15:80:9e:
5b:35:6e:68:3d:28:48:9d:8a:48:b1:9a:1a:4c:f1:
da:71:5c:9a:cf:9e:5d:79:cc:7f:08:48:d8:f2:c8:
6a:77:59:8b:4f:16:b4:5e:e3:6e:2e:f7:d1:c3:4a:
a3:8d:04:61:a9:7f:55:07:30:98:4a:a9:d8:c2:53:
7f:24:56:89:53:5d:40:d3:4d:00:d4:bc:7f:dd:43:
03:76:62:de:fd:d6:29:17:03:59:cf:55:5a:8e:1b:
33:84:ab:3a:76:8f:1e:ed:d7:57:78:a5:25:57:37:
50:24:6a:d1:55:57:5c:65:67:8b:03:f6:37:65:c1:
8a:fe:c0:e0:55:ac:04:87:97:e8:eb:cb:4a:72:6a:
4f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1E:5B:48:C1:07:7E:A0:EE:73:0E:81:03:CC:BF:1E:7D:4B:2E:90
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Ux5bSMEHfqDucw6BA8y_Hn1LLpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.50.0/24
IPv6:
2a0c:b641:420::/44
2a0f:8400::/31
Signature Algorithm: sha256WithRSAEncryption
57:f2:bb:c1:c9:e3:63:2b:70:06:e9:9f:80:03:10:fe:a8:57:
d1:83:fd:43:4d:77:b8:10:a8:bf:98:c3:7b:a2:83:d7:3a:16:
e0:fa:45:89:c4:70:e8:90:04:88:82:e1:9e:ef:7f:5f:94:d7:
22:10:06:83:a2:0c:1e:d8:eb:d2:ef:dc:ee:6d:62:97:17:eb:
5e:b7:6e:ca:67:f3:57:ee:0b:f3:2a:a0:88:62:12:cb:77:02:
d3:32:39:6e:ac:9f:75:47:04:48:57:94:0e:fd:38:cd:44:cd:
9a:2e:d0:78:4f:80:26:cb:10:a7:08:6e:76:81:fb:c2:1f:00:
13:48:7a:16:a1:95:d5:65:5f:6f:65:51:75:97:5a:da:43:6c:
db:bd:43:5b:52:cf:5f:c0:b2:c9:57:e7:cd:33:04:c9:76:34:
63:48:f8:7d:cb:4f:40:ad:5e:38:9e:25:30:c2:00:a1:5a:6f:
c8:73:f0:72:77:4c:f9:3f:91:1c:3a:cf:a9:db:2c:3d:36:6a:
ba:5e:67:40:ea:7c:22:1a:13:cc:72:72:cc:02:0d:d1:39:92:
94:f0:9a:e9:1b:a2:94:b6:3f:61:43:97:b1:6f:35:a1:dd:a2:
73:9b:2b:8e:35:e1:32:6c:c4:4d:ff:8d:cf:9e:7a:66:e0:3a:
62:a9:df:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:51 2025 by rpki-client