Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/xN4Ud_nWElNYgQZMmYW3HwnIbug.roa
File: xN4Ud_nWElNYgQZMmYW3HwnIbug.roa (raw, json)
Hash identifier: b8KDlAAKDtd7jlBKgToPAuZBGlo1SixMcNYIy7Ml6Gw=
Subject key identifier: C4:DE:14:77:F9:D6:12:53:58:81:06:4C:99:85:B7:1F:09:C8:6E:E8
Certificate issuer: /CN=555e0d730e1a56d57f827e2e5446d01d8d26158e
Certificate serial: 25580C
Authority key identifier: 55:5E:0D:73:0E:1A:56:D5:7F:82:7E:2E:54:46:D0:1D:8D:26:15:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VV4Ncw4aVtV_gn4uVEbQHY0mFY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/xN4Ud_nWElNYgQZMmYW3HwnIbug.roa
Signing time: Sat 01 Jan 2022 00:51:48 +0000
ROA not before: Sat 01 Jan 2022 00:51:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210584
IP address blocks: 62.204.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447372 (0x25580c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=555e0d730e1a56d57f827e2e5446d01d8d26158e
Validity
Not Before: Jan 1 00:51:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4de1477f9d612535881064c9985b71f09c86ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6a:fb:ac:89:41:bc:bb:c4:64:e7:11:a0:f5:
f7:f4:3d:dc:5a:1a:13:a0:c3:b9:9c:0b:53:13:06:
c6:28:a9:d6:71:a6:c2:66:d8:3d:f6:84:e6:b1:33:
54:e9:0b:e1:f9:c1:15:37:3f:7c:fa:82:54:21:fd:
36:4e:7c:d2:59:40:43:01:1a:ef:6f:cc:38:f0:67:
c4:fb:74:2a:23:4b:40:b0:e2:d5:71:35:69:43:0b:
d7:56:9d:89:d6:0b:00:2c:98:17:3f:a8:42:77:50:
a8:12:d7:34:71:0c:9d:74:6b:b7:81:76:63:dd:7e:
1c:79:39:79:98:46:7b:5c:1a:59:98:ba:be:94:be:
ff:2f:5f:ce:9b:19:4d:72:d6:dd:bf:da:38:b0:32:
64:9d:5d:2c:62:88:4a:de:52:bd:59:d8:3c:fc:ef:
6f:99:a0:72:e3:3e:f4:a6:21:94:5e:db:d6:ae:48:
49:a9:80:d4:e4:6d:bc:4f:0f:cd:85:4e:8c:1b:37:
82:cb:e2:4a:d3:c4:1a:dd:51:14:3e:bf:84:a1:f1:
17:82:e8:b2:a3:2d:d8:d2:e2:aa:ff:c0:e1:78:fc:
27:6b:70:84:ed:c8:8e:cb:fa:8f:2b:08:d3:ab:52:
88:b2:ca:30:27:c6:e5:55:db:36:58:66:12:c8:4e:
50:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:DE:14:77:F9:D6:12:53:58:81:06:4C:99:85:B7:1F:09:C8:6E:E8
X509v3 Authority Key Identifier:
keyid:55:5E:0D:73:0E:1A:56:D5:7F:82:7E:2E:54:46:D0:1D:8D:26:15:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VV4Ncw4aVtV_gn4uVEbQHY0mFY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/xN4Ud_nWElNYgQZMmYW3HwnIbug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/96ce99-7ebe-4e8a-94bd-0a1ca5490afd/1/VV4Ncw4aVtV_gn4uVEbQHY0mFY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.63.0/24
Signature Algorithm: sha256WithRSAEncryption
72:90:a5:c5:47:bf:ab:56:b7:7e:09:4e:5b:db:8e:bb:ec:3d:
6f:8b:c2:73:b4:96:2e:9d:16:46:5e:21:9d:48:a1:55:fb:ba:
29:c4:82:e0:51:7f:69:aa:3d:52:bc:d8:9d:da:42:b4:d7:83:
6a:88:da:93:53:9d:c5:21:da:10:c8:ef:f4:fb:33:65:cf:e5:
d4:bc:cc:bb:43:de:26:42:64:33:73:b3:e2:f0:dd:a8:af:e0:
ec:d5:b8:33:a9:95:02:ec:3e:c6:b0:26:89:72:3d:41:40:7e:
6e:9c:fb:80:50:24:39:24:49:92:fd:f9:d5:db:fd:9f:3a:04:
8e:9a:47:af:75:e2:73:37:ea:b3:2b:3a:01:a7:b0:da:2b:ea:
b1:11:09:36:3c:f5:7c:22:78:64:df:74:ff:b9:5a:1b:c6:75:
8d:85:95:69:7f:bb:95:89:c6:99:aa:0e:59:87:f6:08:9c:18:
62:68:f3:2e:54:01:d2:b1:be:7e:1f:d4:e5:c1:a8:eb:5a:7a:
19:06:0c:a3:9e:ac:9c:01:f0:48:6d:23:67:13:9b:d9:c5:38:
a1:14:d3:77:f9:90:9b:ba:b8:d4:c1:76:4c:d3:14:91:70:37:
17:b3:6b:0f:53:78:a0:5d:38:e4:9f:90:3c:96:bd:c2:23:5e:
0c:54:bd:14
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDJVgMMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU1
NWUwZDczMGUxYTU2ZDU3ZjgyN2UyZTU0NDZkMDFkOGQyNjE1OGUwHhcNMjIwMTAx
MDA1MTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhjNGRlMTQ3N2Y5ZDYx
MjUzNTg4MTA2NGM5OTg1YjcxZjA5Yzg2ZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA3Wr7rIlBvLvEZOcRoPX39D3cWhoToMO5nAtTEwbGKKnWcabC
Ztg99oTmsTNU6Qvh+cEVNz98+oJUIf02TnzSWUBDARrvb8w48GfE+3QqI0tAsOLV
cTVpQwvXVp2J1gsALJgXP6hCd1CoEtc0cQyddGu3gXZj3X4ceTl5mEZ7XBpZmLq+
lL7/L1/OmxlNctbdv9o4sDJknV0sYohK3lK9Wdg8/O9vmaBy4z70piGUXtvWrkhJ
qYDU5G28Tw/NhU6MGzeCy+JK08Qa3VEUPr+EofEXguiyoy3Y0uKq/8DhePwna3CE
7ciOy/qPKwjTq1KIssowJ8blVds2WGYSyE5QSQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFMTeFHf51hJTWIEGTJmFtx8JyG7oMB8GA1UdIwQYMBaAFFVeDXMOGlbVf4J+
LlRG0B2NJhWOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VlY0TmN3NGFWdFZfZ240dVZFYlFIWTBtRlk0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yYi85NmNlOTktN2ViZS00ZThhLTk0YmQtMGExY2E1NDkwYWZkLzEv
eE40VWRfbldFbE5ZZ1FaTW1ZVzNId25JYnVnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85
NmNlOTktN2ViZS00ZThhLTk0YmQtMGExY2E1NDkwYWZkLzEvVlY0TmN3NGFWdFZf
Z240dVZFYlFIWTBtRlk0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPsw/MA0GCSqGSIb3DQEBCwUAA4IB
AQBykKXFR7+rVrd+CU5b24677D1vi8JztJYunRZGXiGdSKFV+7opxILgUX9pqj1S
vNid2kK014NqiNqTU53FIdoQyO/0+zNlz+XUvMy7Q94mQmQzc7Pi8N2or+Ds1bgz
qZUC7D7GsCaJcj1BQH5unPuAUCQ5JEmS/fnV2/2fOgSOmkevdeJzN+qzKzoBp7Da
K+qxEQk2PPV8Inhk33T/uVobxnWNhZVpf7uVicaZqg5Zh/YInBhiaPMuVAHSsb5+
H9TlwajrWnoZBgyjnqycAfBIbSNnE5vZxTihFNN3+ZCburjUwXZM0xSRcDcXs2sP
U3igXTjkn5A8lr3CI14MVL0U
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:48:38 2025 by rpki-client