Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/f4f897-82a7-4a27-b1f1-784db9b1da2b/1/J3ZyfSVLd91Nwujv4_xsXN5f4xM.roa
File: J3ZyfSVLd91Nwujv4_xsXN5f4xM.roa (raw, json)
Hash identifier: 6hfWuyy82Y9+q+CXo8GQJ8Clyh8xsPMgppj0xi4Ofz0=
Subject key identifier: 27:76:72:7D:25:4B:77:DD:4D:C2:E8:EF:E3:FC:6C:5C:DE:5F:E3:13
Certificate issuer: /CN=6fedf0b7615290aefacc5f6aa6b41d9d1843f1b6
Certificate serial: 0A228079
Authority key identifier: 6F:ED:F0:B7:61:52:90:AE:FA:CC:5F:6A:A6:B4:1D:9D:18:43:F1:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b-3wt2FSkK76zF9qprQdnRhD8bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/f4f897-82a7-4a27-b1f1-784db9b1da2b/1/J3ZyfSVLd91Nwujv4_xsXN5f4xM.roa
Signing time: Sat 01 Jan 2022 12:54:49 +0000
ROA not before: Sat 01 Jan 2022 12:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51132
IP address blocks: 91.145.16.0/20 maxlen: 20
83.68.224.0/19 maxlen: 19
185.95.160.0/22 maxlen: 22
62.108.192.0/20 maxlen: 20
91.145.0.0/19 maxlen: 19
91.145.0.0/20 maxlen: 20
62.108.208.0/21 maxlen: 21
2a02:eb8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170033273 (0xa228079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fedf0b7615290aefacc5f6aa6b41d9d1843f1b6
Validity
Not Before: Jan 1 12:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2776727d254b77dd4dc2e8efe3fc6c5cde5fe313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:69:0f:c7:c7:ea:58:77:9d:1a:8a:5d:93:29:
59:88:91:b1:5b:11:ec:d4:75:ea:b6:1f:8d:b3:49:
8c:2e:e9:d1:9a:1d:fd:a8:cb:00:7f:d8:b1:08:d2:
b6:69:63:5f:c5:9b:fc:02:db:d9:28:2c:6c:33:bf:
24:4c:ab:28:a2:f5:91:3e:98:31:51:a9:b9:43:b9:
80:c6:5e:8e:15:2d:a8:8a:6d:17:d0:12:81:59:a8:
ba:cc:a0:34:37:a5:66:89:7c:c8:0d:68:1f:82:f7:
87:7f:a4:42:cf:c3:89:db:27:d6:f0:e9:f4:df:25:
e9:5b:3d:0b:ec:01:9d:aa:ac:aa:cc:e5:51:1b:6b:
95:ee:71:21:ca:92:2a:6e:8e:a6:4b:ef:f1:8e:48:
bf:6b:1d:85:d0:6d:c7:c2:18:c4:49:58:88:cd:07:
df:c0:0c:a6:05:fb:b8:fc:f4:72:87:71:c3:d5:e3:
19:06:6f:75:c8:a7:e5:b4:65:c2:17:6d:a4:4f:32:
ca:27:60:18:8a:f5:6e:b3:18:20:cb:df:fc:c6:5b:
bd:d4:73:3c:ef:1e:e7:9f:aa:18:3f:9d:9a:fd:e7:
1e:90:1d:b7:86:e6:ec:e3:9a:91:68:3d:5d:a4:ae:
72:ee:3b:f8:2b:9b:31:44:71:a8:6b:55:b2:96:79:
8f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:76:72:7D:25:4B:77:DD:4D:C2:E8:EF:E3:FC:6C:5C:DE:5F:E3:13
X509v3 Authority Key Identifier:
keyid:6F:ED:F0:B7:61:52:90:AE:FA:CC:5F:6A:A6:B4:1D:9D:18:43:F1:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b-3wt2FSkK76zF9qprQdnRhD8bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f4f897-82a7-4a27-b1f1-784db9b1da2b/1/J3ZyfSVLd91Nwujv4_xsXN5f4xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f4f897-82a7-4a27-b1f1-784db9b1da2b/1/b-3wt2FSkK76zF9qprQdnRhD8bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.108.192.0-62.108.215.255
83.68.224.0/19
91.145.0.0/19
185.95.160.0/22
IPv6:
2a02:eb8::/29
Signature Algorithm: sha256WithRSAEncryption
77:64:85:b3:b4:82:8f:76:a8:56:63:e8:6f:3a:09:44:29:b6:
f1:33:3a:f3:d4:7e:ca:9d:9a:b2:b8:4d:11:51:89:5d:79:28:
c3:b9:c9:8b:f7:52:56:24:81:1f:0b:1e:95:80:98:a9:7e:cb:
f8:b4:b1:bd:61:24:f1:05:49:44:7a:75:8a:04:49:29:4b:32:
c5:27:44:5d:d4:c3:f3:b4:75:df:ac:3a:32:48:3c:17:ba:eb:
00:e2:1e:ca:be:7c:0e:55:73:8c:86:92:9c:53:a8:2d:27:db:
6c:92:6b:ed:3f:dc:31:0f:89:b2:67:eb:c7:15:a9:ad:fb:b1:
07:74:ac:99:3a:41:d3:77:8c:22:24:81:57:33:19:f4:88:e0:
55:04:98:7a:ad:83:17:15:f5:96:92:5d:44:ed:4d:8b:f1:fa:
a4:49:03:cd:38:fc:e3:3b:87:49:e5:00:c9:02:3e:0a:bc:ac:
36:20:d4:8e:8a:c9:32:cf:1f:85:a2:7f:ab:e7:7d:ea:2c:26:
9f:a7:41:eb:f1:7a:8e:a2:b8:2d:5a:68:0b:54:b2:d6:69:3e:
e8:96:76:b6:ac:86:c2:75:00:ae:4f:97:43:db:e2:0f:48:bc:
aa:21:91:cb:b4:45:0f:46:dc:15:c8:1b:9e:4e:3e:03:a2:8e:
7c:85:cf:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:36 2025 by rpki-client