Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/93f6ee-05ea-4f31-9af6-dfc5cc64a81e/1/aOe7gT-b2M8bzNsqCjQbmjtH5cc.roa
File: aOe7gT-b2M8bzNsqCjQbmjtH5cc.roa (raw, json)
Hash identifier: cjrEfHTIZPEY80CWdKegWEQ5C1m4G6Uzjakl7Kmp9qA=
Subject key identifier: 68:E7:BB:81:3F:9B:D8:CF:1B:CC:DB:2A:0A:34:1B:9A:3B:47:E5:C7
Certificate issuer: /CN=3ec8c20e65dcd33ff8a5e3c30a645925c5c9f95f
Certificate serial: 01856F26CFD62C166C6DAB2A47052C32C7E7
Authority key identifier: 3E:C8:C2:0E:65:DC:D3:3F:F8:A5:E3:C3:0A:64:59:25:C5:C9:F9:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsjCDmXc0z_4pePDCmRZJcXJ-V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/93f6ee-05ea-4f31-9af6-dfc5cc64a81e/1/aOe7gT-b2M8bzNsqCjQbmjtH5cc.roa
Signing time: Sun 01 Jan 2023 21:04:52 +0000
ROA not before: Sun 01 Jan 2023 21:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44756
IP address blocks: 62.100.128.0/19 maxlen: 24
188.130.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:cf:d6:2c:16:6c:6d:ab:2a:47:05:2c:32:c7:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec8c20e65dcd33ff8a5e3c30a645925c5c9f95f
Validity
Not Before: Jan 1 21:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68e7bb813f9bd8cf1bccdb2a0a341b9a3b47e5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:eb:28:64:d9:ca:ca:60:07:eb:a5:7f:dd:fb:
3e:1f:5c:4b:05:9f:83:ec:26:ad:41:ba:f2:21:16:
5e:dd:86:2d:d5:d0:85:0b:36:f0:e1:d6:dc:63:d5:
7e:1b:05:25:90:f1:02:97:8e:80:5a:e1:00:a6:8d:
ca:f3:ea:05:dc:9f:ed:2d:3c:17:94:fc:49:41:c9:
77:57:1e:6d:4b:cf:85:bd:51:49:99:0d:b2:7c:ce:
dd:07:47:68:b7:12:ce:c1:cd:cd:11:a0:61:9f:04:
93:12:42:72:ad:fc:ad:b8:65:a9:54:4b:41:1c:86:
5f:fd:21:41:9e:fc:8f:45:e2:3a:56:00:27:9e:24:
da:6e:ef:cd:cb:bd:33:41:18:5a:0a:a1:d4:fd:c3:
ad:cb:23:1a:5c:3f:aa:5e:df:59:71:18:aa:d7:d5:
04:50:92:82:02:ac:1f:e4:2b:be:7f:71:ff:76:eb:
d1:a2:ad:5c:22:51:4b:0a:83:f4:4e:bf:0b:40:cd:
06:92:45:f8:66:2b:ec:19:6d:80:cc:97:7e:1d:c9:
06:f2:15:e7:cc:d7:ff:90:af:9d:19:ce:dd:72:a4:
20:72:0c:24:0d:e8:07:f8:fc:82:8c:3a:17:fb:20:
8e:52:86:f9:76:f7:c7:c3:5f:09:65:cf:d2:e1:a7:
48:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E7:BB:81:3F:9B:D8:CF:1B:CC:DB:2A:0A:34:1B:9A:3B:47:E5:C7
X509v3 Authority Key Identifier:
keyid:3E:C8:C2:0E:65:DC:D3:3F:F8:A5:E3:C3:0A:64:59:25:C5:C9:F9:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsjCDmXc0z_4pePDCmRZJcXJ-V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/93f6ee-05ea-4f31-9af6-dfc5cc64a81e/1/aOe7gT-b2M8bzNsqCjQbmjtH5cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/93f6ee-05ea-4f31-9af6-dfc5cc64a81e/1/PsjCDmXc0z_4pePDCmRZJcXJ-V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.128.0/19
188.130.0.0/17
Signature Algorithm: sha256WithRSAEncryption
08:f8:be:4c:f9:a4:29:b7:9f:bd:32:31:0e:5c:9a:ea:54:46:
10:2e:77:f2:bd:91:10:7f:14:99:b2:01:16:e8:14:34:bc:a8:
f8:d4:21:81:86:8d:0a:74:97:8d:e6:ae:c0:56:a1:4c:2b:82:
55:ea:5b:1d:cf:e9:af:f4:6d:c5:3a:e8:57:91:e1:23:d5:1b:
78:ff:47:72:26:cb:a5:08:5a:c4:4c:63:7c:35:d6:a7:ce:f7:
80:b5:c2:93:a1:85:20:2d:34:2b:75:b9:41:54:5a:f7:7a:11:
d1:fe:82:f5:de:0f:c5:f0:e0:00:6b:c4:20:53:24:ae:81:23:
83:b4:ad:8b:f4:e2:25:99:bb:d8:d7:d5:70:44:62:62:0a:63:
99:df:07:89:45:a2:1b:58:83:11:6e:a6:c0:78:04:84:60:13:
7e:96:46:8e:02:40:37:20:55:2c:e9:0b:bc:bc:6a:db:f5:80:
4f:60:07:eb:33:63:c8:a7:fe:77:33:9b:b5:f3:28:40:58:e3:
e6:45:2b:e6:2f:1c:94:0e:9a:c7:4e:3e:64:fe:04:e2:59:e4:
0f:46:85:44:b3:1a:f2:18:8c:e0:91:a9:11:e8:5b:57:08:4b:
05:04:f5:7d:90:9d:18:3a:c9:db:d1:4e:e1:71:cd:7c:8f:84:
b7:76:f1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:34:50 2025 by rpki-client