Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/2uLfgtRB3j5bmYH1Wlm3fNIwWnc.roa
File: 2uLfgtRB3j5bmYH1Wlm3fNIwWnc.roa (raw, json)
Hash identifier: bNFtlQtnwU4zhPzpbnguPVwbDLkhmtFMrFFaVR+blO0=
Subject key identifier: DA:E2:DF:82:D4:41:DE:3E:5B:99:81:F5:5A:59:B7:7C:D2:30:5A:77
Certificate issuer: /CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Certificate serial: 018570027CC151E7E93FA4FC7337E149D93C
Authority key identifier: 2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/2uLfgtRB3j5bmYH1Wlm3fNIwWnc.roa
Signing time: Mon 02 Jan 2023 01:04:49 +0000
ROA not before: Mon 02 Jan 2023 01:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29049
IP address blocks: 62.212.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:7c:c1:51:e7:e9:3f:a4:fc:73:37:e1:49:d9:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Validity
Not Before: Jan 2 01:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dae2df82d441de3e5b9981f55a59b77cd2305a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:56:44:69:32:da:99:a4:7e:84:e0:32:c4:06:
d7:85:4b:2e:3f:33:9e:74:e8:0a:ad:0b:e0:8b:e2:
7c:a9:b8:bb:ad:71:80:f2:0c:29:7e:86:be:12:b4:
2a:39:8d:cc:e8:10:6b:08:9c:8e:0e:cf:ba:fd:80:
69:24:60:a7:8f:95:38:54:e3:69:1a:bd:b6:22:54:
04:31:82:30:c8:7d:f0:dd:51:41:c1:b9:74:b6:bc:
f9:65:16:72:c8:a8:c9:2f:33:fc:25:0e:17:d3:f1:
3f:fa:96:54:2f:77:5d:13:8c:a7:b7:df:33:0e:8c:
d9:e0:b3:3d:7f:4a:b0:bb:05:0c:52:a5:d4:a7:e5:
81:fe:82:51:80:2b:db:0b:1b:97:01:c1:d5:80:35:
b6:a7:27:5d:f4:6c:a3:b1:32:3e:28:c5:19:ad:40:
66:d8:81:6b:0c:79:27:eb:a6:ef:02:17:ce:da:44:
9b:9f:e2:71:91:98:0d:a8:73:71:f8:d7:a9:aa:4b:
eb:f2:38:b2:51:cf:79:0e:15:82:fb:b8:67:d9:a8:
cf:e0:63:3f:01:a0:81:77:aa:9e:d3:0e:b6:ca:1e:
2b:3e:a4:ac:1b:7d:64:b6:e3:6c:dd:d2:d7:cb:c4:
a2:fb:8d:81:a2:15:cd:2d:7b:ce:27:13:5f:0d:c7:
e1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E2:DF:82:D4:41:DE:3E:5B:99:81:F5:5A:59:B7:7C:D2:30:5A:77
X509v3 Authority Key Identifier:
keyid:2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/2uLfgtRB3j5bmYH1Wlm3fNIwWnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.212.224.0/24
Signature Algorithm: sha256WithRSAEncryption
05:f6:86:60:27:04:a9:13:9e:17:fe:e8:76:1c:27:b9:c1:37:
56:8b:eb:67:43:11:d6:6f:24:01:8d:1d:b7:9b:05:33:ec:69:
02:e9:c1:ba:c5:75:0a:75:84:8c:8d:7d:c1:de:0c:7d:b8:ac:
29:bc:3f:51:cd:e8:72:7b:1b:34:14:14:e4:18:68:49:59:9e:
94:b3:86:2b:1d:82:29:c1:c4:1b:af:42:db:04:5a:52:61:8c:
05:da:70:f6:42:8d:6e:b4:db:06:22:9b:bd:c7:dd:08:6a:82:
93:8c:8b:54:5e:2e:e1:38:65:ba:c3:c9:c7:68:e6:5d:a3:09:
bd:cf:72:06:ed:3c:ae:bc:e4:e7:2d:38:06:75:ed:48:9d:c6:
f9:d5:87:54:18:3e:1f:d1:8d:4e:f1:63:ce:fd:2f:73:2d:f7:
3c:d7:72:69:c8:f5:ed:33:0e:a6:34:76:ab:57:10:6a:6f:85:
38:3d:8d:5c:9a:ce:1d:0d:b3:37:a0:64:8c:84:d1:8f:68:07:
31:7e:1c:73:45:91:ed:5a:80:a3:14:c9:14:e7:a0:de:33:2c:
32:0c:cd:6d:dc:7a:b8:25:44:99:18:35:97:a3:44:cf:bb:20:
9c:56:42:75:21:ac:ba:0e:9b:78:e3:c0:d0:52:53:8e:f6:2f:
df:aa:1b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:02 2025 by rpki-client