Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/i6fczjd-pY-rdMl3AZA4VKmgRP8.roa
File: i6fczjd-pY-rdMl3AZA4VKmgRP8.roa (raw, json)
Hash identifier: vCGJ9xY3/xpsgcRY4+Ig6LITtJSLf7W9zjNz9+nGNII=
Subject key identifier: 8B:A7:DC:CE:37:7E:A5:8F:AB:74:C9:77:01:90:38:54:A9:A0:44:FF
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AAD35B6
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/i6fczjd-pY-rdMl3AZA4VKmgRP8.roa
Signing time: Sat 01 Jan 2022 08:57:45 +0000
ROA not before: Sat 01 Jan 2022 08:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57573
IP address blocks: 62.33.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179123638 (0xaad35b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ba7dcce377ea58fab74c97701903854a9a044ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:04:f6:f2:a0:99:91:0f:b0:e8:ec:e5:5f:46:
8d:26:2d:92:3b:27:6c:e6:9d:36:7e:14:4a:86:59:
46:ce:68:ba:a9:f8:41:bc:e8:aa:ef:98:cb:c5:61:
5d:59:23:37:43:bd:7a:ba:79:05:58:74:33:9f:d6:
ff:70:bc:e7:13:c8:15:c7:86:b9:b4:b6:6c:9b:69:
69:58:f1:0f:4e:f5:e8:73:05:90:ca:7e:a9:b5:57:
b9:d3:b1:33:75:54:6e:c4:79:91:e5:86:68:5f:30:
f1:13:04:3b:0b:57:47:80:43:a9:c6:3b:fa:cc:57:
17:c9:d8:2a:d5:c4:68:57:fa:b4:3f:6d:d3:52:a6:
bb:4b:cd:30:1b:36:85:7f:18:ec:64:af:83:b7:9f:
18:90:7d:c4:c5:9b:7f:06:de:f1:f0:24:e4:54:ac:
cc:11:33:81:98:b9:18:60:4d:d9:85:fd:c4:5a:7b:
c2:3b:56:4f:02:7a:49:28:b0:48:b7:c2:5f:bc:31:
40:94:53:82:f9:d3:8c:80:8f:5c:65:45:01:4f:0d:
a5:77:1c:20:46:da:6d:b4:0e:f9:f6:55:a9:30:8e:
2a:28:79:c8:18:ae:0a:43:ec:ea:d3:d5:0a:80:32:
31:59:ea:aa:04:fc:fc:68:7b:d4:fc:81:14:25:ae:
6e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A7:DC:CE:37:7E:A5:8F:AB:74:C9:77:01:90:38:54:A9:A0:44:FF
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/i6fczjd-pY-rdMl3AZA4VKmgRP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.33.100.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ca:27:b8:cb:16:25:1d:24:e9:5d:bc:77:8c:b8:2b:84:9d:
2a:79:9a:d2:1b:9f:6f:4a:9d:f1:05:75:22:3a:56:a5:c8:89:
d8:30:37:0f:6a:74:ad:41:bb:db:f2:72:98:be:9c:70:75:22:
3e:73:02:c1:42:54:a5:64:1d:12:99:c3:1e:da:81:55:03:93:
bd:b3:24:b6:2a:05:86:1b:a6:d4:ad:e7:78:70:ce:0c:1e:06:
6d:ba:bb:06:3f:5e:cb:68:9c:99:c6:96:0f:89:e3:3c:be:ab:
aa:08:bc:ce:2f:09:32:78:aa:19:d1:b3:1b:c2:2c:e1:5a:5d:
e8:61:50:f4:ba:1a:db:cc:66:f5:ac:7d:ec:d8:df:6b:25:1b:
91:3f:22:6d:b8:e8:86:30:38:50:08:81:61:ee:b3:ed:29:23:
5e:e5:95:d1:cf:74:98:d4:80:d9:37:15:4d:70:d7:58:ac:b5:
85:d1:09:d4:a5:bf:aa:04:9e:5b:19:7b:a6:d5:05:5b:cc:70:
46:93:a6:e2:ad:f2:a4:ad:5d:48:c5:de:7a:64:d3:90:af:39:
51:9a:ec:b4:bf:73:b0:b2:d7:e9:12:1f:c6:e8:de:ed:1a:d1:
cf:ad:ea:c6:0c:50:42:87:6d:38:7d:c8:e3:08:cc:5e:1c:ea:
b6:2a:de:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:33:21 2025 by rpki-client