Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/aGaoNa9Zxk63PdTuni6wZf8tVhE.roa
File: aGaoNa9Zxk63PdTuni6wZf8tVhE.roa (raw, json)
Hash identifier: /s3EZqgtITX1Wj59cRQ5GO1hxCzuHJO105mP/X0OFrw=
Subject key identifier: 68:66:A8:35:AF:59:C6:4E:B7:3D:D4:EE:9E:2E:B0:65:FF:2D:56:11
Certificate issuer: /CN=b986028c9feb6f142b3fecb64667f48874ba9c37
Certificate serial: 12AB8480
Authority key identifier: B9:86:02:8C:9F:EB:6F:14:2B:3F:EC:B6:46:67:F4:88:74:BA:9C:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uYYCjJ_rbxQrP-y2Rmf0iHS6nDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/aGaoNa9Zxk63PdTuni6wZf8tVhE.roa
Signing time: Sat 01 Jan 2022 08:54:28 +0000
ROA not before: Sat 01 Jan 2022 08:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60762
IP address blocks: 176.62.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 313230464 (0x12ab8480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b986028c9feb6f142b3fecb64667f48874ba9c37
Validity
Not Before: Jan 1 08:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6866a835af59c64eb73dd4ee9e2eb065ff2d5611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:b5:5f:b1:79:c2:f3:ce:de:e5:9e:4a:c5:
20:55:51:06:65:c9:55:1e:f3:9a:9f:78:84:b0:48:
61:d8:f4:0d:80:44:4a:79:03:30:46:42:bd:55:29:
57:b9:fb:1b:1f:58:30:6f:a3:de:e6:9a:36:03:f1:
ab:f5:91:8d:be:dc:bd:6f:7f:ca:a5:a7:1e:75:e4:
f8:31:7d:ef:7d:b9:bc:40:69:27:2c:c9:0d:22:b6:
5f:1b:f7:e1:f5:b4:35:af:41:d9:85:3a:11:0a:92:
03:73:85:3d:f2:8a:e7:4d:d7:70:13:35:ee:92:75:
fa:a5:bf:a2:2e:d4:4d:70:59:d2:8f:fe:3d:b7:ee:
13:d1:1b:c2:97:95:bd:c7:c7:88:36:9b:c6:ab:72:
92:ef:cc:a8:6e:6e:c3:42:5d:9d:4e:63:46:85:12:
4f:5b:80:aa:d3:39:07:2e:2b:f1:ca:76:79:3f:66:
2d:a1:d4:14:e0:e3:de:cf:de:67:ef:22:66:68:89:
46:6d:72:9c:da:a7:aa:2d:bd:7f:d4:1b:fd:6d:4d:
8c:6f:1a:99:af:c0:5d:7b:9f:cd:b0:df:24:57:20:
3b:ac:35:24:c8:d1:dc:25:8c:fd:44:05:a2:58:8f:
d8:af:3e:59:0d:81:31:44:05:b7:1b:e8:4c:a6:a2:
64:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:66:A8:35:AF:59:C6:4E:B7:3D:D4:EE:9E:2E:B0:65:FF:2D:56:11
X509v3 Authority Key Identifier:
keyid:B9:86:02:8C:9F:EB:6F:14:2B:3F:EC:B6:46:67:F4:88:74:BA:9C:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uYYCjJ_rbxQrP-y2Rmf0iHS6nDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/aGaoNa9Zxk63PdTuni6wZf8tVhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/uYYCjJ_rbxQrP-y2Rmf0iHS6nDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.62.31.0/24
Signature Algorithm: sha256WithRSAEncryption
27:d5:5d:6a:16:72:1b:b0:03:d1:61:57:b4:2d:26:ff:2a:4b:
35:d3:b6:fd:79:3a:14:9c:36:8b:f2:16:4e:fa:60:df:b0:a4:
df:74:64:f3:ff:ef:15:91:b3:f7:0e:00:d2:6b:34:3f:ee:93:
39:a4:23:fe:2c:1b:39:01:fc:da:85:89:94:d5:95:78:8e:ed:
a6:ba:3c:a1:be:11:37:69:aa:4e:e8:d7:bf:31:b7:24:75:66:
1d:89:26:a9:42:fe:71:59:8a:b1:d2:2c:3e:37:9a:ce:2f:9d:
70:e9:e2:f6:13:2c:f1:db:11:17:3b:ed:89:3d:f3:88:c0:22:
c8:0f:a5:9a:17:52:ef:97:c6:96:4a:92:68:64:ae:98:8a:b8:
10:a4:7b:06:1a:d5:88:bb:df:97:f6:94:5b:8a:80:d1:b3:44:
fe:29:be:40:45:8f:ad:04:22:e2:59:7f:8b:a7:f9:4c:8a:27:
bf:a7:b3:ff:8b:26:8e:67:7d:13:c6:41:c8:12:5a:53:e0:a9:
b7:98:91:ef:08:0b:30:f8:2c:91:9b:f4:ed:9d:d5:5b:c8:66:
80:c8:d0:7e:cf:dd:10:92:c2:6d:44:12:42:2d:92:0a:0a:cd:
a5:4a:64:ea:13:25:59:e5:39:32:fa:12:27:84:80:e7:dc:7b:
78:76:88:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:24:36 2025 by rpki-client