Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/tiFy8RGdUj-LPOezx8xAWUWpLbo.roa
File: tiFy8RGdUj-LPOezx8xAWUWpLbo.roa (raw, json)
Hash identifier: NA5ILHKQBW8qXEBpXiBdU/wWAGy7LvE450RJ6JHfpwo=
Subject key identifier: B6:21:72:F1:11:9D:52:3F:8B:3C:E7:B3:C7:CC:40:59:45:A9:2D:BA
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 01863679F8A6802F7098E7B580CADA755005
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/tiFy8RGdUj-LPOezx8xAWUWpLbo.roa
Signing time: Thu 09 Feb 2023 14:00:08 +0000
ROA not before: Thu 09 Feb 2023 14:00:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20668
IP address blocks: 62.3.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:79:f8:a6:80:2f:70:98:e7:b5:80:ca:da:75:50:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Feb 9 14:00:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b62172f1119d523f8b3ce7b3c7cc405945a92dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8d:3f:bd:e6:6a:a9:55:6c:d2:da:71:aa:1d:
38:d4:8c:8f:06:9c:a6:d6:af:42:91:f3:f4:d4:7d:
f2:a2:3e:ad:39:b2:3b:4e:ee:f4:26:39:29:2f:24:
e4:8c:23:83:3f:7c:63:64:09:24:d0:4b:fe:88:0e:
0e:a9:75:fc:a9:6d:85:7b:b2:a5:5b:43:1d:f0:24:
45:4b:8c:df:37:ce:82:82:a2:31:b8:0f:23:62:6a:
51:5a:90:7d:97:9b:79:c3:fb:a6:23:33:0e:1a:f7:
4e:ed:32:dd:fc:b8:f1:69:b1:58:cc:ff:fe:90:cf:
6a:da:b7:c6:e2:9c:2f:67:9a:0f:77:61:d5:fd:e0:
45:b7:79:19:c7:00:de:3a:88:ca:c0:53:05:2c:6c:
9e:87:25:6b:64:b4:52:95:14:2a:d1:43:ab:38:c5:
6f:38:36:84:47:b5:11:c6:a4:41:95:95:a7:c4:56:
54:1a:33:65:68:70:b4:4c:bb:b1:f8:7b:7b:1a:28:
b8:11:8b:f8:f8:f6:3a:d6:d2:83:ec:88:22:23:47:
1c:13:d8:b9:86:0c:50:cf:dd:d3:d0:32:02:73:1e:
62:0e:ec:72:70:d3:1b:23:09:2c:95:13:e9:1c:0b:
06:ac:3b:8e:14:eb:d0:f8:f6:cf:a3:81:8d:7d:c4:
ab:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:21:72:F1:11:9D:52:3F:8B:3C:E7:B3:C7:CC:40:59:45:A9:2D:BA
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/tiFy8RGdUj-LPOezx8xAWUWpLbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.28.0/24
Signature Algorithm: sha256WithRSAEncryption
51:e9:be:5c:dc:1b:99:2a:0a:c5:05:e3:cd:96:14:d4:98:35:
35:bf:a5:d3:e1:55:9c:aa:ed:73:b9:74:1c:31:62:2f:7f:e1:
72:c6:4b:92:04:61:05:4b:49:32:ef:cd:b8:0b:0e:25:7a:fe:
5e:1f:f8:c6:b9:17:b5:3f:d6:5a:0b:f4:2e:44:79:b7:2b:b9:
2f:61:cc:a2:39:0c:2d:7b:f8:17:ed:ef:1f:0f:dc:05:0f:f7:
ab:48:45:48:cd:1b:91:29:14:00:3a:39:5e:64:98:07:13:90:
11:25:5f:f3:93:98:3f:85:57:ec:72:18:e7:51:98:cb:43:49:
e9:1b:54:fb:d4:a7:10:97:ad:1e:2a:4f:7b:c5:b4:8f:86:f9:
29:09:15:4d:6e:db:11:a0:a6:a8:45:16:d9:16:c7:56:7d:b8:
16:6f:15:4e:a7:4b:c1:e1:1e:1c:90:e4:e3:75:7b:94:05:61:
8d:6c:0d:3d:a8:23:c6:fa:55:68:d9:51:77:33:76:16:14:1f:
d0:4b:38:03:64:f7:43:5d:96:7a:c5:aa:3a:3a:a1:fb:ba:75:
53:e3:a2:4e:ca:62:94:cc:71:18:20:27:90:01:4d:1f:5b:b0:
d7:cb:82:85:58:10:42:45:73:0b:3e:dd:49:82:b3:9d:02:3e:
98:8a:a1:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:07 2025 by rpki-client