Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/6NMVCbk28LOrayirGiSrezHfb-g.roa
File: 6NMVCbk28LOrayirGiSrezHfb-g.roa (raw, json)
Hash identifier: KqgRPSVuJgFDG3xCn5TPhgh6wvvDaIe44Q0Ns0FnCqs=
Subject key identifier: E8:D3:15:09:B9:36:F0:B3:AB:6B:28:AB:1A:24:AB:7B:31:DF:6F:E8
Certificate issuer: /CN=58a26c2bc503a7c68128d2ae1ab4cd37deb99325
Certificate serial: 2CDF02
Authority key identifier: 58:A2:6C:2B:C5:03:A7:C6:81:28:D2:AE:1A:B4:CD:37:DE:B9:93:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKJsK8UDp8aBKNKuGrTNN965kyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/6NMVCbk28LOrayirGiSrezHfb-g.roa
Signing time: Mon 25 Apr 2022 14:35:55 +0000
ROA not before: Mon 25 Apr 2022 14:35:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44517
IP address blocks: 62.68.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2940674 (0x2cdf02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a26c2bc503a7c68128d2ae1ab4cd37deb99325
Validity
Not Before: Apr 25 14:35:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8d31509b936f0b3ab6b28ab1a24ab7b31df6fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:49:83:98:30:7b:64:63:83:02:03:99:6f:d6:
33:0f:e0:00:6d:85:4a:67:43:08:b9:55:dc:bf:0a:
44:0c:44:c8:f7:88:59:49:c7:23:7c:f6:57:fd:34:
45:98:83:09:e0:30:7d:3d:6b:65:f9:a6:e8:b9:f6:
f8:28:26:01:6e:61:3c:f4:48:28:5e:46:ef:6a:d7:
11:68:8c:8f:4a:a2:31:ea:3b:28:c5:ba:63:29:30:
6b:fa:09:e0:59:81:4a:1c:70:2b:99:15:eb:02:67:
b4:27:50:f2:37:7d:50:f3:04:4a:e1:c4:6b:f1:2f:
0a:61:9c:5f:82:6d:09:4d:de:65:57:0d:fc:bd:d6:
9d:d1:e8:42:4b:c0:e6:23:77:59:2b:53:ae:9c:2d:
52:12:8a:50:0d:13:f5:e6:b8:69:09:e8:f0:15:b5:
0b:55:bf:39:af:ff:67:35:21:96:34:8e:7e:a3:5e:
2c:55:ff:2b:bd:64:2f:49:29:24:7e:47:6a:75:c7:
d6:31:4a:b7:b7:d0:08:e8:46:04:f8:a7:96:4d:26:
2c:98:d1:3d:16:ba:ec:f5:ec:13:a4:7a:9a:bf:32:
64:50:94:9f:76:68:bf:a0:3f:c5:7e:fd:2c:4b:03:
0b:49:0a:fb:1b:a6:00:b5:a6:04:22:83:bd:a5:e6:
65:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D3:15:09:B9:36:F0:B3:AB:6B:28:AB:1A:24:AB:7B:31:DF:6F:E8
X509v3 Authority Key Identifier:
keyid:58:A2:6C:2B:C5:03:A7:C6:81:28:D2:AE:1A:B4:CD:37:DE:B9:93:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKJsK8UDp8aBKNKuGrTNN965kyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/6NMVCbk28LOrayirGiSrezHfb-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/485305-4c23-4f37-854b-a9d3eef06c67/1/WKJsK8UDp8aBKNKuGrTNN965kyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.67.0/24
Signature Algorithm: sha256WithRSAEncryption
af:13:b0:c0:bf:7d:77:b7:69:56:ab:64:d0:33:84:0c:d8:a0:
4a:a3:3f:53:72:d5:e2:47:00:68:ba:d7:0c:61:c7:a2:49:0a:
51:3d:8a:fc:de:92:78:63:2d:48:ec:cc:eb:b2:95:af:15:bb:
02:66:10:fc:66:cb:b7:8b:3d:c5:75:31:81:c1:9f:19:49:e1:
05:a1:ed:fd:c7:1e:c2:ab:26:ee:32:b3:47:aa:c7:2d:d9:2d:
c4:db:bc:fc:3b:10:94:f2:18:49:00:38:d3:db:64:4c:e2:27:
58:fb:97:2d:6b:3c:94:a6:88:6d:66:6d:1a:53:f7:00:70:ff:
84:6e:0c:74:81:85:1e:2c:87:55:b6:b0:0e:2f:6e:dd:10:ba:
ae:24:05:64:e7:b2:9d:5d:d2:fd:93:88:70:fb:26:36:3f:8d:
ba:4f:96:2e:d9:87:ea:b1:04:70:c4:1c:7c:39:4e:30:65:ae:
46:7c:3e:1c:6e:34:3e:a7:7b:5b:98:91:79:c3:be:3a:63:b7:
66:64:04:b9:32:3d:27:6d:39:6e:fa:04:42:32:ae:86:a6:79:
4e:bb:20:4f:24:8a:37:d4:ac:f5:2e:fa:89:95:23:44:89:21:
11:2d:cc:72:28:c7:d6:6a:ff:74:73:43:42:45:bd:5e:ad:ff:
67:b5:c1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:27:55 2025 by rpki-client