Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/eFlRc6_ZiAoOkzTGkb5XxrD7P5s.roa
File: eFlRc6_ZiAoOkzTGkb5XxrD7P5s.roa (raw, json)
Hash identifier: HodLKli/WAkAjA18b0eYHuVvTfNiUyVK56XNZq5StPw=
Subject key identifier: 78:59:51:73:AF:D9:88:0A:0E:93:34:C6:91:BE:57:C6:B0:FB:3F:9B
Certificate issuer: /CN=f3b5646b360379924cb6d9c3d99669ce7f3b2ca2
Certificate serial: 0185724C58190A809C72D865788CDB19C718
Authority key identifier: F3:B5:64:6B:36:03:79:92:4C:B6:D9:C3:D9:96:69:CE:7F:3B:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87VkazYDeZJMttnD2ZZpzn87LKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/eFlRc6_ZiAoOkzTGkb5XxrD7P5s.roa
Signing time: Mon 02 Jan 2023 11:44:43 +0000
ROA not before: Mon 02 Jan 2023 11:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61121
IP address blocks: 62.181.50.0/24 maxlen: 24
62.181.51.0/24 maxlen: 24
62.181.50.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:58:19:0a:80:9c:72:d8:65:78:8c:db:19:c7:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b5646b360379924cb6d9c3d99669ce7f3b2ca2
Validity
Not Before: Jan 2 11:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78595173afd9880a0e9334c691be57c6b0fb3f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:03:0c:00:cc:46:cf:2d:1d:b8:b2:92:e4:62:
f8:f8:11:1a:4f:c8:2e:d6:9d:65:0c:57:36:f7:56:
df:35:06:df:0e:be:45:87:db:80:ce:a8:7f:3b:20:
64:31:48:00:6c:0e:1d:8e:3e:6d:4f:fd:c1:ed:42:
c3:7f:f2:08:41:6c:0c:91:fd:cf:25:f6:b3:02:f5:
85:b0:29:15:1a:96:83:fe:a6:15:bd:52:c6:75:0a:
8c:5f:51:da:2e:48:cf:c1:cb:c3:1f:91:bc:67:f0:
bd:e5:3f:ea:02:04:89:f8:9f:59:1b:b4:8e:46:98:
ea:44:59:01:7a:29:46:28:61:43:20:fe:88:7c:dc:
40:42:8a:e0:0e:d3:e7:84:0c:bf:84:62:bf:f8:1a:
31:01:f5:7f:8a:22:e7:ad:b1:cd:eb:66:d9:f6:32:
37:28:d3:9b:1b:2c:0b:4b:77:41:6c:99:cb:85:a2:
30:fb:62:5c:30:a7:be:bb:03:76:d4:35:6d:3f:e6:
db:63:2f:db:5a:f8:b3:2b:9e:08:05:b6:a3:3b:19:
04:8a:2a:38:31:c1:c4:95:61:2b:96:af:b3:62:9b:
a7:26:a1:47:dc:65:1f:3b:86:0d:0f:2f:7b:49:bb:
2e:23:dd:d6:8c:50:ea:f6:c0:77:50:45:07:42:c2:
f2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:59:51:73:AF:D9:88:0A:0E:93:34:C6:91:BE:57:C6:B0:FB:3F:9B
X509v3 Authority Key Identifier:
keyid:F3:B5:64:6B:36:03:79:92:4C:B6:D9:C3:D9:96:69:CE:7F:3B:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87VkazYDeZJMttnD2ZZpzn87LKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/eFlRc6_ZiAoOkzTGkb5XxrD7P5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/87VkazYDeZJMttnD2ZZpzn87LKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.181.50.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:d5:74:5e:ce:60:b8:bc:b1:6c:47:e6:38:cb:77:e5:a7:87:
0e:02:14:15:e7:85:0f:42:cc:68:1b:65:4b:50:7f:f8:17:f2:
e3:d3:e5:3c:6d:91:77:1f:0b:0d:59:2a:1c:6f:80:fe:90:92:
15:9a:12:ce:d2:ff:4d:2b:4e:58:f6:ee:92:3f:d0:8b:c7:18:
d4:2f:8e:05:7c:af:0c:20:43:42:99:5a:15:38:a8:3e:68:aa:
70:cf:95:16:ce:30:6f:5c:34:c7:49:09:33:cb:db:c8:c2:c9:
9b:40:4a:d7:e2:da:ee:bd:7f:8c:13:36:b3:d2:18:f1:73:33:
41:b9:0f:2f:2b:27:c3:72:95:92:a4:7e:85:49:3f:33:7e:da:
c0:19:44:b1:ca:be:b6:ed:ff:8f:59:4c:57:8f:67:08:b7:45:
b5:ee:b3:97:7a:5c:bd:52:47:8a:87:a4:36:c0:51:92:d6:d2:
40:1a:ec:2b:17:45:1a:9c:0d:a0:0b:32:78:0e:05:f2:6e:56:
80:41:84:ae:16:0c:80:76:0b:53:e4:b9:85:5f:f2:e9:18:d2:
ae:28:ba:2f:bb:a3:4a:b4:96:98:1f:5d:88:d8:4b:d1:46:13:
48:de:b9:75:f4:ea:05:4e:0f:f6:66:c0:1a:85:d5:8d:91:63:
b6:da:f4:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:38 2025 by rpki-client