Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/Jxlto0L7XTyQF9CB2faMc5xd6Mg.roa
File: Jxlto0L7XTyQF9CB2faMc5xd6Mg.roa (raw, json)
Hash identifier: T+hY4ZpnJimxZLjOIaZCaS79Y04KAfrOaDo0pYjiRbk=
Subject key identifier: 27:19:6D:A3:42:FB:5D:3C:90:17:D0:81:D9:F6:8C:73:9C:5D:E8:C8
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0185724C683348F07C0D3FD0D79F90F9766A
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/Jxlto0L7XTyQF9CB2faMc5xd6Mg.roa
Signing time: Mon 02 Jan 2023 11:44:48 +0000
ROA not before: Mon 02 Jan 2023 11:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208142
IP address blocks: 62.140.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:68:33:48:f0:7c:0d:3f:d0:d7:9f:90:f9:76:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 2 11:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27196da342fb5d3c9017d081d9f68c739c5de8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d5:1a:53:d3:55:e8:a3:0f:7b:7a:f5:47:e2:
28:96:4b:38:4d:90:ee:c4:e3:ff:bb:e4:73:6c:35:
26:99:a9:05:03:18:58:c5:31:46:06:71:5b:24:13:
37:49:91:59:46:f0:4c:a9:6f:7d:09:98:38:9a:04:
a2:96:1e:0b:c2:f7:23:d9:84:05:c2:3b:97:75:ac:
aa:a0:d9:34:f6:21:29:ad:29:70:b8:92:4a:0d:39:
91:96:b5:62:6e:6c:a8:2c:bf:e9:17:d2:8b:99:55:
7e:59:82:21:4b:8f:89:03:a1:4b:f7:b0:dc:a8:1d:
9c:e4:2c:c6:ea:13:a5:05:08:53:6d:1c:44:bb:dd:
0e:b3:44:bc:e6:f0:4d:30:1d:c7:b8:24:27:ed:f1:
46:0d:a5:96:27:74:85:01:13:e7:97:0d:3b:1b:3d:
4f:6e:aa:fb:6d:95:6c:e7:36:bf:ec:89:db:49:a1:
09:58:b7:26:e4:31:f4:6f:88:2c:31:0b:c5:0b:e0:
e5:77:ae:34:df:fb:e7:87:09:c0:3e:95:9d:aa:bf:
28:64:e8:29:b6:cf:f9:e8:51:f8:af:66:a4:14:64:
b2:77:ac:4f:ff:44:3f:f9:ab:a9:0c:66:0d:ae:6e:
06:71:6c:19:54:97:df:59:6f:ce:85:0a:e1:a4:af:
e3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:19:6D:A3:42:FB:5D:3C:90:17:D0:81:D9:F6:8C:73:9C:5D:E8:C8
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/Jxlto0L7XTyQF9CB2faMc5xd6Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.140.248.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ce:f6:28:c0:69:e8:58:b1:84:10:82:ec:df:07:13:5c:bf:
c1:46:e1:d7:77:40:a1:a0:24:98:ed:79:47:29:5b:e3:d5:23:
b0:7c:67:32:a0:5a:66:37:da:7f:30:bd:53:64:0c:ac:2f:d8:
ce:f9:86:96:81:ae:54:4c:d5:fd:61:ed:ba:94:10:1e:ed:8d:
2a:62:40:4a:ea:42:d3:b6:a9:ed:d1:a5:42:f7:e4:c6:28:f6:
d5:e4:58:fc:91:d7:b4:99:92:c7:d3:d7:21:ba:7c:19:55:42:
30:7d:a6:30:a6:ec:3f:63:fb:cc:7f:64:f8:5f:ac:da:7d:53:
27:96:87:b6:ad:8a:f9:fb:a6:3c:e4:6d:1b:6c:3a:a1:01:0d:
55:ce:2e:c7:4b:55:94:20:2d:0a:59:b2:5c:50:74:c2:f6:13:
19:7c:ab:6f:96:25:69:3a:e8:5a:47:5c:d6:bb:18:68:33:1a:
23:6f:6b:f6:8c:05:69:f9:1a:02:1e:82:69:c2:3e:67:c5:a2:
85:9d:55:9e:ac:a6:f8:f9:41:82:87:b6:1f:82:a4:4c:c0:8c:
91:e3:d4:66:76:a9:4b:38:ac:f4:f4:bd:66:a5:a8:fb:ec:c4:
c3:d6:fd:98:9e:4c:da:0d:c5:6c:31:95:47:c6:4b:69:7d:9f:
25:18:bf:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 07:13:49 2025 by rpki-client