Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/rzwNMCL4DKjL9ATunZg2BqxJm_o.roa
File: rzwNMCL4DKjL9ATunZg2BqxJm_o.roa (raw, json)
Hash identifier: eMlXDgpanU2/ITCS/cDarCvPwW1sxuAgL7ukxWw7xjc=
Subject key identifier: AF:3C:0D:30:22:F8:0C:A8:CB:F4:04:EE:9D:98:36:06:AC:49:9B:FA
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0D550C76
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/rzwNMCL4DKjL9ATunZg2BqxJm_o.roa
Signing time: Sat 01 Jan 2022 05:55:22 +0000
ROA not before: Sat 01 Jan 2022 05:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50299
IP address blocks: 62.140.231.0/24 maxlen: 24
62.140.251.0/24 maxlen: 24
80.77.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223677558 (0xd550c76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 05:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af3c0d3022f80ca8cbf404ee9d983606ac499bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:b7:8d:12:89:90:b5:48:ed:0e:f1:dd:e5:
77:15:06:36:37:b6:7e:23:09:49:e3:e2:8d:a2:34:
4c:a0:05:c5:22:b1:d4:aa:59:41:0f:70:39:28:8e:
41:21:38:ee:27:76:69:6b:84:9d:b5:7e:20:7f:1f:
64:92:a9:e1:c1:37:b5:d1:a9:af:d3:a7:56:5a:c1:
7a:36:72:e7:0d:27:d7:b1:61:ac:13:2b:ca:a7:d0:
d9:fd:b5:44:f0:0a:92:81:b2:0f:e2:83:d3:e9:f8:
a9:3e:23:97:36:b5:90:c3:de:13:ee:bd:da:24:c2:
63:30:ea:f8:5b:84:08:0b:54:95:f0:6e:51:e8:06:
01:fc:81:c7:a8:9b:20:ae:be:6b:94:f6:83:6f:37:
11:62:c0:77:d7:da:bc:90:ff:69:7d:94:e0:99:34:
fa:5b:6d:09:60:6b:95:d7:96:12:0a:72:77:02:11:
09:dc:dd:e0:bb:49:ee:0d:9f:62:2c:fa:b1:09:c1:
f7:9c:64:c4:62:8b:f1:ad:39:54:7c:5b:46:de:83:
38:0a:06:34:6e:f3:0f:3e:17:7f:04:0e:04:15:21:
2d:5c:e4:59:5f:17:cc:cb:18:26:47:ae:31:1b:0d:
8d:d5:06:87:df:29:ba:ba:48:ab:f8:b3:e8:81:eb:
99:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3C:0D:30:22:F8:0C:A8:CB:F4:04:EE:9D:98:36:06:AC:49:9B:FA
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/rzwNMCL4DKjL9ATunZg2BqxJm_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.140.231.0/24
62.140.251.0/24
80.77.170.0/23
Signature Algorithm: sha256WithRSAEncryption
24:f5:f5:1c:b1:24:9f:09:ec:ba:d4:87:d9:a9:80:02:f3:64:
22:0d:ec:59:23:32:51:df:fb:d7:05:65:cf:0c:83:26:c5:43:
9f:c5:e8:ed:43:bb:fc:98:1c:df:84:c5:fe:0c:9f:89:e0:ac:
3b:f8:fa:fe:21:56:ec:c9:3c:cf:2d:7d:76:cf:b4:ce:d0:b9:
36:9b:e2:51:90:c2:bc:f0:74:b6:c7:f0:5b:7c:dd:11:4c:fb:
2c:8e:75:e9:4b:d7:81:30:ba:2e:29:df:91:bd:3c:ed:e5:51:
d3:cc:ea:e3:fc:cb:c1:a7:33:94:66:b3:e1:8e:0a:d4:af:54:
74:b7:1f:30:6a:3d:9f:f0:e6:5c:db:52:4d:b6:d6:0a:6b:70:
5c:88:11:f9:dd:b0:89:5b:17:12:b1:31:d3:e7:09:0b:4a:9f:
e5:35:d0:6d:b0:25:11:bf:5a:0a:51:09:b4:0f:f6:41:03:c0:
59:b9:6a:ff:ed:93:d8:30:97:f6:37:9a:60:0d:06:01:0a:61:
fa:c4:c7:f4:89:af:a5:ef:03:ba:d2:2c:80:0a:64:04:17:a4:
93:72:5d:ca:ff:60:a6:67:95:0f:f2:e7:0a:3e:9e:01:9b:70:
5d:c6:1e:44:71:c8:80:60:25:98:4b:1d:da:23:0b:a5:da:5c:
69:34:a9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:59:29 2025 by rpki-client