Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/yQhPRLO19fBJGQ_clEQzJH4ynFg.roa
File: yQhPRLO19fBJGQ_clEQzJH4ynFg.roa (raw, json)
Hash identifier: usTrYrn/ubRt6SVzvgZAAxwEZx9gVKV2PkA/ncP92Kk=
Subject key identifier: C9:08:4F:44:B3:B5:F5:F0:49:19:0F:DC:94:44:33:24:7E:32:9C:58
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0D528CDF
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/yQhPRLO19fBJGQ_clEQzJH4ynFg.roa
Signing time: Sat 01 Jan 2022 05:55:21 +0000
ROA not before: Sat 01 Jan 2022 05:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34139
IP address blocks: 62.140.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223513823 (0xd528cdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 05:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9084f44b3b5f5f049190fdc944433247e329c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:39:a0:54:3c:89:ee:c4:6c:0a:69:6c:56:
8f:1d:60:8c:40:7d:a9:d1:30:f7:7b:97:72:ee:42:
41:93:5d:bf:cd:7a:53:65:f0:d0:cc:1d:6c:af:67:
c8:04:e8:ec:0e:ed:a5:5c:90:c2:49:9a:7f:6c:2e:
70:31:05:8e:e1:38:84:9c:34:5d:e5:d0:17:82:66:
85:9b:78:93:0e:58:f9:b8:c0:28:38:bc:41:20:2c:
ea:13:62:01:a7:76:68:0a:a0:21:24:49:36:2a:7e:
91:96:d0:37:87:a8:51:37:00:7a:a4:ad:c6:27:f0:
42:36:cc:bf:ad:ec:35:ed:9c:6c:98:dd:1a:8b:de:
0c:df:95:b6:df:a7:a2:c0:fe:3e:f4:f0:76:78:27:
f2:12:95:8d:d8:11:d5:76:80:e2:1f:c7:44:11:fb:
1b:f3:f5:00:75:a2:b3:a9:c7:de:12:a3:e0:f7:fa:
99:e0:88:a5:4b:e4:be:2a:fb:3d:8c:db:a9:29:6e:
a9:b1:06:fa:da:53:a6:79:1e:59:0c:57:e1:e5:cd:
0e:f9:8e:e3:3d:7d:9b:c9:9b:35:e7:0b:15:20:59:
9d:c1:90:d2:95:bd:85:4d:d9:26:80:64:c8:09:a6:
2a:52:14:e4:d7:02:bb:67:ec:d2:69:1f:ea:f6:56:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:08:4F:44:B3:B5:F5:F0:49:19:0F:DC:94:44:33:24:7E:32:9C:58
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/yQhPRLO19fBJGQ_clEQzJH4ynFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.140.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c3:71:96:a8:50:88:72:9d:af:41:2f:99:15:c1:a1:8f:a2:
a8:83:24:0a:d8:2c:05:5c:77:b2:09:7a:08:c6:ee:3c:d2:25:
5e:b9:d5:21:cc:8e:c3:f3:a6:ef:be:59:d6:a6:62:b9:e9:60:
0b:22:b7:d3:24:dd:2a:67:5a:33:0d:ae:aa:b4:fe:8b:54:ff:
93:60:7b:5f:45:a3:52:7e:fd:9d:b4:1d:7f:94:f9:6b:e6:97:
29:db:e8:44:19:59:a9:20:2f:e8:38:b9:f1:78:30:88:2e:19:
41:77:c7:fa:51:43:2f:4f:51:f9:ef:17:3f:b2:c0:93:e2:cb:
88:44:72:85:19:2d:37:f9:3b:ee:21:5b:7b:27:2d:6c:07:b1:
63:08:df:55:66:56:b1:57:75:34:d5:30:5a:5f:45:bd:31:d3:
ac:87:1a:24:92:08:41:8e:89:fc:ab:a2:37:b7:93:27:4e:36:
ef:43:8d:5e:20:68:8b:99:31:8f:29:0a:a6:02:bf:64:14:7b:
34:ab:d1:d9:39:c0:cc:c5:f1:4a:61:ae:d5:19:dd:6c:04:03:
15:8e:52:75:f8:5e:a6:22:81:68:dd:8d:5b:1d:b9:63:a3:62:
e7:8b:92:c0:a1:0e:61:49:3d:15:29:78:f7:46:ab:ce:bf:5b:
a6:b7:27:46
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDVKM3zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MjkwMGU0NjU1YWIzNDlhNDYzMmIxNDA3MTlkYzk3MjMwNDMxNzI1MB4XDTIyMDEw
MTA1NTUyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzkwODRmNDRiM2I1
ZjVmMDQ5MTkwZmRjOTQ0NDMzMjQ3ZTMyOWM1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL2ROaBUPInuxGwKaWxWjx1gjEB9qdEw93uXcu5CQZNdv816
U2Xw0MwdbK9nyATo7A7tpVyQwkmaf2wucDEFjuE4hJw0XeXQF4JmhZt4kw5Y+bjA
KDi8QSAs6hNiAad2aAqgISRJNip+kZbQN4eoUTcAeqStxifwQjbMv63sNe2cbJjd
GoveDN+Vtt+nosD+PvTwdngn8hKVjdgR1XaA4h/HRBH7G/P1AHWis6nH3hKj4Pf6
meCIpUvkvir7PYzbqSluqbEG+tpTpnkeWQxX4eXNDvmO4z19m8mbNecLFSBZncGQ
0pW9hU3ZJoBkyAmmKlIU5NcCu2fs0mkf6vZWga0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTJCE9Es7X18EkZD9yURDMkfjKcWDAfBgNVHSMEGDAWgBSikA5GVas0mkYy
sUBxnclyMEMXJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29wQU9SbFdyTkpwR01yRkFjWjNKY2pCREZ5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvNGY3MDFhLWVkNmYtNDdjOC1iZjczLWY0YzVmYzNjYTJjNC8x
L3lRaFBSTE8xOWZCSkdRX2NsRVF6Skg0eW5GZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
NGY3MDFhLWVkNmYtNDdjOC1iZjczLWY0YzVmYzNjYTJjNC8xL29wQU9SbFdyTkpw
R01yRkFjWjNKY2pCREZ5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD6M6DANBgkqhkiG9w0BAQsFAAOC
AQEAHsNxlqhQiHKdr0EvmRXBoY+iqIMkCtgsBVx3sgl6CMbuPNIlXrnVIcyOw/Om
775Z1qZiuelgCyK30yTdKmdaMw2uqrT+i1T/k2B7X0WjUn79nbQdf5T5a+aXKdvo
RBlZqSAv6Di58XgwiC4ZQXfH+lFDL09R+e8XP7LAk+LLiERyhRktN/k77iFbeyct
bAexYwjfVWZWsVd1NNUwWl9FvTHTrIcaJJIIQY6J/KuiN7eTJ04270ONXiBoi5kx
jykKpgK/ZBR7NKvR2TnAzMXxSmGu1RndbAQDFY5SdfhepiKBaN2NWx25Y6Ni54uS
wKEOYUk9FSl490arzr9bprcnRg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 07:01:54 2025 by rpki-client