Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/1c068e-889c-42be-bd8b-a6abb1215dec/1/62VH5ysler4vNpxz0c9id3CvFqU.roa
File: 62VH5ysler4vNpxz0c9id3CvFqU.roa (raw, json)
Hash identifier: 9cM+0noanSPByo2AcRgtWKdeXlkfAfBrevL+Hn3ETVg=
Subject key identifier: EB:65:47:E7:2B:25:7A:BE:2F:36:9C:73:D1:CF:62:77:70:AF:16:A5
Certificate issuer: /CN=b5b632972547673df0f75aabc839a2422854a22a
Certificate serial: 10A00364
Authority key identifier: B5:B6:32:97:25:47:67:3D:F0:F7:5A:AB:C8:39:A2:42:28:54:A2:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tbYylyVHZz3w91qryDmiQihUoio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/1c068e-889c-42be-bd8b-a6abb1215dec/1/62VH5ysler4vNpxz0c9id3CvFqU.roa
Signing time: Sat 01 Jan 2022 08:53:20 +0000
ROA not before: Sat 01 Jan 2022 08:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 137.193.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278922084 (0x10a00364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5b632972547673df0f75aabc839a2422854a22a
Validity
Not Before: Jan 1 08:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb6547e72b257abe2f369c73d1cf627770af16a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c8:a6:fd:cc:62:ce:52:94:c1:b3:e6:ce:f8:
7e:cf:73:83:dc:ff:06:e8:8b:da:86:fa:a1:c5:b2:
9d:9c:b6:3e:bc:12:aa:63:4d:ac:0b:fe:8d:2b:1c:
5d:56:bd:24:a3:93:d7:47:b9:b4:29:c1:ea:61:8f:
fb:c3:b7:b4:91:f3:8d:8b:c7:cf:95:35:7e:e8:e8:
30:23:dc:f9:7a:93:15:04:cb:b4:a9:79:51:84:2f:
aa:24:07:a1:6b:3d:42:a5:b0:b1:6c:17:5d:64:4f:
9d:ea:5e:e6:ec:74:ed:4d:4e:dc:12:54:1e:6f:40:
ec:56:36:b4:ba:51:a3:0b:03:75:f2:5b:0b:f6:a7:
12:1c:f6:b9:a6:57:a5:15:b3:4d:8c:2b:8a:b0:2b:
f6:cd:45:81:ec:53:ea:52:de:e9:05:aa:81:3a:97:
91:23:a9:23:fd:9b:df:2d:cf:33:66:c1:06:db:2d:
4b:2c:b9:16:66:53:c4:84:a5:2d:b9:dd:1a:e9:9a:
e5:47:c0:47:74:a5:67:71:9c:7a:0b:6d:cb:96:1e:
0a:ff:1c:cc:fd:31:88:c6:92:b9:30:63:51:5d:5d:
8b:10:a6:5b:7c:32:1d:28:12:2a:95:13:e5:5e:89:
df:a9:ab:41:fd:f0:d7:ec:aa:da:6c:f7:a0:dc:a7:
7b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:65:47:E7:2B:25:7A:BE:2F:36:9C:73:D1:CF:62:77:70:AF:16:A5
X509v3 Authority Key Identifier:
keyid:B5:B6:32:97:25:47:67:3D:F0:F7:5A:AB:C8:39:A2:42:28:54:A2:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tbYylyVHZz3w91qryDmiQihUoio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1c068e-889c-42be-bd8b-a6abb1215dec/1/62VH5ysler4vNpxz0c9id3CvFqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1c068e-889c-42be-bd8b-a6abb1215dec/1/tbYylyVHZz3w91qryDmiQihUoio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.193.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c1:c8:b6:da:ab:ec:78:2b:fb:8d:6b:3b:ff:cb:b7:3b:9a:90:
23:9f:ca:79:0a:66:58:f0:fc:7e:36:ac:56:b7:95:cb:a5:40:
98:37:d2:e5:ca:b6:f9:cb:c6:7d:77:c3:19:de:b6:ba:38:13:
b1:b2:51:60:8f:f5:47:88:bd:d5:9a:b8:25:e4:85:1a:0c:b8:
72:b0:e9:d4:c1:96:ce:32:33:97:ec:01:d0:d3:69:be:c5:f9:
ac:f0:24:db:a2:f5:43:f2:1b:1a:19:de:cb:07:69:46:27:e1:
03:04:ae:e9:8f:89:4d:91:98:da:e7:86:0f:b3:25:ec:f5:0f:
79:7a:5e:e9:29:57:6d:73:f9:8c:51:71:f7:27:0a:86:31:bf:
3e:e0:ce:09:33:4d:ab:1f:35:8c:1d:a3:88:49:8d:b1:0f:57:
94:b2:9a:09:f9:5a:ee:c1:64:74:2b:5c:73:d1:7a:76:bf:8d:
30:15:a4:11:f6:59:e5:ef:ef:37:84:16:ae:36:07:88:5f:cb:
5b:8c:bd:40:10:8d:dd:74:ab:0f:d8:46:5b:8f:09:dd:26:8d:
27:7a:43:0b:ab:d7:ee:6b:d0:42:5c:e7:c7:89:19:1e:4d:3b:
1f:98:32:3e:32:89:aa:96:ad:6f:99:8e:28:23:77:55:7e:db:
8f:d0:1f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:26 2025 by rpki-client