Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/w2f63uV7ko0om6Q2Lb3jQup7OaA.roa
File: w2f63uV7ko0om6Q2Lb3jQup7OaA.roa (raw, json)
Hash identifier: 57NppR5Vm4dnNpL4/AQf3QcpoegW2Ug+uop0WGRWAvI=
Subject key identifier: C3:67:FA:DE:E5:7B:92:8D:28:9B:A4:36:2D:BD:E3:42:EA:7B:39:A0
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018413E2FD6ADD0B87D442A091B2F7899A29
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/w2f63uV7ko0om6Q2Lb3jQup7OaA.roa
Signing time: Wed 26 Oct 2022 10:42:33 +0000
ROA not before: Wed 26 Oct 2022 10:42:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205349
IP address blocks: 62.89.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:e2:fd:6a:dd:0b:87:d4:42:a0:91:b2:f7:89:9a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 10:42:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c367fadee57b928d289ba4362dbde342ea7b39a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:73:3a:81:cd:bd:c4:f3:21:d2:79:ea:f0:f9:
9f:51:8b:30:69:7b:77:ba:28:08:e6:05:db:bc:19:
1a:f1:42:45:1c:20:18:c6:44:42:5b:cd:b5:a9:b1:
6a:07:1f:f5:cd:14:5b:1e:04:c3:5e:f6:4a:ec:d6:
ba:e0:54:32:65:3e:83:5d:25:6b:bc:39:8c:c9:f6:
cd:10:d8:66:85:b9:35:ea:56:a8:37:30:61:42:78:
f3:fe:28:c7:3b:b7:f2:ef:17:9e:42:fe:df:39:71:
52:78:d8:53:54:a4:ef:77:67:2e:4d:a4:5e:ae:df:
d0:fe:d1:1c:15:5c:d3:69:b4:d4:e2:4b:ca:35:0f:
27:8e:e4:a6:e4:eb:18:5e:dc:8a:7e:b7:0a:8f:07:
34:b0:7b:bf:3e:b6:ad:af:f4:d3:60:48:b7:54:75:
7c:79:9f:58:32:3d:b1:fd:7a:6f:fd:64:8b:3e:d6:
ec:ad:ac:81:71:2c:c5:02:c3:b1:b0:40:e6:6e:33:
bd:b7:57:9b:38:0a:d1:c4:48:1f:23:75:09:cb:60:
7a:3b:27:2c:92:e7:b3:42:63:c6:af:30:90:64:f7:
ab:0f:43:ff:15:8f:34:94:9f:d9:c7:50:ce:67:fe:
91:be:24:40:ff:63:2b:17:ea:f7:b6:f0:50:46:29:
78:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:67:FA:DE:E5:7B:92:8D:28:9B:A4:36:2D:BD:E3:42:EA:7B:39:A0
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/w2f63uV7ko0om6Q2Lb3jQup7OaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.89.205.0/24
Signature Algorithm: sha256WithRSAEncryption
44:d3:ef:f4:6d:91:e4:ae:4b:cf:14:36:65:2b:ba:2d:25:0d:
89:68:64:d2:dc:54:4a:a9:f0:ea:7f:d3:01:52:fc:f1:c3:fe:
29:e7:b9:3c:79:9f:18:55:82:63:98:c7:5a:a4:29:2e:80:1c:
4a:7b:d2:90:96:07:38:1f:c0:e9:6f:21:fd:60:09:ff:c4:f6:
c8:bd:92:76:83:93:6b:21:e6:31:60:04:5b:4e:0e:88:98:e7:
2f:d3:06:87:77:e1:1e:cd:80:8e:ce:0c:69:83:ab:21:fa:a6:
1f:06:f5:62:66:53:2d:ac:7b:ae:a7:15:a6:42:39:a4:d2:56:
39:16:a1:9d:47:b2:dc:07:71:ad:0e:c1:8e:2e:c4:c0:28:69:
ef:92:06:b0:38:d4:4a:16:b3:0f:ab:67:8e:e2:2e:05:84:17:
9f:b2:9c:c1:7f:5d:81:c0:5d:e1:c8:dd:c4:c7:a2:d7:70:ae:
80:e5:60:ab:c9:09:cd:4f:98:0f:37:61:08:5e:b3:fe:0f:a8:
2f:ba:16:ec:ff:de:52:1f:86:e6:23:fe:8c:71:dc:7b:29:66:
4a:bc:f2:79:47:ee:70:9c:21:f1:c3:c4:7d:30:65:3e:d4:50:
bd:b0:66:7f:20:45:4d:40:8d:5c:e4:75:f6:62:77:cc:df:f7:
dc:25:67:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:31:24 2025 by rpki-client