Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/yB88Jtol7SqJ6DvCmymw_2wGpwo.roa
File: yB88Jtol7SqJ6DvCmymw_2wGpwo.roa (raw, json)
Hash identifier: hEuSL2BBWBiHztLcDmFwWiXljfga7jfJW9Lvoz5JwW0=
Subject key identifier: C8:1F:3C:26:DA:25:ED:2A:89:E8:3B:C2:9B:29:B0:FF:6C:06:A7:0A
Certificate issuer: /CN=642794c2d2cfa054638ba950a5f668e87601412d
Certificate serial: 01856E5D6E2363375772FE52A77F61B4B622
Authority key identifier: 64:27:94:C2:D2:CF:A0:54:63:8B:A9:50:A5:F6:68:E8:76:01:41:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCeUwtLPoFRji6lQpfZo6HYBQS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/yB88Jtol7SqJ6DvCmymw_2wGpwo.roa
Signing time: Sun 01 Jan 2023 17:24:54 +0000
ROA not before: Sun 01 Jan 2023 17:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51815
IP address blocks: 62.102.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:6e:23:63:37:57:72:fe:52:a7:7f:61:b4:b6:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=642794c2d2cfa054638ba950a5f668e87601412d
Validity
Not Before: Jan 1 17:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c81f3c26da25ed2a89e83bc29b29b0ff6c06a70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ed:1d:70:47:7c:f5:b7:75:77:9e:6e:73:4a:
a7:9c:17:4e:a6:8f:84:6e:c3:12:09:bc:96:ef:90:
24:56:03:61:24:da:bf:fd:0c:53:d8:42:1a:b9:5f:
33:82:f9:ad:b3:99:33:6b:7e:fa:8a:9d:b7:a2:c7:
4c:d8:71:8d:90:80:4b:5a:81:ac:92:c6:5b:2f:cb:
c7:6b:b6:3a:c8:a0:0c:82:67:53:08:13:e6:d7:5b:
76:50:e8:fa:8b:48:c9:14:87:d3:bf:76:39:49:80:
12:00:e1:39:80:ce:1b:7a:2b:86:2a:89:9f:46:26:
02:7a:82:75:99:9b:8d:1c:65:11:8b:21:fc:46:b6:
6e:bd:59:b7:e4:58:be:ab:3f:b5:22:29:5d:5c:2c:
d3:c9:94:dc:94:f4:dc:c1:65:8a:73:53:b9:78:19:
20:14:20:3a:83:91:21:56:e0:9d:97:44:a7:4e:42:
fe:40:36:ce:9d:bc:cb:50:bd:df:7f:f0:f9:bf:dc:
f8:b8:45:04:d5:9f:d5:c0:09:b3:5b:61:28:f1:b2:
28:34:a8:49:fe:2a:04:86:3c:bf:a0:e7:67:fa:fe:
71:05:e3:2c:f1:67:6a:aa:18:94:45:a3:59:9e:50:
78:6e:4c:37:f7:61:b9:6b:f7:b2:7a:43:d0:83:fe:
f1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1F:3C:26:DA:25:ED:2A:89:E8:3B:C2:9B:29:B0:FF:6C:06:A7:0A
X509v3 Authority Key Identifier:
keyid:64:27:94:C2:D2:CF:A0:54:63:8B:A9:50:A5:F6:68:E8:76:01:41:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCeUwtLPoFRji6lQpfZo6HYBQS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/yB88Jtol7SqJ6DvCmymw_2wGpwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/ZCeUwtLPoFRji6lQpfZo6HYBQS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.102.151.0/24
Signature Algorithm: sha256WithRSAEncryption
10:30:27:8e:c5:75:94:76:95:35:63:42:27:d1:c9:84:ac:29:
4b:09:24:e7:37:48:3a:60:8e:46:84:ec:49:49:c5:c3:71:82:
3a:14:22:ef:8b:b4:38:da:d7:e9:47:9c:6b:8e:f1:4d:f4:34:
43:87:10:e2:1a:f0:6e:53:58:36:c5:2d:d5:f7:ad:9a:33:1f:
36:26:ff:54:4e:fc:31:37:d9:19:36:ee:ec:cc:e9:e4:6f:8c:
b3:fd:58:1e:1f:26:d3:71:7a:a8:9b:e7:3e:24:a1:2a:86:22:
04:49:c3:f5:b9:0b:65:f2:c5:86:79:38:0f:8b:42:7e:0a:e8:
d4:14:35:5b:31:41:cb:7b:96:79:12:a0:04:06:88:94:b9:50:
f4:45:47:dd:b0:4e:5f:d2:48:18:47:6c:88:dc:0f:8d:96:cf:
c5:ac:b1:48:b6:5e:52:b6:2b:3a:01:d5:93:32:a4:fc:61:ad:
9b:66:8e:a6:dd:7c:69:fd:e4:d4:b9:9d:fc:90:20:16:41:8d:
82:6d:f8:df:c0:72:0e:c9:1d:98:df:40:d4:6a:37:b2:3f:41:
82:2b:91:b4:3d:e3:95:d7:60:70:2f:39:c1:90:3d:1e:36:e7:
64:8e:b9:2f:2d:83:56:e0:92:c0:ea:9a:c4:7d:ff:03:bc:13:
9d:0b:ad:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:47:24 2025 by rpki-client