Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/63kQpjh6UMAk6raveCiPiS0FdYI.roa
File: 63kQpjh6UMAk6raveCiPiS0FdYI.roa (raw, json)
Hash identifier: u6ApO1BKzAqxjtuqS4TnwU4+qia5WGvU3G/afNq7ocw=
Subject key identifier: EB:79:10:A6:38:7A:50:C0:24:EA:B6:AF:78:28:8F:89:2D:05:75:82
Certificate issuer: /CN=90620638ca1d835650e08ddcf363f10789b53057
Certificate serial: 22AC60E6
Authority key identifier: 90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/63kQpjh6UMAk6raveCiPiS0FdYI.roa
Signing time: Sat 01 Jan 2022 12:03:06 +0000
ROA not before: Sat 01 Jan 2022 12:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7015
IP address blocks: 206.195.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 581722342 (0x22ac60e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90620638ca1d835650e08ddcf363f10789b53057
Validity
Not Before: Jan 1 12:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb7910a6387a50c024eab6af78288f892d057582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a3:76:17:04:39:1b:34:f5:d8:e7:4b:6d:9d:
ad:9f:63:b7:3a:d5:ea:55:de:b9:e7:2b:eb:21:af:
c0:79:a7:ee:f1:75:5f:40:5b:34:78:b7:fa:54:eb:
c5:5d:7e:38:dd:16:70:f2:cb:cf:e8:97:a3:64:f4:
b6:54:89:08:c5:47:d6:05:b0:18:4c:82:41:1a:e3:
07:df:db:53:27:87:76:9f:3c:ce:88:40:08:84:67:
49:3a:7e:d1:89:6b:05:81:12:7e:90:2f:36:98:28:
36:d7:50:09:bd:f8:2c:c8:ef:37:1a:2e:1f:54:c2:
5b:23:f3:8f:fd:5d:3c:c4:4b:71:b1:5b:7c:39:7b:
66:e4:9a:65:f4:be:fb:ea:18:01:9e:f3:e1:12:a2:
be:46:b1:b7:c9:6c:a2:b7:4a:55:12:9b:ae:c6:e7:
75:f3:68:70:e3:73:74:dc:cd:ca:ba:8f:9a:5e:8c:
ae:97:24:5a:f1:d8:a8:55:f6:ea:42:62:76:a8:51:
14:cf:0c:46:ca:22:45:1f:3e:e2:fd:e3:0e:9b:14:
5d:be:a5:31:f6:91:c1:d8:c3:f2:87:e1:f9:80:52:
48:21:a3:24:82:8d:ce:f5:8d:8a:5c:96:a8:2a:60:
1d:13:62:63:6e:96:0d:53:79:1b:31:3c:4e:c9:5e:
9e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:79:10:A6:38:7A:50:C0:24:EA:B6:AF:78:28:8F:89:2D:05:75:82
X509v3 Authority Key Identifier:
keyid:90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/63kQpjh6UMAk6raveCiPiS0FdYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/kGIGOModg1ZQ4I3c82PxB4m1MFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.195.52.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:56:f0:17:0f:f0:bb:be:1b:bf:11:8e:d2:e7:61:54:4e:5d:
89:1d:63:53:c0:b5:07:0f:11:95:a6:79:42:de:e1:ee:db:ff:
46:38:c2:0f:17:15:55:28:09:41:68:3a:a0:e0:a9:2b:a7:a9:
e8:04:3d:1d:d4:f8:e2:e1:c9:a1:04:a8:32:3c:a1:79:78:56:
82:ef:9e:71:4a:95:e5:8d:7a:b3:03:51:3a:7d:ac:eb:e8:fa:
ee:6a:ea:4f:3b:11:fd:c1:bc:c9:32:64:a2:e7:ca:9d:be:67:
50:09:89:39:ae:a0:6d:73:3b:b3:af:56:f4:3a:0d:8b:73:a6:
2a:be:b5:19:fc:d0:9d:f5:15:8b:04:53:a1:6a:2c:78:0a:2a:
97:30:69:f6:42:ed:ec:45:ad:4a:51:f0:74:82:8f:5c:75:60:
0e:5a:5c:8d:87:98:9b:88:c8:75:fc:bf:6a:5e:51:e5:4a:6b:
60:78:d7:f0:ed:c5:da:c0:4d:df:65:7f:08:89:6c:e1:ec:98:
04:f4:99:10:4b:9f:08:e0:51:fa:43:e6:16:9f:b0:8f:4d:c9:
e6:18:52:04:c4:52:c3:3a:af:44:d3:1d:e2:70:52:84:72:83:
6f:4f:9c:3a:47:3b:91:9a:63:31:d0:fe:74:7e:f6:c4:11:be:
79:3c:76:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:27 2025 by rpki-client