Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/_DOQ6mMYbt-XEBLgJoCcI7RXRU8.roa
File: _DOQ6mMYbt-XEBLgJoCcI7RXRU8.roa (raw, json)
Hash identifier: tYX8W5zlN1fqdNL2pe6kaHdNYr3ZPqqEcPilyXvstrQ=
Subject key identifier: FC:33:90:EA:63:18:6E:DF:97:10:12:E0:26:80:9C:23:B4:57:45:4F
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 018A0753C276473D3B6C1237B5F21184A8B7
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/_DOQ6mMYbt-XEBLgJoCcI7RXRU8.roa
Signing time: Fri 18 Aug 2023 06:27:24 +0000
ROA not before: Fri 18 Aug 2023 06:27:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 62.132.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:53:c2:76:47:3d:3b:6c:12:37:b5:f2:11:84:a8:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Aug 18 06:27:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc3390ea63186edf971012e026809c23b457454f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:77:37:0a:22:f2:52:c0:73:8c:05:fd:12:
5f:a6:e0:fe:bf:2c:bb:f4:98:42:b9:74:70:71:d7:
04:13:42:41:28:69:4b:be:7a:ce:08:3b:f1:9a:8f:
f9:cb:8e:07:6c:ad:e6:f2:29:b1:d1:2c:b5:35:89:
b1:d6:a9:ff:be:f3:66:e0:a6:f9:ec:82:4e:24:43:
fa:6f:94:22:3f:8c:06:cd:d7:11:c0:d0:3f:43:76:
95:8b:31:37:e3:de:98:b2:4b:2c:1f:b5:23:e5:b3:
ca:7d:d4:c9:fa:74:ca:6f:20:cc:69:ea:76:fa:7c:
58:62:98:bd:32:ba:16:1e:9d:71:fa:3f:74:17:19:
54:ce:9a:6b:52:8d:2c:79:59:b7:1b:21:d3:d1:b2:
1b:1c:73:e7:16:f7:f1:46:bd:73:9c:7a:8f:f2:02:
c3:4f:04:fa:e3:9e:b8:88:84:88:5a:1b:cd:2c:e7:
7c:6d:0e:69:32:d7:70:76:2b:7e:68:b7:20:1b:e6:
5e:fe:1c:ef:1f:5a:c0:97:86:e0:84:18:e0:e8:4c:
cf:ed:07:5d:d1:26:52:1a:04:0e:65:46:7d:42:74:
f0:0a:85:26:84:b3:df:41:ff:98:6d:4a:f7:8f:8a:
c6:3d:a3:21:01:91:f3:f7:d2:e0:e0:26:8b:e8:45:
c2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:33:90:EA:63:18:6E:DF:97:10:12:E0:26:80:9C:23:B4:57:45:4F
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/_DOQ6mMYbt-XEBLgJoCcI7RXRU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.132.26.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:44:d4:4d:39:ee:cf:e3:9c:fe:c1:e2:2d:2f:db:b8:b2:ec:
81:50:d5:44:1a:11:9e:49:f8:65:17:6c:02:3c:84:15:c0:65:
af:5c:39:2f:2d:9f:e1:5e:e0:30:fb:58:34:77:7c:e3:0b:1d:
2f:d2:b7:c8:d6:f4:f5:9b:14:b4:a5:6b:49:9d:b6:34:e4:a0:
4b:ce:ad:12:95:e9:24:d7:f6:80:2e:9f:d9:41:e4:b2:98:f0:
b0:90:8f:89:9b:f6:0a:e4:7b:ea:82:46:dc:06:19:ca:95:d2:
f1:e2:e5:94:bb:81:f9:5e:c7:3a:37:3c:25:8d:16:28:94:4d:
26:f7:f9:a3:bb:d9:94:82:f8:fc:19:45:1f:0f:32:5e:b4:fa:
40:5e:79:59:42:9c:af:1a:b1:c3:2b:64:31:3f:22:93:61:28:
a7:be:74:f2:49:9e:38:71:6d:68:24:f4:b5:24:c8:3f:aa:cb:
a0:0b:2f:bc:5c:ac:7b:98:9e:c7:fc:fb:59:bb:8e:a8:e4:4d:
58:b8:59:7d:3a:f0:0d:cd:45:18:13:06:54:9f:ac:fc:8a:7a:
04:85:7a:32:6f:7e:79:b3:b7:9e:ce:5c:e4:c0:ad:c9:66:a4:
b6:8a:6b:dd:3f:66:a5:ba:df:88:a7:28:eb:46:f4:8b:ba:93:
5c:c8:6f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 08:23:02 2025 by rpki-client