Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/EITCGv8SQBAZYORpCbQTrmySpdY.roa
File: EITCGv8SQBAZYORpCbQTrmySpdY.roa (raw, json)
Hash identifier: EWC4cuy8B2aofJalsYdhP3ZrI7qdSTqFV0SKNVbq16M=
Subject key identifier: 10:84:C2:1A:FF:12:40:10:19:60:E4:69:09:B4:13:AE:6C:92:A5:D6
Certificate issuer: /CN=40bfdedfaa9399ad3d5531fa471a12b3bfe37e12
Certificate serial: 01870E81E5EF3ABADC89FFC23350A6814B74
Authority key identifier: 40:BF:DE:DF:AA:93:99:AD:3D:55:31:FA:47:1A:12:B3:BF:E3:7E:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QL_e36qTma09VTH6RxoSs7_jfhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/EITCGv8SQBAZYORpCbQTrmySpdY.roa
Signing time: Thu 23 Mar 2023 12:46:46 +0000
ROA not before: Thu 23 Mar 2023 12:46:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206175
IP address blocks: 62.148.121.0/24 maxlen: 24
62.148.124.0/24 maxlen: 24
62.148.122.0/24 maxlen: 24
62.148.125.0/24 maxlen: 24
62.148.99.0/24 maxlen: 24
62.148.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:81:e5:ef:3a:ba:dc:89:ff:c2:33:50:a6:81:4b:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bfdedfaa9399ad3d5531fa471a12b3bfe37e12
Validity
Not Before: Mar 23 12:46:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1084c21aff1240101960e46909b413ae6c92a5d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f4:af:f7:5d:4c:83:17:8b:47:fe:c3:9d:84:
65:57:90:44:42:f2:1e:47:89:80:87:8c:ac:06:d5:
ca:1e:b9:cd:b8:28:69:2c:ee:23:b7:42:c8:b0:6c:
ce:a5:dc:03:a0:76:58:7f:34:88:8c:04:b4:bd:44:
7d:65:dc:33:ab:50:c6:7f:0d:f3:5a:6d:6e:78:3c:
5a:2f:d7:70:99:ef:9b:fd:8b:a9:97:dc:8d:d4:a0:
41:a8:e2:66:5c:4e:ea:75:99:58:dc:1c:0d:c0:35:
6c:f3:6c:ab:f1:6c:86:0a:93:0f:0a:69:3b:1d:41:
5a:4a:f3:ff:14:5c:51:1f:1d:f3:12:76:b9:55:fc:
48:fc:5d:5e:b2:61:18:6e:f2:b7:a5:af:bb:27:31:
86:e4:8d:d7:1d:7c:26:5c:b1:dc:9c:ac:9c:d8:8a:
f3:73:9a:ad:9a:20:14:ba:22:9c:8f:5c:f9:00:bb:
c7:01:3d:79:49:d4:19:5c:21:ec:03:c4:57:23:6b:
6d:f9:f4:eb:5f:e5:19:fc:fe:5f:64:3e:19:7f:a2:
17:e6:e1:c9:91:df:5f:e1:fe:ba:f6:8e:8f:f0:de:
1d:98:e7:58:c5:df:f3:33:ea:1b:93:ce:33:4b:55:
1a:08:4a:bf:fa:21:5a:3e:a3:ba:93:55:26:15:f8:
d6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:84:C2:1A:FF:12:40:10:19:60:E4:69:09:B4:13:AE:6C:92:A5:D6
X509v3 Authority Key Identifier:
keyid:40:BF:DE:DF:AA:93:99:AD:3D:55:31:FA:47:1A:12:B3:BF:E3:7E:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QL_e36qTma09VTH6RxoSs7_jfhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/EITCGv8SQBAZYORpCbQTrmySpdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/db55ec-3577-421f-8916-8e9851b7f811/1/QL_e36qTma09VTH6RxoSs7_jfhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.99.0/24
62.148.101.0/24
62.148.121.0-62.148.122.255
62.148.124.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:3c:e8:a9:65:a1:c7:f7:c6:75:d0:9f:82:89:9f:b3:11:9c:
b1:89:39:8c:2d:c5:43:62:7b:f4:50:52:8a:c1:57:b8:55:7a:
8e:f2:b7:e6:92:67:ef:f3:63:42:dc:f6:fb:5e:cb:7b:95:8b:
08:95:a6:5d:49:f9:50:38:b2:c6:06:b1:dc:37:78:15:c9:bc:
c1:de:cc:32:e6:7f:25:60:f5:4b:5b:5a:1b:93:af:1d:e6:30:
32:cc:c6:b6:3a:9c:f7:73:99:c9:30:e8:ff:88:84:6d:36:5f:
c8:f1:2f:2d:2e:28:6b:9c:af:8d:31:9a:39:22:0d:bf:da:c5:
57:26:1b:7b:a2:ce:ef:f0:79:17:e2:ed:93:1a:d0:b5:64:d2:
67:39:81:01:66:8c:4a:9f:d4:e5:13:2a:41:73:4f:65:10:15:
e7:52:ba:30:8d:0d:67:f3:bd:53:da:c1:ae:d4:2c:9d:12:d8:
61:7b:a2:aa:e4:1a:b0:64:0c:a9:3e:c4:eb:d0:b6:dc:1a:78:
b3:8f:0c:4e:e0:ab:ce:3c:ac:ec:52:d1:13:be:b0:3f:91:49:
03:c2:f3:c0:32:e5:33:00:03:06:d0:e0:01:be:8e:b0:60:8a:
8d:73:38:47:96:70:a1:a4:8d:58:15:d1:09:94:2d:2e:66:2e:
b5:b9:66:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 08:20:39 2025 by rpki-client