Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/5r8g3ht4hp5tq2Pa2TurUWQem2M.roa
File: 5r8g3ht4hp5tq2Pa2TurUWQem2M.roa (raw, json)
Hash identifier: WqXedtGXAeTIes9nfpTVngktEFS7yRQYkyShrp3WQRw=
Subject key identifier: E6:BF:20:DE:1B:78:86:9E:6D:AB:63:DA:D9:3B:AB:51:64:1E:9B:63
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 42521B
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/5r8g3ht4hp5tq2Pa2TurUWQem2M.roa
Signing time: Thu 24 Feb 2022 07:33:08 +0000
ROA not before: Thu 24 Feb 2022 07:33:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4346395 (0x42521b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: Feb 24 07:33:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6bf20de1b78869e6dab63dad93bab51641e9b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b3:2f:aa:e2:ba:76:03:e1:61:67:fc:04:6d:
83:d1:42:82:0a:48:16:ce:97:af:0b:3c:46:19:5d:
89:c8:68:ac:15:0f:f0:ef:a7:a5:0d:1c:d2:d4:1c:
8e:1a:f9:e2:3b:d3:44:87:8c:02:74:93:17:5a:7d:
2b:d1:38:b9:47:14:9e:4d:68:68:5a:f5:19:bf:e5:
65:21:26:67:a0:2c:c7:b1:96:f7:26:46:3a:5f:d5:
9c:02:3e:67:39:d4:2b:00:c4:f4:07:56:6b:64:cb:
ba:e6:1f:44:d7:eb:43:2e:53:0c:ec:c2:a9:0e:3f:
64:ae:09:ec:f7:b0:54:4a:bf:ac:f3:ff:9e:ca:03:
f8:0b:ae:8b:8c:23:ac:6d:bf:41:9f:62:f9:72:3c:
32:2b:48:a7:a8:e9:97:fa:1e:7b:25:81:5a:58:e1:
3c:0b:79:13:a0:bc:71:bf:e9:ae:52:b9:26:91:80:
3e:30:d8:84:0e:e4:da:c0:1e:03:46:51:ac:d8:cd:
04:b0:cf:af:75:33:08:b8:e3:ca:4c:e8:ad:91:de:
e6:88:b8:80:b1:c4:7c:95:7b:67:fe:7b:7c:c0:e1:
75:44:e8:29:f5:3f:f7:17:40:63:8a:ab:b4:59:13:
0d:fa:41:f2:5a:5a:d0:ab:21:02:15:4c:9c:5e:57:
14:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BF:20:DE:1B:78:86:9E:6D:AB:63:DA:D9:3B:AB:51:64:1E:9B:63
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/5r8g3ht4hp5tq2Pa2TurUWQem2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
59:bd:db:77:55:e4:ab:c2:37:dc:17:24:52:8b:a8:e7:75:03:
1c:05:05:3b:f6:39:ea:d5:d8:fc:4d:5c:3c:90:9a:7f:4c:81:
fc:af:83:bd:7b:95:24:6c:94:14:fc:7c:96:36:03:0f:bd:5b:
76:ef:88:9a:a0:c1:38:83:8a:f6:7e:4f:36:9e:9a:4d:46:af:
b0:a8:be:f9:15:a7:f6:bb:e7:71:be:e6:24:04:32:a9:b1:f5:
73:50:8d:24:24:d4:f0:33:60:5e:49:a6:50:a5:a1:6b:4d:cf:
5e:99:cc:e3:c8:94:80:8c:cb:f7:b0:10:e2:bf:5e:a7:18:1a:
4b:33:17:c3:d2:1a:4b:bd:7f:4e:b5:64:55:7e:0a:05:15:b4:
01:1b:ed:7d:3c:2c:8c:91:5e:22:ed:b0:d1:f6:78:72:56:1e:
52:f3:f8:69:8e:f8:57:a5:65:1d:b2:62:4c:f2:ad:7f:c6:4a:
e6:d1:d8:e5:9d:02:78:1c:18:8b:53:a6:d1:33:39:88:d0:dc:
5d:1b:ee:9c:83:de:fc:b8:24:30:c6:2a:a1:f9:b2:e6:93:a1:
dc:fd:35:db:bb:53:e1:69:08:ce:ff:fc:d4:4c:61:1e:9d:4b:
43:5c:73:c6:f8:9a:0a:01:f9:c3:cd:bf:1e:a9:82:c8:6b:42:
a0:75:fd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:35 2024 by rpki-client on console-fra.rpki-client.org