Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/P8MkLBNcsVJiHoLd4tXdAqe-ZK4.roa
File: P8MkLBNcsVJiHoLd4tXdAqe-ZK4.roa (raw, json)
Hash identifier: Aypte+4MvSFZl4lDbdGJnkFM/s6x7+Uc9tMwG3ROKMw=
Subject key identifier: 3F:C3:24:2C:13:5C:B1:52:62:1E:82:DD:E2:D5:DD:02:A7:BE:64:AE
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 0184BFD1FC64B264DED0E29BED3380C7FA69
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/P8MkLBNcsVJiHoLd4tXdAqe-ZK4.roa
Signing time: Mon 28 Nov 2022 19:58:40 +0000
ROA not before: Mon 28 Nov 2022 19:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bf:d1:fc:64:b2:64:de:d0:e2:9b:ed:33:80:c7:fa:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: Nov 28 19:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fc3242c135cb152621e82dde2d5dd02a7be64ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1c:30:6d:35:fc:53:1f:55:90:a2:1f:95:a0:
a9:27:e9:0a:df:30:f8:e7:23:33:8c:77:35:79:b2:
cf:2f:c0:ec:b2:e0:7d:bd:be:d0:b2:4d:a2:20:d9:
e8:78:cf:fb:39:66:a3:53:88:d2:d4:8c:df:6c:ce:
c9:6b:e1:36:0e:6e:4c:73:33:fc:56:92:58:d2:aa:
87:bf:3e:ea:dc:f4:52:3a:ae:ab:67:a6:5f:8f:17:
cb:da:67:9b:a7:09:71:46:37:5d:12:d6:21:4c:15:
b2:5a:88:66:bd:07:6f:52:b4:7c:7d:cf:f1:00:9c:
a9:d5:b6:30:63:b4:08:cf:dc:a5:16:18:6a:eb:df:
f6:81:03:5e:3d:0c:44:19:ed:56:9e:c9:33:be:b4:
9d:29:6a:c9:d2:5a:a0:fa:2b:2f:10:b9:a3:87:ed:
6d:36:27:bf:cf:1d:b7:67:09:53:f9:1c:ab:53:bf:
4a:d5:39:cb:d8:ea:1d:89:9b:b6:b4:fc:1e:d6:43:
12:ad:a0:94:a2:25:7b:c1:7f:1a:b8:58:f4:78:d0:
dc:b0:91:d1:ed:5f:fe:35:29:2e:7d:f8:02:0e:1b:
7b:7a:ba:f8:b7:de:92:0d:dd:4a:32:ae:69:19:c7:
5c:53:31:e2:f3:c1:46:fc:73:26:6d:39:a9:36:78:
9e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C3:24:2C:13:5C:B1:52:62:1E:82:DD:E2:D5:DD:02:A7:BE:64:AE
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/P8MkLBNcsVJiHoLd4tXdAqe-ZK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:3c:67:04:07:18:91:19:71:fa:06:e9:bf:cb:81:17:70:6e:
6d:0a:ad:1d:c1:43:72:96:78:1c:8f:0d:90:26:10:12:b2:89:
f2:04:af:db:d4:b6:6e:2b:c6:12:df:2d:58:6a:2c:b3:71:5f:
57:de:47:ea:ef:87:57:43:39:26:21:bb:ae:59:20:55:dc:14:
78:6d:da:0c:b0:cb:0b:e9:a6:62:70:f1:fe:d2:17:bb:33:f3:
86:33:b9:73:fa:91:2d:de:ec:9c:36:0c:44:60:55:e9:9b:61:
67:38:4d:aa:10:e1:4d:5e:2e:31:97:d5:c4:80:d6:14:d9:69:
1d:e1:89:47:0c:fa:49:b8:0c:f6:01:7e:f2:eb:78:85:72:d1:
85:d1:d6:d5:2c:76:5a:2e:e9:ad:66:2d:51:74:82:0b:d7:ef:
47:c7:e0:60:86:8c:f2:a6:3f:10:06:a4:c7:cb:39:53:40:dc:
af:ed:de:6b:3f:91:ef:3a:5e:52:1e:35:44:2c:b1:09:f4:03:
18:53:2c:e5:9c:79:20:d1:4f:95:d2:36:8b:25:1f:5f:bd:9e:
d5:02:ea:44:fd:3a:7a:70:b4:cd:45:7a:1e:26:4f:c8:af:f1:
38:f2:e7:30:c7:19:45:55:42:d0:67:09:45:2e:8b:01:c9:f9:
8f:01:d6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:09 2024 by rpki-client on console-ams.rpki-client.org