Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/SeNY3psnk7Q3CEh64rKfurc8sGY.roa
File: SeNY3psnk7Q3CEh64rKfurc8sGY.roa (raw, json)
Hash identifier: A9Z+LcEuHHh38dhK3CGTV0FXyYjMzhTX7+PIXyaACCk=
Subject key identifier: 49:E3:58:DE:9B:27:93:B4:37:08:48:7A:E2:B2:9F:BA:B7:3C:B0:66
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 7BF054
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/SeNY3psnk7Q3CEh64rKfurc8sGY.roa
Signing time: Tue 22 Mar 2022 09:21:46 +0000
ROA not before: Tue 22 Mar 2022 09:21:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8122452 (0x7bf054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: Mar 22 09:21:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49e358de9b2793b43708487ae2b29fbab73cb066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5a:ec:17:77:9d:f3:a5:07:94:a6:7e:58:97:
c0:0e:8c:c3:0a:22:b3:e1:d9:dd:d6:cd:df:9f:a0:
91:fe:ed:6f:fd:cc:81:5a:c1:1e:09:50:47:01:d0:
c2:02:f1:4a:c0:6c:f4:d6:e9:8c:cb:8c:6b:7c:73:
16:c3:39:1d:e5:f1:dd:d4:bf:16:7e:a1:a6:26:3b:
ee:a4:cd:27:a3:1c:86:fc:03:e2:b6:a9:74:30:c0:
cf:ba:bc:ee:2b:3e:bc:9c:bb:42:2b:34:c5:d7:e3:
d7:3a:6b:1f:d1:83:5a:6f:37:51:38:b7:07:4b:6e:
d4:23:05:df:e8:a6:69:dd:4e:99:41:e4:df:88:59:
1c:f0:da:12:06:f5:60:26:da:c9:c6:6c:ea:76:5a:
89:25:2b:c4:7f:dd:74:be:f8:30:55:11:56:3f:5a:
98:7b:d8:28:7b:7e:79:de:44:80:20:61:54:fe:e8:
dc:77:00:a1:4b:40:c1:69:9f:ad:5f:a3:59:3a:f2:
8f:59:97:45:ba:d8:d3:61:c1:3e:9a:77:17:f8:37:
04:2b:84:98:c0:de:eb:e1:60:f6:a7:2e:97:54:08:
27:52:7e:0d:ac:45:e3:ed:cd:af:5c:80:cd:85:14:
63:7e:c6:bb:e8:b5:be:e4:e9:a4:d0:eb:4f:96:5e:
72:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E3:58:DE:9B:27:93:B4:37:08:48:7A:E2:B2:9F:BA:B7:3C:B0:66
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/SeNY3psnk7Q3CEh64rKfurc8sGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
19:8f:bc:b2:85:02:f7:56:2d:f9:3d:d8:34:97:9e:fe:83:20:
02:d5:9a:a4:e7:4d:8e:48:45:0f:0e:5d:cb:a1:58:9f:ba:bb:
1f:69:f9:33:29:36:17:6c:f3:30:6b:0f:45:21:99:07:b8:58:
5c:f0:a1:8f:fc:51:f3:7e:91:48:c4:bb:8c:59:5d:3b:bd:7f:
83:94:3e:e0:b2:f7:33:6b:d6:49:c9:76:97:fd:0d:03:45:2e:
1c:5d:5a:9e:88:55:62:fc:9a:a4:3b:f6:a6:d9:92:b6:25:64:
cd:7e:c6:b9:52:12:9a:61:6a:42:43:69:09:61:7c:af:24:e3:
ba:2c:82:5a:2f:93:f8:76:e4:82:94:f3:27:b6:6f:ec:28:39:
12:eb:19:6f:b7:ac:b3:56:c8:96:6e:a4:72:67:fc:78:b2:8d:
70:a6:d6:d1:19:c9:80:e5:6e:6d:ec:7b:95:a8:7d:49:50:f7:
98:63:a1:5f:00:c1:83:e6:3b:f8:5e:a4:f1:4b:87:36:4a:d3:
f8:6c:dd:f8:e0:33:b4:53:88:95:a0:be:a6:e9:9a:5e:af:2e:
af:f1:98:b5:54:41:48:13:6c:87:ce:fa:e5:ae:7f:dd:ef:cd:
8d:0b:4c:8f:87:68:2d:b3:5c:9d:72:c0:94:81:e7:56:ee:6e:
81:d5:77:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:35 2024 by rpki-client on console-fra.rpki-client.org