Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/yk6NHKqD-nYDZfXJPm_TFpI3ucQ.roa
File: yk6NHKqD-nYDZfXJPm_TFpI3ucQ.roa (raw, json)
Hash identifier: CoLpavQQuvEXw1LmLm8aH1rPSfbOqNWkgVTFw4IaHSo=
Subject key identifier: CA:4E:8D:1C:AA:83:FA:76:03:65:F5:C9:3E:6F:D3:16:92:37:B9:C4
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 0EB569
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/yk6NHKqD-nYDZfXJPm_TFpI3ucQ.roa
Signing time: Mon 31 Jan 2022 08:55:50 +0000
ROA not before: Mon 31 Jan 2022 08:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399471
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 963945 (0xeb569)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: Jan 31 08:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca4e8d1caa83fa760365f5c93e6fd3169237b9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:02:ef:c5:66:ba:87:f9:8c:32:7c:23:13:96:
c6:a8:1e:12:28:f2:35:61:7c:2a:d3:0a:bd:68:6f:
e2:ba:d7:c6:d2:86:44:f1:29:6a:1e:28:79:18:2b:
1f:e8:36:06:b9:65:b7:1b:2e:22:c8:78:b0:8f:f4:
df:64:12:d7:57:d6:15:43:a8:ca:33:71:1f:90:a9:
ed:a2:1b:44:65:b6:c3:af:6e:19:e1:af:3e:15:e9:
e7:3e:40:35:72:ca:1a:47:94:dd:80:18:79:9a:c0:
d1:9b:b5:c2:9c:5a:b4:ae:9d:48:36:f9:f9:b5:b6:
53:b4:27:89:c0:9a:62:39:74:f6:16:de:e6:0a:c0:
6c:88:a3:cd:d9:08:db:fd:7d:20:51:d0:a7:0a:4f:
d6:3d:d7:bd:2b:69:2f:0c:8d:dc:67:18:7f:0c:d5:
41:6d:d9:ca:e7:fc:77:6e:18:73:e1:28:f6:d0:42:
91:11:39:8e:ea:f3:30:12:a8:1b:8d:f7:78:fc:b6:
ae:88:d9:13:6d:e6:8a:9e:b8:78:98:2d:bf:e8:d3:
44:d7:bc:36:19:ca:5e:c1:89:99:1e:86:3a:87:81:
7d:78:7c:1e:14:0c:98:87:85:a2:06:04:ac:34:62:
58:74:71:fa:ad:9a:78:a2:8e:74:94:1f:2b:7a:44:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4E:8D:1C:AA:83:FA:76:03:65:F5:C9:3E:6F:D3:16:92:37:B9:C4
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/yk6NHKqD-nYDZfXJPm_TFpI3ucQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:c9:4e:df:5d:20:29:43:5f:0d:9b:0a:4a:47:01:50:a3:0d:
90:66:f2:ad:25:09:74:0f:03:2d:29:7b:50:22:40:ed:20:5d:
b0:72:9f:ea:c5:9c:26:12:bc:8f:7c:b3:0a:1a:4a:10:e7:f8:
b5:ed:56:24:49:a1:4d:60:ff:b1:49:2a:38:ed:63:94:53:85:
d9:b3:8a:d2:98:e5:71:b1:bc:68:7e:59:e0:a3:d7:28:6e:fc:
9b:76:68:84:d3:55:a1:bc:05:95:cc:c9:27:be:fc:d2:38:32:
fd:52:95:28:20:1a:fb:73:98:4a:14:95:75:27:08:93:67:94:
8c:72:66:0d:40:82:10:91:47:8f:e7:d3:19:c9:ca:10:f7:0b:
34:97:28:98:f8:10:d6:4f:f1:e3:72:25:04:08:ae:9a:0b:6d:
4c:91:a0:77:c7:62:54:f3:93:8b:82:e1:30:61:6e:ed:49:8f:
d4:ed:06:f5:a9:66:b6:ad:1d:0c:f3:e2:4b:f1:eb:ab:10:51:
03:b7:cb:8c:03:e4:02:b4:ad:36:dd:93:41:13:bd:44:b5:54:
d3:8b:d6:bd:04:0e:1c:f1:a5:38:a7:cd:32:0c:05:fb:3c:5b:
f7:9b:b0:5e:d8:79:a5:30:23:75:5f:03:97:dd:7e:34:09:4f:
6a:9a:93:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:10 2024 by rpki-client on console-ams.rpki-client.org