Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/WMoooOpXB2jcfQrlpzqg5kXvjMk.roa
File: WMoooOpXB2jcfQrlpzqg5kXvjMk.roa (raw, json)
Hash identifier: 4+gI/L837igNgQEcnK1DODCNBnGhhEETGPgXm6hbIPM=
Subject key identifier: 58:CA:28:A0:EA:57:07:68:DC:7D:0A:E5:A7:3A:A0:E6:45:EF:8C:C9
Certificate issuer: /CN=614ca0d09bbd05f4b8a8ac30a329f6715110758c
Certificate serial: 72A926
Authority key identifier: 61:4C:A0:D0:9B:BD:05:F4:B8:A8:AC:30:A3:29:F6:71:51:10:75:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/WMoooOpXB2jcfQrlpzqg5kXvjMk.roa
Signing time: Sat 01 Jan 2022 05:51:35 +0000
ROA not before: Sat 01 Jan 2022 05:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210513
IP address blocks: 62.3.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7514406 (0x72a926)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614ca0d09bbd05f4b8a8ac30a329f6715110758c
Validity
Not Before: Jan 1 05:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58ca28a0ea570768dc7d0ae5a73aa0e645ef8cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:85:de:8d:72:f0:ee:aa:1f:7d:e0:0a:1a:c0:
04:62:2a:c2:e8:d2:96:99:ab:69:5a:52:b1:31:b5:
02:25:e1:b9:6f:1f:34:4c:22:e4:b1:5d:c8:67:d5:
39:88:d7:0e:bd:e5:1e:2e:a4:87:f5:02:ee:82:62:
2c:1f:55:69:be:76:07:e6:34:1e:5b:fc:f0:c8:61:
54:03:a8:9d:d2:7d:bf:cf:66:39:f5:44:36:84:5b:
fc:22:82:dc:fa:02:ac:f5:50:5d:0c:66:6f:ee:26:
5d:90:27:ea:bc:c3:2f:b9:e5:d4:99:f6:84:50:80:
39:10:d9:5a:1e:04:68:17:7f:60:5e:47:1d:b2:d1:
fa:22:eb:fb:2c:82:fb:0f:99:f9:36:a6:c5:d9:bc:
f8:fa:34:47:78:95:d2:97:eb:58:1d:db:6a:bd:1e:
d5:dd:18:a2:76:50:8f:cf:63:2e:2a:fe:e5:3d:3c:
f5:6a:8d:09:a2:49:c8:68:66:b1:dd:47:98:06:cd:
4e:87:3d:66:08:44:d1:ce:23:ef:a6:a0:a5:de:52:
98:1e:58:67:df:a8:7a:d6:76:d4:68:1d:b2:f3:10:
db:bc:80:33:ec:88:1d:37:a7:f9:e2:0a:d3:da:4d:
c6:0c:ac:c6:b8:36:81:25:6d:e0:e5:82:64:36:9b:
8b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CA:28:A0:EA:57:07:68:DC:7D:0A:E5:A7:3A:A0:E6:45:EF:8C:C9
X509v3 Authority Key Identifier:
keyid:61:4C:A0:D0:9B:BD:05:F4:B8:A8:AC:30:A3:29:F6:71:51:10:75:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/WMoooOpXB2jcfQrlpzqg5kXvjMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.56.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c7:cd:30:f5:6f:a6:86:12:fc:05:53:5e:79:aa:be:4b:2f:
39:a7:1b:2c:ce:74:86:fa:ec:c3:19:aa:7f:8b:78:73:ba:0c:
a2:06:6f:49:64:6f:7e:c5:69:7a:74:f7:e9:23:96:92:d1:1a:
6a:92:c5:5d:a2:d5:8e:94:67:c2:28:e2:98:f5:bd:72:5e:69:
c3:a7:b5:d9:b5:6d:7d:52:93:d0:0f:f1:ea:bc:e6:8c:16:0b:
3b:37:32:9a:45:fb:55:8e:70:51:c2:56:30:52:29:de:cd:94:
91:8b:8d:df:95:3a:40:7c:ac:09:f0:ae:8b:8d:ca:24:35:d2:
58:d8:f3:23:ef:17:75:db:fd:9e:8f:42:c1:34:76:7f:26:24:
71:5a:0f:66:08:1e:d7:2f:c7:37:15:d4:b0:6a:e0:10:03:80:
5b:10:f1:62:58:70:5e:7b:14:8e:64:4a:38:c7:86:ac:4d:cb:
1e:a1:c1:fc:c5:93:3f:61:68:d6:97:ba:ff:36:3e:a3:10:c1:
9e:e9:4c:4e:82:e4:9e:7f:6c:44:4a:b3:e3:72:06:cb:d4:92:
03:c3:43:b9:34:fc:1f:6d:1e:69:80:51:0e:ba:9e:11:5d:7f:
81:f7:11:62:e5:15:19:a6:b6:a8:d0:bc:77:ca:87:0f:3a:ef:
96:07:a7:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:50 2024 by rpki-client on console-ams.rpki-client.org