Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/2992da-60d9-442f-9331-7f1da6827447/1/iD5Y_0umVEoGNQkFvEgHQe9m7UI.roa
File: iD5Y_0umVEoGNQkFvEgHQe9m7UI.roa (raw, json)
Hash identifier: ThrqTVNuiZNavtmzUdHtxaRoey0bZere1bP2nyTeJCM=
Subject key identifier: 88:3E:58:FF:4B:A6:54:4A:06:35:09:05:BC:48:07:41:EF:66:ED:42
Certificate issuer: /CN=e39b1000e786b4fd6d61737790e4f3429892650e
Certificate serial: 5BC4C9
Authority key identifier: E3:9B:10:00:E7:86:B4:FD:6D:61:73:77:90:E4:F3:42:98:92:65:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45sQAOeGtP1tYXN3kOTzQpiSZQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/2992da-60d9-442f-9331-7f1da6827447/1/iD5Y_0umVEoGNQkFvEgHQe9m7UI.roa
Signing time: Sat 01 Jan 2022 01:00:35 +0000
ROA not before: Sat 01 Jan 2022 01:00:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207728
IP address blocks: 62.204.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6014153 (0x5bc4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39b1000e786b4fd6d61737790e4f3429892650e
Validity
Not Before: Jan 1 01:00:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=883e58ff4ba6544a06350905bc480741ef66ed42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e3:38:47:4f:7b:65:1e:1b:11:c5:c3:51:2e:
06:83:9f:6c:4c:e9:8b:18:a7:bb:c1:97:7f:e7:63:
c7:3a:9c:ad:78:6d:47:24:79:75:c9:8b:13:31:bc:
52:ae:89:88:07:e9:f1:33:e2:37:8a:25:3b:9d:ab:
c7:6f:63:6c:d7:9a:26:83:4f:be:66:ac:5b:a3:52:
5f:87:2c:f1:37:b1:cb:91:75:70:dc:e6:4b:ec:82:
e5:a3:3e:4a:7e:7c:40:11:9a:36:e6:6c:8b:16:74:
2d:77:cd:1d:80:3c:74:a9:75:41:05:22:86:6e:b0:
82:07:58:6b:ca:00:a7:d3:d1:c2:25:47:54:f0:fb:
3a:ce:d8:83:5c:64:52:64:ad:9c:3c:ba:dd:50:01:
79:77:dd:a8:6b:2f:d4:82:ed:3d:20:69:5c:d1:7e:
13:df:68:e6:ae:ea:cc:d0:10:19:ad:d6:b5:84:1e:
d0:ec:24:b8:69:da:93:39:e1:ff:bb:98:6b:ad:15:
cc:63:3c:09:52:f8:47:74:16:54:e8:56:15:a7:ce:
af:bb:b3:a3:61:7d:4d:bd:ac:02:21:6b:68:1a:10:
05:37:38:e1:83:0e:97:a3:6d:d0:9a:16:b5:a3:84:
08:0b:c7:c8:89:49:e9:c1:41:23:af:eb:69:e6:25:
70:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3E:58:FF:4B:A6:54:4A:06:35:09:05:BC:48:07:41:EF:66:ED:42
X509v3 Authority Key Identifier:
keyid:E3:9B:10:00:E7:86:B4:FD:6D:61:73:77:90:E4:F3:42:98:92:65:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45sQAOeGtP1tYXN3kOTzQpiSZQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/2992da-60d9-442f-9331-7f1da6827447/1/iD5Y_0umVEoGNQkFvEgHQe9m7UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/2992da-60d9-442f-9331-7f1da6827447/1/45sQAOeGtP1tYXN3kOTzQpiSZQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.42.0/24
Signature Algorithm: sha256WithRSAEncryption
32:37:ef:a9:e3:fa:63:77:11:52:dd:1d:27:aa:e5:6d:0e:9c:
2e:1f:f4:22:e0:24:2e:67:43:18:b2:58:d3:f4:81:8e:69:72:
91:c2:c5:06:3a:b4:53:aa:64:3f:7e:7f:d5:a2:52:d9:d1:29:
b4:f5:01:aa:f6:2e:77:86:5b:d0:ea:c1:7a:59:9f:47:79:fc:
94:be:ab:73:1a:06:c6:50:0a:d8:d4:c9:20:16:c5:47:18:fc:
51:51:87:6b:35:c4:75:51:b9:d0:eb:32:45:17:95:76:c7:1f:
8c:2c:2e:39:ef:b9:b6:5b:11:48:76:11:db:83:59:fe:b9:b8:
c2:e6:fc:45:2b:38:1c:d8:71:94:cd:52:70:e5:d4:07:e9:16:
8b:ca:a2:9d:f8:10:bb:25:e4:bb:d0:49:0c:fe:04:40:eb:4c:
e5:02:28:fe:aa:3f:ba:90:cb:73:76:ea:8e:5d:2c:3a:fc:57:
fe:2d:98:2a:eb:65:f2:73:4c:85:b3:1f:7b:b8:07:77:91:76:
af:63:87:05:e0:86:3e:2c:37:c7:88:ed:72:6d:5a:31:16:35:
db:06:c4:d3:2d:db:21:a2:28:ef:58:f6:ff:d3:70:c5:09:7d:
ec:3b:fd:ff:83:6d:be:c0:62:5a:64:54:02:4f:9b:90:26:6b:
3a:7f:45:04
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDW8TJMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUz
OWIxMDAwZTc4NmI0ZmQ2ZDYxNzM3NzkwZTRmMzQyOTg5MjY1MGUwHhcNMjIwMTAx
MDEwMDM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4ODNlNThmZjRiYTY1
NDRhMDYzNTA5MDViYzQ4MDc0MWVmNjZlZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA2uM4R097ZR4bEcXDUS4Gg59sTOmLGKe7wZd/52PHOpyteG1H
JHl1yYsTMbxSromIB+nxM+I3iiU7navHb2Ns15omg0++Zqxbo1JfhyzxN7HLkXVw
3OZL7ILloz5KfnxAEZo25myLFnQtd80dgDx0qXVBBSKGbrCCB1hrygCn09HCJUdU
8Ps6ztiDXGRSZK2cPLrdUAF5d92oay/Ugu09IGlc0X4T32jmrurM0BAZrda1hB7Q
7CS4adqTOeH/u5hrrRXMYzwJUvhHdBZU6FYVp86vu7OjYX1NvawCIWtoGhAFNzjh
gw6Xo23Qmha1o4QIC8fIiUnpwUEjr+tp5iVwZQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFIg+WP9LplRKBjUJBbxIB0HvZu1CMB8GA1UdIwQYMBaAFOObEADnhrT9bWFz
d5Dk80KYkmUOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NDVzUUFPZUd0UDF0WVhOM2tPVHpRcGlTWlE0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81ZS8yOTkyZGEtNjBkOS00NDJmLTkzMzEtN2YxZGE2ODI3NDQ3LzEv
aUQ1WV8wdW1WRW9HTlFrRnZFZ0hRZTltN1VJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8y
OTkyZGEtNjBkOS00NDJmLTkzMzEtN2YxZGE2ODI3NDQ3LzEvNDVzUUFPZUd0UDF0
WVhOM2tPVHpRcGlTWlE0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPswqMA0GCSqGSIb3DQEBCwUAA4IB
AQAyN++p4/pjdxFS3R0nquVtDpwuH/Qi4CQuZ0MYsljT9IGOaXKRwsUGOrRTqmQ/
fn/VolLZ0Sm09QGq9i53hlvQ6sF6WZ9HefyUvqtzGgbGUArY1MkgFsVHGPxRUYdr
NcR1UbnQ6zJFF5V2xx+MLC4577m2WxFIdhHbg1n+ubjC5vxFKzgc2HGUzVJw5dQH
6RaLyqKd+BC7JeS70EkM/gRA60zlAij+qj+6kMtzduqOXSw6/Ff+LZgq62Xyc0yF
sx97uAd3kXavY4cF4IY+LDfHiO1ybVoxFjXbBsTTLdshoijvWPb/03DFCX3sO/3/
g22+wGJaZFQCT5uQJms6f0UE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:29 2024 by rpki-client on console-fra.rpki-client.org