Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/O3oonsDoA6q9tJ5ObSF4Dm4cV74.roa
File: O3oonsDoA6q9tJ5ObSF4Dm4cV74.roa (raw, json)
Hash identifier: ZM0evekbt/sIuYQn5IVfZGeZRdBxG5kGU9F7g6/QoiU=
Subject key identifier: 3B:7A:28:9E:C0:E8:03:AA:BD:B4:9E:4E:6D:21:78:0E:6E:1C:57:BE
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1AFE8E8F
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/O3oonsDoA6q9tJ5ObSF4Dm4cV74.roa
Signing time: Sat 01 Jan 2022 13:05:43 +0000
ROA not before: Sat 01 Jan 2022 13:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29322
IP address blocks: 62.39.100.0/24 maxlen: 24
62.39.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452890255 (0x1afe8e8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 13:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b7a289ec0e803aabdb49e4e6d21780e6e1c57be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:1b:e9:83:3f:aa:72:58:bf:94:29:1e:7c:
60:43:14:4c:3c:49:65:2f:cd:fd:8c:d9:cf:b8:98:
3d:02:fc:51:46:87:a8:62:f7:88:4d:a4:84:24:0a:
94:73:31:95:ae:98:82:63:4e:9c:ea:d4:92:99:20:
14:4b:69:0a:58:a1:41:b9:bc:7f:64:e8:88:2a:ad:
7f:96:30:d8:9c:f7:96:2a:69:44:c5:b6:d9:e5:6a:
d9:25:2a:95:fb:84:4c:72:77:bc:5e:30:35:57:e8:
47:da:13:a4:3c:0e:3a:37:05:78:b4:d2:4c:a2:bc:
00:67:4d:55:a8:e4:5c:cf:04:07:ed:32:8e:72:1e:
a4:32:71:f1:48:31:b7:76:f8:99:39:e1:8f:df:09:
cd:ca:e3:53:2a:29:eb:5d:94:7d:b4:c1:a2:ff:2b:
d1:08:9d:19:0a:6f:f9:7d:11:e4:bc:1d:cc:b4:05:
db:cb:ef:d3:ac:4b:f2:c5:65:67:0e:31:ee:4b:30:
7c:76:0c:ad:4e:ed:ff:63:ba:9d:3c:18:3f:4b:b9:
cf:64:05:c6:73:c7:e3:dd:0e:4f:cd:44:27:a5:66:
c5:9b:57:93:62:ec:0f:0f:fe:0c:99:be:53:43:0f:
44:e7:f0:1b:1b:03:e2:01:b8:1d:99:5c:7f:a7:34:
21:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7A:28:9E:C0:E8:03:AA:BD:B4:9E:4E:6D:21:78:0E:6E:1C:57:BE
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/O3oonsDoA6q9tJ5ObSF4Dm4cV74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.39.77.0/24
62.39.100.0/24
Signature Algorithm: sha256WithRSAEncryption
79:21:c8:b9:d8:a3:3a:82:86:dc:fd:71:bb:5a:cd:07:62:94:
7b:ce:5a:12:02:ed:32:b2:da:67:44:26:1e:d4:0e:31:2a:7b:
9f:b1:75:c7:35:a4:86:e1:68:ed:09:76:5f:b1:08:e5:49:8b:
0c:a5:e7:cf:a6:6d:73:e5:23:d6:05:d7:d0:c1:18:9a:4c:3f:
06:6c:28:91:e6:b0:dc:d8:a8:ba:f2:09:a8:01:c1:d4:b1:b4:
cf:0a:73:a5:ee:9a:85:40:96:03:35:52:1f:44:99:b1:ce:61:
f3:83:b9:aa:9e:cf:22:b4:9e:42:65:5f:57:d7:7b:f5:51:e9:
52:85:4b:60:e8:fd:83:69:28:a6:dd:7d:81:61:2e:ed:d5:a1:
61:73:a8:75:83:68:b4:2c:17:2b:3f:a1:3d:a4:12:19:f8:82:
b1:5b:5f:26:c9:1d:90:25:b2:2e:9b:90:dc:e2:a8:54:00:70:
0a:04:6c:59:e0:3c:49:70:09:82:37:75:22:cb:58:42:ea:6a:
6a:b5:6c:e4:5d:4f:f3:06:8f:f5:02:35:a4:48:2a:5e:98:bd:
5b:9f:07:83:d5:83:4b:29:b2:38:3a:f8:70:30:d0:90:22:d6:
fa:0e:45:47:15:1d:fe:18:3e:7f:dc:88:a1:64:70:97:fe:85:
81:97:08:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org