Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mQZbkjlth1uoDI3n3LXm8ofLeok.roa
File: mQZbkjlth1uoDI3n3LXm8ofLeok.roa (raw, json)
Hash identifier: JZ4e6ivP55FaFSIql6NCFL8UDMnqqN1xgBkfUFJPQKQ=
Subject key identifier: 99:06:5B:92:39:6D:87:5B:A8:0C:8D:E7:DC:B5:E6:F2:87:CB:7A:89
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F772A3E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mQZbkjlth1uoDI3n3LXm8ofLeok.roa
Signing time: Sat 01 Jan 2022 08:04:57 +0000
ROA not before: Sat 01 Jan 2022 08:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3315
IP address blocks: 62.76.74.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259467838 (0xf772a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99065b92396d875ba80c8de7dcb5e6f287cb7a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:35:96:9e:31:c7:7e:3b:06:a4:ef:a2:f6:2a:
a1:71:41:a3:d8:4f:68:ab:85:de:07:ea:b3:d7:09:
23:1f:9e:3d:8c:b4:4f:02:d1:5a:71:6a:b3:6a:a5:
c1:f7:41:a6:1e:e8:5d:ba:2c:77:28:33:70:ee:8d:
1a:98:87:59:f0:66:72:46:54:fd:a9:fd:2a:4f:b5:
ff:5a:18:f2:8d:7e:17:33:c9:fc:b8:21:95:46:45:
e6:21:b0:be:97:d6:2b:51:69:6f:69:47:4f:d1:e9:
16:2b:6b:34:58:9c:d1:fe:eb:6f:30:36:5a:94:b3:
3e:29:b9:39:ae:26:22:e4:e5:6a:4d:ef:ab:eb:9f:
5e:1d:3d:65:cd:a9:6d:8c:22:76:7b:f3:28:3f:16:
26:80:9d:f2:d8:dc:49:41:15:04:eb:33:82:17:fd:
db:96:aa:59:91:8f:43:59:9e:a9:5a:82:23:6e:0c:
ee:0d:90:8c:5e:c9:0d:7a:85:ea:9e:58:8e:c3:dd:
fa:dd:fc:ea:d2:a5:93:fc:6b:c7:12:16:16:d1:2f:
bd:f4:43:8d:8b:9f:d3:ed:e7:f2:41:2f:4f:a6:2d:
5d:8c:98:7c:c5:d0:1d:32:51:64:7c:a3:44:39:52:
90:4e:25:bf:71:56:b5:84:ad:61:54:ea:a3:4d:b9:
71:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:06:5B:92:39:6D:87:5B:A8:0C:8D:E7:DC:B5:E6:F2:87:CB:7A:89
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mQZbkjlth1uoDI3n3LXm8ofLeok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.74.0/23
Signature Algorithm: sha256WithRSAEncryption
40:2a:97:d7:d4:3d:00:49:95:b6:a8:de:f2:2a:45:69:3d:d0:
c8:9a:69:4f:34:bb:92:6b:06:1f:62:6e:9d:34:26:f2:b9:06:
87:1b:98:8a:2e:08:23:41:e2:bf:44:83:d8:24:9e:d6:7c:77:
93:3e:6e:73:90:0a:a6:4b:2a:a8:37:02:28:c5:87:a1:08:1c:
41:ac:7e:6e:bb:9b:4d:db:da:80:d2:2d:34:e2:30:d2:30:6c:
ec:19:96:af:93:51:ad:8d:ac:e2:4e:8e:a7:6f:d6:c6:3b:f3:
56:0a:d6:8a:f9:c3:1a:4f:a9:c9:bd:f7:b5:29:d8:29:16:76:
ff:08:3f:fa:69:2b:01:13:a4:28:20:79:52:dc:b1:bb:60:23:
44:6a:57:7a:c0:2c:c8:90:c3:ed:48:ba:33:b6:d1:4a:ad:7c:
5c:8b:a7:8f:c2:2a:92:40:c0:8b:e5:65:36:ca:ad:51:0c:c5:
1b:cf:4d:f0:44:b1:72:fc:89:54:50:56:e8:6b:49:fe:83:a4:
4c:b4:be:33:c3:f9:e3:ab:b5:19:ed:80:3a:10:a7:cc:76:2c:
ba:5c:80:73:09:e6:ff:de:bd:1f:7a:cc:eb:ff:a6:f1:30:6b:
ab:d5:45:7e:54:5a:3c:94:b8:1e:5b:aa:93:59:25:d6:07:69:
6c:87:71:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org