Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/5rD5ycXXpPtwplmYAoAjl4SulI4.roa
File: 5rD5ycXXpPtwplmYAoAjl4SulI4.roa (raw, json)
Hash identifier: yCq1gS8m2ZxZRBk+h0nk6ZB8J6X5afKXAqEyGmAn2LI=
Subject key identifier: E6:B0:F9:C9:C5:D7:A4:FB:70:A6:59:98:02:80:23:97:84:AE:94:8E
Certificate issuer: /CN=742b1b5c075c3d3bdfa3525d476b1b2867c2a2ca
Certificate serial: 03C85D52
Authority key identifier: 74:2B:1B:5C:07:5C:3D:3B:DF:A3:52:5D:47:6B:1B:28:67:C2:A2:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/5rD5ycXXpPtwplmYAoAjl4SulI4.roa
Signing time: Sat 01 Jan 2022 06:53:54 +0000
ROA not before: Sat 01 Jan 2022 06:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60558
IP address blocks: 185.62.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63462738 (0x3c85d52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=742b1b5c075c3d3bdfa3525d476b1b2867c2a2ca
Validity
Not Before: Jan 1 06:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6b0f9c9c5d7a4fb70a659980280239784ae948e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d6:aa:5d:d9:01:55:03:91:46:5c:1d:d4:cf:
00:d3:c5:d4:22:e3:2e:3d:c9:b7:5d:d7:28:ee:7e:
3c:36:de:22:a1:2e:31:21:15:dd:e5:96:3d:e6:59:
d4:bf:f6:e4:07:ee:75:41:fd:41:c6:e3:5d:b1:a6:
ed:0f:83:cc:d1:af:c2:98:86:6e:cd:ef:6e:17:38:
8b:43:43:21:64:b2:8f:ee:95:a0:64:50:2d:63:8f:
7e:68:21:5e:e0:8f:71:1e:fb:3a:b6:8b:af:34:d2:
83:52:9b:bf:55:24:f5:56:92:49:00:3e:46:48:b1:
71:aa:7d:c5:39:5b:e5:87:94:d3:20:6a:66:de:88:
ae:60:3a:1f:fd:01:0b:e7:f5:a9:12:01:30:27:88:
3e:0c:d9:24:2a:ab:d5:db:d5:31:2c:76:bf:0d:33:
c8:ec:63:fc:7c:43:e0:cb:0e:3f:a0:d0:78:09:1b:
35:c3:5e:06:06:19:5d:cc:9a:3b:d6:95:6b:b8:7f:
50:b3:4d:9a:98:3c:cc:2c:e8:08:3d:83:78:9a:4e:
2f:43:15:5d:0c:77:23:b9:b8:d2:b6:4d:35:a5:44:
1e:78:75:dc:66:1d:f5:32:cb:24:58:22:7d:24:77:
ea:f6:24:6e:eb:1f:dc:59:31:68:ef:95:ee:c2:41:
5b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B0:F9:C9:C5:D7:A4:FB:70:A6:59:98:02:80:23:97:84:AE:94:8E
X509v3 Authority Key Identifier:
keyid:74:2B:1B:5C:07:5C:3D:3B:DF:A3:52:5D:47:6B:1B:28:67:C2:A2:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCsbXAdcPTvfo1JdR2sbKGfCoso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/5rD5ycXXpPtwplmYAoAjl4SulI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/202a79-5bfe-4a48-a7f9-414196ac646e/1/dCsbXAdcPTvfo1JdR2sbKGfCoso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.36.0/22
Signature Algorithm: sha256WithRSAEncryption
04:ab:74:9a:54:9c:66:1c:c9:be:c2:c2:bc:3a:92:03:fb:36:
7b:ee:a4:cd:fe:84:00:19:fc:72:ee:3f:fc:23:3a:d6:81:1a:
53:cb:9f:f9:5a:c6:62:f4:9c:e0:08:08:fc:5d:85:4e:de:aa:
2a:14:75:26:b8:18:be:cd:3b:46:ee:23:ae:cf:69:4d:ae:7e:
fe:1a:83:94:11:c4:01:f1:61:2c:d7:6b:04:d0:18:a8:5a:91:
cd:b1:13:7e:a9:31:02:da:81:c1:7f:d6:f7:a8:6f:f8:b4:a2:
71:c2:a1:79:15:56:77:61:dd:e8:f1:db:99:2b:57:d6:08:58:
2c:1a:b1:6f:41:15:6b:2a:05:76:7b:c3:23:59:e5:5c:7d:f1:
92:b4:e7:1f:92:77:51:92:1c:b8:ff:ac:a2:78:ba:3f:d7:a6:
15:a4:bd:16:d8:fa:be:2d:86:83:df:6a:9d:19:bc:a5:65:7e:
c0:01:ad:ea:fe:6d:db:79:67:58:33:ec:8a:7e:42:7f:65:af:
08:c8:ee:7b:14:a9:55:e7:fa:10:16:a3:42:5e:51:56:90:f2:
71:f0:cf:56:3e:43:9a:35:8e:f8:80:37:90:3e:81:55:06:bf:
e0:57:8b:1d:61:22:55:e5:20:50:0d:81:75:c2:3e:a1:74:64:
88:44:dc:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:34 2024 by rpki-client on console-ams.rpki-client.org