Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-QVfENNuXqYzJatNQAv8DSUguTs.roa
File: 1-QVfENNuXqYzJatNQAv8DSUguTs.roa (raw, json)
Hash identifier: GIrRyA9uE1LqZlsawjvhIsmsLmzsXaUaPaPtcFsDvGs=
Subject key identifier: F9:05:5F:10:D3:6E:5E:A6:33:25:AB:4D:40:0B:FC:0D:25:20:B9:3B
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 18151890
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-QVfENNuXqYzJatNQAv8DSUguTs.roa
Signing time: Sat 01 Jan 2022 04:00:43 +0000
ROA not before: Sat 01 Jan 2022 04:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210229
IP address blocks: 62.73.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404035728 (0x18151890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9055f10d36e5ea63325ab4d400bfc0d2520b93b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bf:f6:dc:9f:55:f4:40:69:18:e6:3b:b5:5e:
aa:00:df:da:d4:74:bf:e4:72:23:1c:db:91:c0:29:
8e:a9:ff:b2:e5:4e:05:ed:c3:61:a8:ec:e3:96:fb:
98:c6:ce:1d:fe:ab:ba:90:7b:63:e0:be:4a:de:68:
3e:1b:fd:87:a1:a5:6f:fe:20:56:7a:12:70:3b:8b:
d5:73:59:c5:3e:8d:49:f9:04:d2:fd:0c:ca:56:90:
ac:25:72:8d:56:38:ff:c3:4c:b9:5d:5c:d5:9d:ce:
bd:08:3e:37:a6:bf:7b:04:c8:16:0b:b6:a9:2f:6a:
80:94:a9:64:44:e3:a5:e9:83:5e:ce:cd:75:0c:53:
23:5c:75:7a:1a:93:b1:7c:ea:29:69:e1:9f:7d:9c:
9f:23:aa:e8:11:6d:ad:07:e2:5e:f9:3c:74:6a:96:
1f:aa:2e:bf:07:e0:ea:66:ef:58:80:36:0e:46:f8:
fb:64:b4:12:36:9d:da:9b:f0:83:00:5b:a2:22:52:
a1:47:bc:15:6c:3b:eb:d3:27:46:80:8b:68:cc:ad:
80:c8:2d:64:cd:2a:c2:7c:3a:d0:80:bb:19:24:9e:
8d:f2:d7:90:4a:93:29:f4:26:2b:9c:33:6b:f1:ec:
0f:7d:9a:38:43:f9:29:eb:fc:dd:de:db:28:a3:8c:
d8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:05:5F:10:D3:6E:5E:A6:33:25:AB:4D:40:0B:FC:0D:25:20:B9:3B
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-QVfENNuXqYzJatNQAv8DSUguTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.119.0/24
Signature Algorithm: sha256WithRSAEncryption
55:82:1e:bd:5d:13:fa:c2:66:6b:90:85:7f:07:0e:af:77:dd:
16:02:33:1f:04:15:17:dc:bc:b5:67:88:0f:57:68:51:ec:1a:
5d:42:e3:63:84:3f:a9:ae:d7:24:c7:c1:6f:23:8b:a6:41:8a:
c3:5a:df:e9:f9:86:c1:94:a7:83:f6:e9:2d:76:c7:87:2f:a6:
b0:34:9d:3d:59:c2:53:8c:d7:4d:0c:a5:d9:70:01:2e:16:5a:
99:34:07:d5:ac:d2:e6:11:d3:4c:84:7a:71:90:f4:5e:96:78:
cb:16:ae:44:80:79:5f:0b:88:11:f0:4a:1a:f4:1e:ef:6a:af:
41:c8:c9:06:36:97:42:19:a5:7f:9d:99:d8:95:5a:d4:5f:6b:
de:ec:bc:3a:87:ac:09:3b:67:25:31:6a:8f:63:1b:c5:da:a3:
a8:29:87:20:fb:77:3c:bc:f4:29:b7:f3:fc:11:d4:e9:51:15:
e3:fe:06:e1:86:a8:b3:3f:96:12:3f:a9:a2:86:91:ff:0a:17:
85:4a:86:b5:77:23:f3:9e:e9:aa:71:4b:b4:3b:dc:88:db:ed:
97:51:34:24:3d:47:ba:46:43:16:36:54:85:f6:1b:7e:ba:cf:
15:ac:be:3e:05:22:df:dc:82:5a:d6:55:a9:b9:d1:b7:be:ff:
30:ea:24:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org