Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/yWjLIBcCl5C6nbAewmoFNL7eGrY.roa
File: yWjLIBcCl5C6nbAewmoFNL7eGrY.roa (raw, json)
Hash identifier: 6Dh6DSXLH26M/rJM7YKP1mdQ8mGVMmHTcASC1/ffnMM=
Subject key identifier: C9:68:CB:20:17:02:97:90:BA:9D:B0:1E:C2:6A:05:34:BE:DE:1A:B6
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 181691D1
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/yWjLIBcCl5C6nbAewmoFNL7eGrY.roa
Signing time: Sat 01 Jan 2022 04:00:44 +0000
ROA not before: Sat 01 Jan 2022 04:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210754
IP address blocks: 62.176.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404132305 (0x181691d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c968cb2017029790ba9db01ec26a0534bede1ab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:75:ab:5a:0c:c2:cc:b9:40:57:ee:01:75:9d:
7d:ad:8b:19:42:12:97:e2:64:21:c5:79:57:6c:01:
65:88:1e:26:f8:46:aa:c9:b4:f7:76:1d:ed:73:a8:
3c:1f:8d:89:40:21:d6:c9:76:fc:92:de:84:5d:14:
87:6e:c7:ce:81:af:ca:bb:6f:4e:37:fe:44:b7:30:
cb:bd:b0:4d:6a:5c:8d:7d:14:ef:e3:6e:db:69:78:
cf:ee:af:5a:8c:3a:ed:22:0a:20:02:12:ab:b8:dd:
7c:97:5d:df:b0:59:be:19:3b:d9:8f:9f:7a:2a:73:
61:3e:c4:a8:c5:2b:fc:46:85:81:93:f5:70:1c:f8:
32:5a:3b:96:18:7c:0e:b6:e5:6a:a1:1c:36:ed:91:
5e:04:57:8b:64:0a:bc:eb:0a:09:39:fc:21:a5:ae:
50:23:7e:19:73:46:f9:fb:bd:03:59:4e:95:e2:9a:
97:13:8b:67:b8:02:cc:38:07:54:ec:c7:cd:4b:95:
c3:61:20:5a:37:1a:51:cf:b0:83:db:e8:c7:78:f1:
ee:bc:ff:95:13:f7:70:f5:0b:af:4a:99:9c:22:82:
b2:92:00:85:92:9b:31:1a:8d:72:a8:79:19:5f:67:
2b:69:a7:19:9f:5f:1c:4f:ca:11:fb:fd:4f:ad:c5:
09:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:68:CB:20:17:02:97:90:BA:9D:B0:1E:C2:6A:05:34:BE:DE:1A:B6
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/yWjLIBcCl5C6nbAewmoFNL7eGrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.98.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:1a:57:4b:f5:58:96:48:23:4c:6e:ed:b4:0c:09:ec:22:76:
19:57:6a:c2:0c:37:4f:e8:40:57:c9:c0:1f:d5:8f:6e:76:f1:
d4:c2:f3:20:67:2b:1a:74:37:5b:61:f9:45:b8:ce:15:87:85:
81:93:b2:8d:76:81:11:73:b9:8b:77:76:38:4e:80:9b:7a:84:
4f:34:85:be:27:80:62:b9:19:ee:af:13:71:f0:2e:4e:b0:0a:
ed:9d:f6:a4:24:cc:00:77:9f:15:45:48:85:d7:b3:f6:85:a7:
94:31:28:23:62:a8:21:b6:86:8b:f7:bd:c9:96:5a:0e:74:95:
cf:c9:5b:5a:51:8b:06:01:3d:6a:c4:1d:9a:7a:6a:3d:b0:26:
25:df:23:d1:24:0c:11:36:e1:ee:e2:18:0b:aa:3b:d1:10:59:
90:23:7c:78:76:2d:ba:ef:51:58:2b:f1:30:30:8a:c0:8c:16:
61:bf:6a:53:55:f3:7b:3d:a8:72:1b:37:4c:25:4a:93:ab:e5:
f5:7d:0c:88:ce:05:2a:64:89:15:25:59:59:8d:cc:47:ef:77:
c0:50:6a:af:34:f3:9b:62:7e:47:70:41:1f:2f:a2:df:27:27:
6c:82:7d:75:ba:42:5f:b5:a0:7f:fe:c1:54:26:aa:f8:a4:e6:
65:c6:61:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org