Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/1AdnsQspp2HaeFAkUmfzz8WcDkY.roa
File: 1AdnsQspp2HaeFAkUmfzz8WcDkY.roa (raw, json)
Hash identifier: KTXXxfj0/txHMlV6hLMRCP9+qI9dP+a2eoCZsuOwkr8=
Subject key identifier: D4:07:67:B1:0B:29:A7:61:DA:78:50:24:52:67:F3:CF:C5:9C:0E:46
Certificate issuer: /CN=715b885c3b302fd50e6c22647a33dc47727fea95
Certificate serial: 09AD6C76
Authority key identifier: 71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/1AdnsQspp2HaeFAkUmfzz8WcDkY.roa
Signing time: Sat 01 Jan 2022 11:00:44 +0000
ROA not before: Sat 01 Jan 2022 11:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198605
IP address blocks: 5.62.30.0/24 maxlen: 24
5.62.25.0/24 maxlen: 24
5.62.36.0/23 maxlen: 23
5.62.32.0/24 maxlen: 24
5.62.38.0/24 maxlen: 24
5.62.44.0/23 maxlen: 23
5.62.42.0/23 maxlen: 23
5.62.40.0/23 maxlen: 23
5.62.38.0/23 maxlen: 24
5.62.50.0/24 maxlen: 24
5.62.47.0/24 maxlen: 24
5.62.48.0/23 maxlen: 23
5.62.46.0/23 maxlen: 23
5.62.46.0/24 maxlen: 24
5.62.58.0/23 maxlen: 23
5.62.57.0/24 maxlen: 24
5.62.56.0/23 maxlen: 23
5.62.56.0/24 maxlen: 24
5.62.55.0/24 maxlen: 24
5.62.54.0/24 maxlen: 24
5.62.53.0/24 maxlen: 24
5.62.52.0/24 maxlen: 24
5.62.62.0/23 maxlen: 23
5.62.60.0/23 maxlen: 23
5.62.17.0/24 maxlen: 24
5.62.16.0/24 maxlen: 24
5.62.20.0/24 maxlen: 24
5.62.18.0/24 maxlen: 24
5.62.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162360438 (0x9ad6c76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715b885c3b302fd50e6c22647a33dc47727fea95
Validity
Not Before: Jan 1 11:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d40767b10b29a761da7850245267f3cfc59c0e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:32:f9:b8:16:54:a5:e9:58:1f:e2:c5:06:
d7:b1:f7:5b:86:49:5a:9e:09:73:6b:66:8d:84:0f:
a2:87:59:9c:eb:d1:d4:44:b1:5f:f9:12:7f:b2:80:
e0:4a:0d:c0:9c:3c:7b:fe:19:c0:b6:f8:70:05:30:
3e:34:dd:4e:44:30:98:73:68:0a:43:2d:2c:be:fd:
d3:bd:12:98:38:02:5c:93:bb:1f:4c:26:26:07:68:
42:3c:de:cd:97:d4:b7:33:73:7f:73:a0:24:19:e3:
b2:03:13:5f:c1:2f:88:c8:1b:d8:21:1e:38:c0:84:
9e:62:47:1b:12:bb:6e:ad:fd:5c:84:73:94:d9:e7:
cd:e8:d9:c1:f5:72:37:ad:67:03:d0:b7:28:c9:9b:
3b:23:eb:c8:0b:94:96:ed:bc:87:0b:eb:b8:1c:4d:
89:fc:85:09:37:5e:22:88:8f:57:42:6c:06:f0:51:
b9:c8:4f:0a:8c:31:10:67:95:43:d7:ae:2f:9a:bd:
4a:ac:ec:39:00:68:31:88:27:f8:5f:af:da:6d:7b:
bc:55:fc:c6:2c:9f:da:82:5c:57:e1:bf:ed:54:2e:
55:f1:74:4e:aa:14:ba:19:6d:a9:2e:30:61:07:4c:
89:58:87:89:b5:01:c5:08:82:fa:ba:56:39:ff:87:
a6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:07:67:B1:0B:29:A7:61:DA:78:50:24:52:67:F3:CF:C5:9C:0E:46
X509v3 Authority Key Identifier:
keyid:71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/1AdnsQspp2HaeFAkUmfzz8WcDkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/cVuIXDswL9UObCJkejPcR3J_6pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.16.0-5.62.18.255
5.62.20.0/24
5.62.24.0/23
5.62.30.0/24
5.62.32.0/24
5.62.36.0-5.62.50.255
5.62.52.0-5.62.63.255
Signature Algorithm: sha256WithRSAEncryption
67:ef:78:fc:76:d0:80:35:fc:8f:14:81:cb:c3:36:3b:9c:31:
0d:89:ea:21:2d:ac:24:6c:0a:13:a3:43:bb:52:47:c2:a3:17:
1c:f9:f1:31:a0:e3:09:6e:68:73:55:11:b7:74:b0:3d:99:0d:
cf:fa:b4:78:36:00:7e:69:18:76:75:32:de:5c:2f:ee:62:ef:
ed:9c:7f:84:cd:83:64:f8:8d:0f:e1:47:4a:01:bb:f0:c8:43:
d9:56:04:fe:7b:9f:34:43:dd:9d:2a:0d:1a:d1:97:f3:af:b7:
78:62:1f:c1:05:77:7d:aa:3c:92:67:07:11:98:ee:de:4b:21:
09:1b:00:08:5e:c8:80:a0:e5:7c:62:8e:f4:df:0f:93:27:d3:
dd:b5:45:d8:6a:52:d5:05:d0:93:15:94:d9:83:37:3e:15:54:
70:66:b1:52:61:f2:50:82:5c:ec:70:6d:9e:87:7a:26:c1:aa:
9a:c5:59:d2:a7:62:c8:93:44:7d:1f:d6:9c:46:30:fe:71:46:
96:91:6c:b2:48:eb:15:58:42:5d:2a:bc:9b:a8:22:7b:e0:98:
e1:ef:8c:18:47:9a:6d:be:96:8f:4d:7c:5e:39:61:b0:cf:35:
19:b3:70:68:26:56:f1:fa:7b:4d:96:c7:ca:18:30:b7:cf:c2:
fa:fb:ed:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:49 2023 by rpki-client on console-fra.rpki-client.org