Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/XIU6IqjeaT50qFl3gfDL-iDAHV8.roa
File: XIU6IqjeaT50qFl3gfDL-iDAHV8.roa (raw, json)
Hash identifier: 0YUJe4FfSGECBYqbZg3I9JOUMpEeGX1skEbjuiFIk40=
Subject key identifier: 5C:85:3A:22:A8:DE:69:3E:74:A8:59:77:81:F0:CB:FA:20:C0:1D:5F
Certificate issuer: /CN=d0438c15bc192368b10720a66a79410ae787724b
Certificate serial: 018326EB71951618CC11708543AC8FADCC3E
Authority key identifier: D0:43:8C:15:BC:19:23:68:B1:07:20:A6:6A:79:41:0A:E7:87:72:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EOMFbwZI2ixByCmanlBCueHcks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/XIU6IqjeaT50qFl3gfDL-iDAHV8.roa
Signing time: Sat 10 Sep 2022 10:21:47 +0000
ROA not before: Sat 10 Sep 2022 10:21:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 62.68.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:eb:71:95:16:18:cc:11:70:85:43:ac:8f:ad:cc:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0438c15bc192368b10720a66a79410ae787724b
Validity
Not Before: Sep 10 10:21:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c853a22a8de693e74a8597781f0cbfa20c01d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ca:87:97:5d:e5:ad:f3:5e:7d:54:09:1e:e2:
cb:24:af:01:0a:bc:d8:8a:10:38:8b:0b:9f:b5:4c:
91:8c:ba:64:d8:e6:c3:8a:d1:a9:ee:58:55:9f:1e:
63:b9:57:54:38:f4:1a:63:0f:c2:18:b0:b8:bd:f2:
29:6a:94:a3:e5:7b:c5:b8:6b:38:16:9b:a4:1c:5b:
84:36:b6:07:7d:26:24:ed:54:40:94:c4:9b:9f:1f:
95:a4:cf:53:6a:de:a9:d5:d6:d5:aa:97:a1:ee:31:
3d:c1:10:5b:9c:88:c4:1c:3f:ff:4c:a4:8e:90:bb:
2c:26:8d:3d:45:14:7e:eb:ab:2e:e0:bb:c1:a5:88:
72:a3:92:93:19:db:4b:67:a9:fc:1e:9d:34:1c:da:
9f:71:bc:ef:e2:54:c9:19:cc:02:a5:ff:4d:df:4c:
a9:04:98:38:85:ab:02:5f:95:72:a4:8c:60:79:05:
8d:72:f6:9d:f3:7e:76:bc:35:fd:45:7f:bb:bf:01:
f1:17:1c:dc:8f:12:cc:bb:bf:ef:17:01:8c:48:b8:
45:1f:82:a6:e8:bb:04:52:70:c5:3f:75:0b:54:1c:
41:5b:c5:de:23:1d:97:25:4a:fa:02:af:7c:66:1c:
87:13:1f:92:32:9d:9f:04:22:a2:c6:15:d6:5a:46:
f8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:85:3A:22:A8:DE:69:3E:74:A8:59:77:81:F0:CB:FA:20:C0:1D:5F
X509v3 Authority Key Identifier:
keyid:D0:43:8C:15:BC:19:23:68:B1:07:20:A6:6A:79:41:0A:E7:87:72:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EOMFbwZI2ixByCmanlBCueHcks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/XIU6IqjeaT50qFl3gfDL-iDAHV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/0EOMFbwZI2ixByCmanlBCueHcks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.72.0/24
Signature Algorithm: sha256WithRSAEncryption
50:45:32:55:37:73:ab:f1:cb:32:bd:21:ac:8e:7e:41:13:e1:
9c:9c:5a:55:f4:69:95:2b:5d:6b:77:cd:bd:4f:70:6e:b2:fb:
73:21:c8:b3:74:62:60:6b:10:fb:93:85:28:c2:b2:29:d2:db:
d0:0e:72:07:8f:60:c9:73:51:01:49:9e:e1:3a:ce:0d:ad:6a:
db:56:c7:f7:f3:95:47:65:eb:e9:43:bb:ae:e5:96:d4:29:74:
6a:e4:18:af:b9:fd:84:f7:95:39:b3:a4:b2:90:57:65:bc:db:
d3:da:d0:26:77:b5:cb:ee:10:02:fb:e0:4e:90:44:41:68:34:
fb:a1:28:87:d4:8f:e9:f4:b6:05:42:4c:f0:f9:90:d8:d3:0b:
49:d3:a3:b7:df:66:34:97:e9:ae:e9:60:ac:6b:a7:ee:80:58:
28:56:47:d0:19:d3:d9:83:17:cb:eb:cc:cf:a8:ac:2f:28:29:
c8:89:19:fc:3b:52:a2:9a:f3:70:4b:6a:7c:37:c5:ee:dd:61:
50:72:8d:4e:19:0c:0a:51:96:b0:fa:16:a4:17:f9:59:4e:54:
b7:18:d0:8e:1c:89:cc:b5:2e:98:ff:6b:d8:c8:ba:40:2b:f8:
76:d4:7e:99:a8:48:bf:ed:01:1a:13:8e:e6:b4:6a:6f:ff:e0:
13:b5:49:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:25 2024 by rpki-client on console-fra.rpki-client.org