Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/_Z2_PfPV0jftXctlzpzARfmlo-o.roa
File: _Z2_PfPV0jftXctlzpzARfmlo-o.roa (raw, json)
Hash identifier: oN0C1fQ+J/BEgh5yKBOre05EdRhCFTGz26mmq29AKBc=
Subject key identifier: FD:9D:BF:3D:F3:D5:D2:37:ED:5D:CB:65:CE:9C:C0:45:F9:A5:A3:EA
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 0153F9
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/_Z2_PfPV0jftXctlzpzARfmlo-o.roa
Signing time: Thu 27 Jan 2022 07:52:46 +0000
ROA not before: Thu 27 Jan 2022 07:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87033 (0x153f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: Jan 27 07:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd9dbf3df3d5d237ed5dcb65ce9cc045f9a5a3ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:82:27:8d:e3:01:cc:fe:cb:e4:b7:56:ea:d7:
ae:fc:d7:8d:b1:cd:48:84:8a:8d:a7:d2:96:ee:9d:
75:6a:ea:9f:9d:6b:85:46:9c:41:f2:92:91:3d:a2:
b0:c0:1e:0e:ba:1a:54:fb:1b:b0:b3:d4:1d:f9:b6:
1b:d4:04:dd:b0:ba:a3:b4:5c:25:9a:2c:b0:3e:bd:
c7:d7:32:ff:bd:94:6e:07:e0:2f:59:46:eb:8a:4c:
d0:ae:cd:eb:6d:8c:51:f4:78:a8:04:c0:3e:c4:c7:
68:58:91:f8:e9:71:6a:99:0c:da:04:37:e0:96:ef:
b6:79:83:40:cb:6d:5b:12:fc:8b:48:90:b8:88:35:
22:f2:ff:db:f6:85:92:23:3c:be:24:67:2f:20:b7:
1d:53:90:a2:87:ef:92:59:7a:68:4a:55:50:44:22:
bc:f2:a5:ce:1b:fd:f6:96:ae:e1:f7:93:14:89:ba:
c0:b4:32:57:9e:74:a2:e2:eb:50:e5:72:58:e1:b6:
73:b1:b0:49:e4:30:2d:b9:03:77:11:9f:28:c5:f0:
33:68:9d:a8:6f:6b:24:f6:0a:74:78:27:40:98:a4:
4f:8d:d5:86:75:87:d5:57:11:7a:8a:31:d2:f2:f0:
a3:a8:dc:47:86:c2:31:a5:01:39:4a:9b:5a:bd:40:
74:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:9D:BF:3D:F3:D5:D2:37:ED:5D:CB:65:CE:9C:C0:45:F9:A5:A3:EA
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/_Z2_PfPV0jftXctlzpzARfmlo-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
72:92:13:02:c8:3e:6c:89:bb:d3:4b:cb:38:6e:51:09:77:46:
e0:b9:d3:91:8a:c4:47:15:7b:e4:9c:a7:08:c4:37:f7:3a:19:
77:d6:4e:4d:f3:80:1b:41:e3:a9:c7:08:5e:ab:01:4e:1a:f7:
91:10:bd:70:cb:6b:ea:9a:c6:46:af:c3:94:44:20:1d:9f:a4:
64:d6:3e:d9:09:ba:cd:35:04:3a:da:4b:0d:3c:21:b3:8d:af:
13:03:3c:e5:14:c9:19:a4:d3:ef:16:63:ff:34:ec:be:7f:d5:
b9:72:ac:c4:fe:59:0b:fb:f7:bf:22:fc:6c:f0:df:da:4f:ff:
f4:bd:32:2b:65:57:96:cd:37:e8:7f:a6:f9:3d:53:a2:51:d2:
24:5f:a8:26:44:56:89:cb:6b:b4:61:9d:96:53:c1:cc:b3:8e:
a0:c5:fa:00:74:d8:a6:97:72:c7:c8:89:a2:79:bd:dc:dd:48:
12:93:1d:19:cf:7c:5e:33:3a:19:15:ef:16:aa:9c:af:d5:ca:
e2:31:a5:47:fe:3a:d0:01:db:af:ea:5c:62:ef:b9:e0:60:70:
56:74:78:ce:e5:77:c7:50:e8:cb:5a:8b:c8:69:8d:75:57:5a:
34:b2:25:1a:93:55:b3:20:67:e6:12:49:4b:67:77:0f:40:75:
59:4d:a7:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:35 2024 by rpki-client on console-fra.rpki-client.org