Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/d67bPTT-9380UchF3YDoVvXBx8g.roa
File: d67bPTT-9380UchF3YDoVvXBx8g.roa (raw, json)
Hash identifier: cbVo/ralmJQ6ZI60b285Pk8SRUeUj1riRkVSgz+74c8=
Subject key identifier: 77:AE:DB:3D:34:FE:F7:7F:34:51:C8:45:DD:80:E8:56:F5:C1:C7:C8
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 011E1637
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/d67bPTT-9380UchF3YDoVvXBx8g.roa
Signing time: Mon 30 May 2022 09:33:14 +0000
ROA not before: Mon 30 May 2022 09:33:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18748983 (0x11e1637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: May 30 09:33:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77aedb3d34fef77f3451c845dd80e856f5c1c7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:46:ae:d1:4c:fd:58:d8:47:c2:9e:ec:93:07:
55:ce:b5:09:b7:0c:84:66:7f:98:f4:85:a5:6a:cc:
19:83:a5:2e:12:4c:b4:44:62:55:0f:ac:53:cd:8c:
61:b4:d4:1c:34:96:73:c0:da:ff:53:3d:a6:0b:ac:
87:38:fb:72:20:f7:23:e6:c7:8f:77:23:31:bd:d3:
86:cf:c0:29:ef:8b:53:98:a7:9a:4b:a2:89:55:46:
6d:b8:ba:36:fd:13:37:ea:34:29:64:e8:05:81:93:
75:24:dd:ee:22:b4:42:ff:12:37:95:b9:c5:e0:91:
11:c0:5d:db:f6:b5:7e:f1:76:52:44:8d:5a:98:2e:
46:e7:41:3d:db:e7:70:b0:3b:ab:aa:d5:ba:97:55:
18:b7:7f:4e:e5:3c:d5:e4:2a:e5:7b:bb:84:d0:78:
49:fe:3b:11:6a:08:69:23:8c:bd:4b:8f:93:9b:fa:
43:3e:59:bd:45:29:9d:47:64:11:b6:7f:78:a7:35:
bd:64:4a:51:2a:77:7d:87:3a:bb:10:23:de:a0:36:
09:cb:d0:1c:c1:c4:dc:be:1d:e7:46:6b:57:68:d8:
11:7e:cd:3d:de:b6:da:1b:59:3f:cc:a3:ac:94:d2:
df:0f:18:5d:68:66:37:3d:0a:37:57:bb:37:75:aa:
78:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AE:DB:3D:34:FE:F7:7F:34:51:C8:45:DD:80:E8:56:F5:C1:C7:C8
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/d67bPTT-9380UchF3YDoVvXBx8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
48:66:22:c0:10:53:e7:44:1d:dc:30:74:00:cf:d1:df:72:8e:
a4:97:7c:14:63:33:87:bf:3e:8b:c8:69:dc:26:a2:79:b3:8f:
a5:f2:cb:a6:ca:bd:d1:88:f2:46:89:22:09:7b:8a:86:03:e8:
07:b8:5a:c1:07:b6:fd:ce:55:02:83:10:69:69:e3:b9:d6:35:
b0:2c:f5:83:4a:47:76:57:41:c8:c2:01:20:21:9a:7a:00:f7:
e3:9f:63:ba:29:68:7b:54:a5:76:28:8f:8b:0a:dc:7c:f5:3b:
99:c4:5b:87:51:b9:88:97:14:3f:50:43:d2:3d:76:9e:e6:e4:
6e:a9:5b:ce:41:aa:85:ed:14:d0:b1:af:be:ef:f3:3a:0f:f6:
6a:95:9f:41:c2:66:8a:43:1a:cd:6f:b6:b9:33:08:94:f7:41:
0a:4c:15:21:6e:9b:8c:38:a7:5c:bc:95:31:71:ed:19:d0:aa:
f8:a2:63:53:ea:e4:1b:c4:36:bb:f0:5d:c2:59:20:f1:7b:ec:
ad:7e:3c:7d:02:b3:fe:b6:dd:90:52:f7:39:d6:ed:1f:4d:d7:
13:36:c4:8f:f2:8a:67:e3:16:e5:e7:10:08:32:f3:85:86:c2:
ec:a8:9a:88:53:d8:61:bc:e2:2e:5a:7b:8a:86:d1:14:09:b2:
a7:0a:6f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:35 2024 by rpki-client on console-fra.rpki-client.org