Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/P19mWyF6NwVWLJDa99hJevCV6OE.roa
File: P19mWyF6NwVWLJDa99hJevCV6OE.roa (raw, json)
Hash identifier: FMJgruA62vesUsW8sWuj4/Ke1RgdjSNHL5ycu+7TVZc=
Subject key identifier: 3F:5F:66:5B:21:7A:37:05:56:2C:90:DA:F7:D8:49:7A:F0:95:E8:E1
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 15620DF6
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/P19mWyF6NwVWLJDa99hJevCV6OE.roa
Signing time: Sat 01 Jan 2022 08:04:51 +0000
ROA not before: Sat 01 Jan 2022 08:04:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54103
IP address blocks: 62.100.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358747638 (0x15620df6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 08:04:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f5f665b217a3705562c90daf7d8497af095e8e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:42:8b:14:28:a9:66:53:47:77:a2:d2:92:7a:
a1:81:39:29:1f:27:f6:36:a5:99:b7:5f:b5:7d:b9:
8f:ff:44:a4:07:55:7b:b2:a9:19:ec:3b:eb:e0:ad:
7a:5f:f9:70:79:ba:f8:2d:dd:c1:c2:08:65:e9:b7:
6a:06:87:3c:bb:d4:08:0c:c8:bb:6d:6b:5d:71:b0:
00:c1:d5:1d:cf:b3:dc:a5:2f:cc:2d:31:f3:90:85:
3e:64:42:e2:a8:47:1c:f4:53:98:8e:8a:2c:04:e2:
0a:b3:c1:44:80:95:ce:9d:48:13:29:21:57:ef:9d:
be:83:53:5d:f7:1c:a5:50:e6:7b:56:9a:34:5f:d0:
5f:98:ad:e0:e3:d0:76:27:80:5b:b0:ba:3d:01:e8:
97:94:37:45:b4:3d:be:7d:3b:a4:12:32:59:2b:73:
91:b8:99:d2:b5:11:c2:f4:2c:6a:99:c6:b2:0d:5f:
9e:12:6d:3d:99:ca:58:56:ab:02:4b:ad:36:5c:13:
a1:69:b4:1b:12:1c:75:c5:ef:14:fc:60:19:6b:76:
17:2f:4a:15:17:6b:f3:8e:7c:d0:f0:f8:4d:f3:18:
0d:ef:f0:bc:fb:03:1e:61:f2:7f:ae:30:77:43:11:
e3:7c:b3:e5:8a:de:a6:ad:bf:7a:07:a5:78:65:f4:
3a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:5F:66:5B:21:7A:37:05:56:2C:90:DA:F7:D8:49:7A:F0:95:E8:E1
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/P19mWyF6NwVWLJDa99hJevCV6OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.216.0/22
Signature Algorithm: sha256WithRSAEncryption
61:b8:79:5b:5b:f2:f9:7b:d9:5b:87:ba:ba:19:80:07:26:2e:
a4:fc:4a:e0:ea:a3:40:7c:e9:b7:4f:e9:e6:d4:54:89:d7:06:
b8:d8:fd:03:95:db:52:0e:6b:be:29:04:78:15:1b:b8:7a:5e:
71:a7:8e:ea:d7:d7:0f:2b:ea:26:c1:e3:d0:36:9a:5c:ac:54:
bb:db:45:d7:42:bf:b5:06:28:ff:0a:8d:f3:97:c1:a3:ec:a7:
e8:b1:b6:00:7c:92:6c:50:f6:5e:7c:4b:a8:1a:29:73:a0:69:
73:01:a2:0f:98:78:b2:f2:0e:0d:84:f8:98:cb:79:65:a4:53:
1f:91:32:66:a2:1f:b3:df:56:d4:b8:9c:b7:19:59:03:19:d1:
28:42:3e:9e:0b:78:2d:30:79:93:76:b7:24:e9:87:ae:b8:a2:
a0:b2:76:c4:ea:e8:e7:32:4b:df:e1:c3:f1:36:78:51:ed:82:
da:4b:c0:a7:b9:85:3c:ce:28:4a:96:36:1d:8b:3f:e2:76:22:
86:f2:4b:46:87:47:ac:d9:5c:62:c0:ff:9d:79:33:fa:fb:1b:
1d:c4:30:be:ec:ed:5f:f7:fa:23:1b:48:5d:a4:5f:46:26:2c:
16:83:61:43:91:45:41:e9:a2:6a:81:f9:dd:92:8b:20:4e:f5:
1b:e5:73:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:26 2023 by rpki-client on console-fra.rpki-client.org