Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/decaeb-3f95-4f2a-af65-0c020a7e4a44/1/JS2tkuCtwEzVnni46e_IO_BgV0I.roa
File: JS2tkuCtwEzVnni46e_IO_BgV0I.roa (raw, json)
Hash identifier: moYkKfhTf8WkmQLP4aaAT8hLPM/4BW6VuSsJKG7X76s=
Subject key identifier: 25:2D:AD:92:E0:AD:C0:4C:D5:9E:78:B8:E9:EF:C8:3B:F0:60:57:42
Certificate issuer: /CN=52ceee2d6d7a50c92499da1a21f2abb7a2a774c8
Certificate serial: 0184663B3A651731BE7CDB31D276B212FB96
Authority key identifier: 52:CE:EE:2D:6D:7A:50:C9:24:99:DA:1A:21:F2:AB:B7:A2:A7:74:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us7uLW16UMkkmdoaIfKrt6KndMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/decaeb-3f95-4f2a-af65-0c020a7e4a44/1/JS2tkuCtwEzVnni46e_IO_BgV0I.roa
Signing time: Fri 11 Nov 2022 10:27:48 +0000
ROA not before: Fri 11 Nov 2022 10:27:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15506
IP address blocks: 62.169.4.0/22 maxlen: 22
62.169.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:3b:3a:65:17:31:be:7c:db:31:d2:76:b2:12:fb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52ceee2d6d7a50c92499da1a21f2abb7a2a774c8
Validity
Not Before: Nov 11 10:27:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=252dad92e0adc04cd59e78b8e9efc83bf0605742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:3c:9c:80:4a:f2:a6:bc:f3:92:b6:f7:39:
3e:52:40:f3:45:d9:75:dd:7c:2b:52:f4:bb:82:b6:
d6:1c:4c:21:a4:8c:43:a6:e5:82:b1:e1:1d:ec:0b:
b1:d5:d6:22:95:66:b3:1f:ef:72:51:a3:c8:bb:e3:
70:50:bf:34:58:76:a0:31:0b:fe:cf:82:d0:b9:28:
3a:9b:7e:b0:02:42:14:47:b0:d8:42:be:cd:a6:72:
22:20:bc:0e:92:b6:1c:8e:de:ae:7f:aa:03:18:89:
20:9a:b2:ce:bd:25:ec:ad:79:d0:27:68:f0:dc:62:
ed:b9:2b:7b:47:e1:3b:2a:50:f2:69:e0:00:ae:8e:
a8:e9:4f:e2:cb:b0:e1:27:13:2d:1e:8e:89:c7:dd:
4b:8f:c0:ca:b3:d4:61:3e:3e:6c:9b:2d:a1:04:f8:
9b:85:e7:f9:61:21:60:0b:d8:89:2c:46:18:d3:2e:
8b:06:6c:94:42:31:3d:9c:4d:fa:1f:c3:8f:55:31:
16:06:cc:09:17:b4:85:52:9c:c1:9e:6b:46:33:c0:
a7:90:0c:54:1e:6e:83:99:1b:a6:bd:d1:47:4d:0d:
8c:fe:86:60:30:b8:4e:2b:4b:11:3f:d1:1f:f6:9d:
a7:60:fd:fa:ef:95:ba:30:5a:76:e0:24:ca:ca:0b:
f3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2D:AD:92:E0:AD:C0:4C:D5:9E:78:B8:E9:EF:C8:3B:F0:60:57:42
X509v3 Authority Key Identifier:
keyid:52:CE:EE:2D:6D:7A:50:C9:24:99:DA:1A:21:F2:AB:B7:A2:A7:74:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us7uLW16UMkkmdoaIfKrt6KndMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/decaeb-3f95-4f2a-af65-0c020a7e4a44/1/JS2tkuCtwEzVnni46e_IO_BgV0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/decaeb-3f95-4f2a-af65-0c020a7e4a44/1/Us7uLW16UMkkmdoaIfKrt6KndMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.169.0.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:c5:cc:61:b2:8e:94:0a:22:ee:a0:8f:0f:8a:ab:23:65:ce:
c2:65:35:ac:8c:14:ba:1b:3b:74:25:af:a4:27:8c:42:c3:79:
21:71:14:85:b4:9d:9d:c0:2f:2e:0a:dc:32:e7:b5:3b:dd:6e:
f4:42:63:83:68:5b:bf:37:22:40:05:ee:ec:07:ee:a2:06:0c:
bb:57:e9:7c:2b:c5:1f:a1:a2:1c:0f:30:83:8d:19:41:e4:7f:
fc:df:db:96:fa:db:43:23:c7:04:2a:5a:75:36:39:1c:45:7a:
a3:91:65:57:4c:bf:81:9c:7a:93:aa:7c:65:a4:8f:86:e3:aa:
8f:7a:f7:5e:65:6f:e5:36:9d:7e:1b:d4:89:47:0e:0d:21:69:
5b:a1:c6:a5:9b:e1:fb:f0:80:e6:74:1f:5f:70:0c:e5:2d:b9:
ea:5c:7f:f5:6f:fd:ec:2d:fa:e0:e6:79:77:e7:ff:07:64:7f:
f7:88:83:ae:70:94:2c:3e:c8:f1:c0:b0:69:58:ce:20:89:38:
1e:35:67:28:ab:3f:e9:b8:bd:08:3b:7d:23:d1:cc:4f:9d:26:
b0:74:10:85:e8:25:2d:74:73:0a:49:f3:55:1b:c3:ca:82:b6:
56:20:76:0d:53:ab:54:87:b5:c1:70:63:b7:a2:a6:b8:bb:89:
ae:28:2d:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRmOzplFzG+fNsx0nayEvuWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyY2VlZTJkNmQ3YTUwYzkyNDk5ZGExYTIxZjJhYmI3YTJh
Nzc0YzgwHhcNMjIxMTExMTAyNzQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTJkYWQ5MmUwYWRjMDRjZDU5ZTc4YjhlOWVmYzgzYmYwNjA1NzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgY8nIBK8qa885K29zk+UkDzRdl1
3XwrUvS7grbWHEwhpIxDpuWCseEd7Aux1dYilWazH+9yUaPIu+NwUL80WHagMQv+
z4LQuSg6m36wAkIUR7DYQr7NpnIiILwOkrYcjt6uf6oDGIkgmrLOvSXsrXnQJ2jw
3GLtuSt7R+E7KlDyaeAAro6o6U/iy7DhJxMtHo6Jx91Lj8DKs9RhPj5smy2hBPib
hef5YSFgC9iJLEYY0y6LBmyUQjE9nE36H8OPVTEWBswJF7SFUpzBnmtGM8CnkAxU
Hm6DmRumvdFHTQ2M/oZgMLhOK0sRP9Ef9p2nYP3675W6MFp24CTKygvzOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUtrZLgrcBM1Z54uOnvyDvwYFdCMB8GA1UdIwQY
MBaAFFLO7i1telDJJJnaGiHyq7eip3TIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXM3dUxXMTZVTWtrbWRvYUlmS3J0NktuZE1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9kZWNhZWItM2Y5NS00ZjJhLWFmNjUt
MGMwMjBhN2U0YTQ0LzEvSlMydGt1Q3R3RXpWbm5pNDZlX0lPX0JnVjBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9kZWNhZWItM2Y5NS00ZjJhLWFmNjUtMGMwMjBhN2U0YTQ0
LzEvVXM3dUxXMTZVTWtrbWRvYUlmS3J0NktuZE1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPqkAMA0G
CSqGSIb3DQEBCwUAA4IBAQBaxcxhso6UCiLuoI8PiqsjZc7CZTWsjBS6Gzt0Ja+k
J4xCw3khcRSFtJ2dwC8uCtwy57U73W70QmODaFu/NyJABe7sB+6iBgy7V+l8K8Uf
oaIcDzCDjRlB5H/839uW+ttDI8cEKlp1NjkcRXqjkWVXTL+BnHqTqnxlpI+G46qP
evdeZW/lNp1+G9SJRw4NIWlbocalm+H78IDmdB9fcAzlLbnqXH/1b/3sLfrg5nl3
5/8HZH/3iIOucJQsPsjxwLBpWM4giTgeNWcoqz/puL0IO30j0cxPnSawdBCF6CUt
dHMKSfNVG8PKgrZWIHYNU6tUh7XBcGO3oqa4u4muKC3I
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:11 2024 by rpki-client on console-ams.rpki-client.org