Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/YHWmQ48GJ9dyHDJJxtslY7jIIXQ.roa
File: YHWmQ48GJ9dyHDJJxtslY7jIIXQ.roa (raw, json)
Hash identifier: Jc8ngLGrlLWkPtvu/UALFZUAhKd5oGRrfrgHoMFKkKw=
Subject key identifier: 60:75:A6:43:8F:06:27:D7:72:1C:32:49:C6:DB:25:63:B8:C8:21:74
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0183F4D79299E87F2B7A62B4F5F33061A1F5
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/YHWmQ48GJ9dyHDJJxtslY7jIIXQ.roa
Signing time: Thu 20 Oct 2022 10:01:51 +0000
ROA not before: Thu 20 Oct 2022 10:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134963
IP address blocks: 62.60.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:d7:92:99:e8:7f:2b:7a:62:b4:f5:f3:30:61:a1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Oct 20 10:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6075a6438f0627d7721c3249c6db2563b8c82174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ed:b6:0b:91:c5:8d:e7:a7:62:f9:e7:8f:26:
79:0d:e6:85:51:5e:71:bb:4f:ec:e4:bc:c6:a8:41:
24:cd:9e:43:94:6b:0b:a2:83:a1:7a:c0:73:3d:cb:
cb:9a:be:6a:e1:a8:10:4f:c4:11:f7:dc:af:8f:1b:
d2:3d:d5:b0:69:63:70:f1:e8:aa:57:88:80:28:6d:
77:35:f0:47:25:df:37:e0:8d:5f:d2:3d:6a:95:ba:
2f:aa:13:ef:8b:2a:f1:f0:79:9f:7a:f9:d2:79:6c:
9a:4c:8f:61:59:bf:ea:e2:5a:56:c5:91:b6:55:09:
0a:f8:1d:f3:95:1c:0c:e0:75:73:c4:29:d4:a9:53:
17:b3:d0:f5:44:4c:30:fe:74:b2:04:57:ec:61:71:
8d:b1:f2:3c:76:e9:19:cb:51:59:89:5f:24:42:d8:
32:f3:4c:62:d2:f6:ed:ca:17:03:8a:cd:0c:d7:77:
c2:83:3d:6d:82:bf:b5:27:26:09:9f:b8:bc:25:24:
f9:08:4f:1c:53:9f:d9:7a:8f:9e:f9:23:42:aa:78:
c3:85:70:0b:e6:1b:d9:78:30:b1:e3:97:de:a4:1a:
46:9c:0c:a2:38:6b:a3:82:1a:39:b2:96:6e:e2:09:
17:23:8e:dd:24:37:13:2e:47:47:0e:de:bd:df:bc:
eb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:75:A6:43:8F:06:27:D7:72:1C:32:49:C6:DB:25:63:B8:C8:21:74
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/YHWmQ48GJ9dyHDJJxtslY7jIIXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.224.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:22:40:fd:ea:00:47:55:a7:ce:92:68:d4:b6:d6:57:c8:20:
dd:69:1b:80:f2:b5:98:09:c7:39:ae:fe:7f:f8:e2:66:1f:a5:
b3:6a:ca:70:f2:0a:6e:7e:93:9d:24:9e:cb:cb:1f:02:4c:8b:
d8:7c:f6:f8:03:9f:5f:5e:65:31:56:13:85:c1:e6:5e:19:0e:
7d:12:8f:c1:73:2c:56:40:80:51:cc:2d:1d:43:48:47:82:1c:
64:f2:c7:51:69:78:b0:ad:44:e9:db:06:60:6e:8c:1d:44:5b:
b5:74:da:73:5a:c9:97:ff:91:ba:52:84:f1:0c:bd:65:67:0c:
b5:77:50:0d:1b:11:f5:28:d2:9a:da:9d:29:1d:cd:43:4f:82:
1a:b9:48:60:c7:8f:86:ef:c8:6b:c6:42:f2:4c:14:c8:d3:e1:
f9:a6:74:fd:fe:8d:c5:a9:f8:6d:ba:f0:d0:57:72:69:cf:8e:
a2:ca:29:e3:0a:75:12:37:8f:61:3e:98:8d:45:ca:6d:25:a2:
71:59:18:5c:e3:e1:01:5b:7a:89:20:19:cf:2c:7d:ce:e1:a1:
3b:e1:5b:24:d5:4b:dd:73:f4:0c:92:9f:c9:72:f6:36:d3:53:
d9:19:a3:87:02:29:c1:61:cc:20:1d:13:a1:2a:9b:93:67:49:
2d:36:ad:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org