Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/cGma5hdjsarwsLZn35c_yypLLbw.roa
File: cGma5hdjsarwsLZn35c_yypLLbw.roa (raw, json)
Hash identifier: 9bGXdoH06QA18GWfB5g+f0ZYSS4K035LDE1M6Azxq/s=
Subject key identifier: 70:69:9A:E6:17:63:B1:AA:F0:B0:B6:67:DF:97:3F:CB:2A:4B:2D:BC
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018500D8D903933FECDC2B86CE4998595E72
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/cGma5hdjsarwsLZn35c_yypLLbw.roa
Signing time: Sun 11 Dec 2022 11:01:29 +0000
ROA not before: Sun 11 Dec 2022 11:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48147
IP address blocks: 62.60.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:00:d8:d9:03:93:3f:ec:dc:2b:86:ce:49:98:59:5e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Dec 11 11:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70699ae61763b1aaf0b0b667df973fcb2a4b2dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:48:c8:5c:99:8d:28:36:f2:86:52:e7:91:
a9:09:37:27:8e:07:ff:8b:1c:f9:76:0c:41:be:19:
9f:de:95:bb:13:d2:d3:d9:68:25:4d:8d:a8:97:ac:
a9:a8:e8:b7:10:a3:0e:1d:ae:88:28:45:27:4a:4f:
77:55:d7:58:f4:11:bf:7e:54:06:90:fe:5a:35:60:
5c:33:d9:45:b4:6a:bf:44:d0:f4:f1:e3:31:25:cf:
4e:b8:63:40:c7:f5:45:d8:19:5a:01:08:a2:68:75:
89:04:68:2e:85:e8:93:a4:f9:40:08:75:c4:5c:e6:
a5:8e:75:17:7d:ff:de:3d:40:29:d5:14:10:3d:0b:
de:bb:37:53:0d:49:19:f7:4d:0f:af:89:d5:bd:20:
05:7f:55:64:7d:e7:c4:f3:21:6d:46:38:fd:ae:68:
40:9c:e1:6c:d2:95:b1:40:ba:a4:5e:61:99:04:5f:
df:25:24:f5:82:6c:da:15:e9:0a:66:f7:25:fc:12:
6e:ae:ac:a4:20:5d:c8:80:9f:02:a8:06:9f:d6:8b:
3a:e0:c5:65:27:f7:a9:19:12:2e:c2:38:0b:07:c4:
11:38:1e:6c:37:ff:89:64:8f:8a:eb:26:39:b8:d4:
9a:33:85:93:da:b3:72:c6:71:30:0a:5d:00:29:c1:
7b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:69:9A:E6:17:63:B1:AA:F0:B0:B6:67:DF:97:3F:CB:2A:4B:2D:BC
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/cGma5hdjsarwsLZn35c_yypLLbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.162.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:58:f5:f1:72:2b:5f:13:f1:c5:a0:eb:71:5e:19:7f:8d:eb:
01:11:73:84:1d:2e:e9:e7:49:d5:ef:50:9c:89:ab:95:e8:b1:
8d:31:aa:8d:af:83:ef:86:22:d8:65:b8:71:a5:72:ec:75:65:
e8:c3:f5:1e:c7:3a:4e:be:a2:17:14:5e:c3:48:1d:24:ea:87:
96:64:40:24:bb:84:fd:55:ea:d8:ba:45:d8:db:73:3c:5f:88:
d0:11:60:30:c1:37:9e:5b:d9:fb:26:b0:56:b7:24:70:1a:af:
3e:b2:ac:bd:37:62:80:7b:ef:cb:6e:cc:12:3e:11:5b:54:62:
91:b7:49:47:44:ef:03:1a:45:5c:b0:f1:ae:8b:d8:09:a8:d6:
ab:87:f0:e4:2f:78:46:ab:3f:b8:e8:a4:3f:5a:66:a4:b3:db:
a0:a0:29:33:9e:1e:25:ee:a4:d4:7e:0b:a7:24:b4:54:58:1c:
31:b8:ed:f5:a4:e6:02:82:aa:67:a9:b2:7f:af:96:be:e5:46:
5e:3a:b2:ee:be:fd:02:7c:5d:3b:d8:ba:36:0c:bf:09:df:d5:
a5:78:26:2e:75:b8:b5:6a:3d:4f:db:e5:fb:a2:41:7c:b7:f8:
97:e3:ca:34:92:e3:0a:2f:e5:e7:0d:90:1f:13:d4:ce:28:e0:
a9:a4:d2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org