Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/ebIKOjPndsX7L8CeQo7pBnRR45s.roa
File: ebIKOjPndsX7L8CeQo7pBnRR45s.roa (raw, json)
Hash identifier: Gwz9tWsanaiJupv3CeGXNs1T5wIsy20XTrhZMGe0mEU=
Subject key identifier: 79:B2:0A:3A:33:E7:76:C5:FB:2F:C0:9E:42:8E:E9:06:74:51:E3:9B
Certificate issuer: /CN=fb43195dcec60f59c2f89c8af902025d173bba6a
Certificate serial: 40B750
Authority key identifier: FB:43:19:5D:CE:C6:0F:59:C2:F8:9C:8A:F9:02:02:5D:17:3B:BA:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-0MZXc7GD1nC-JyK-QICXRc7umo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/ebIKOjPndsX7L8CeQo7pBnRR45s.roa
Signing time: Mon 21 Feb 2022 14:16:55 +0000
ROA not before: Mon 21 Feb 2022 14:16:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 62.68.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4241232 (0x40b750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb43195dcec60f59c2f89c8af902025d173bba6a
Validity
Not Before: Feb 21 14:16:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79b20a3a33e776c5fb2fc09e428ee9067451e39b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6f:5c:0f:f5:9e:86:a5:b0:2f:9c:32:bb:c5:
54:7a:8e:d4:6d:1f:a9:6c:36:aa:a8:04:df:e3:99:
67:eb:0c:12:e4:e4:c0:48:e2:82:33:68:85:ad:a0:
09:36:20:21:29:60:ab:5a:2b:20:73:dc:7f:56:70:
f2:9f:f1:24:02:b6:cc:4d:9b:5c:08:0f:ca:21:30:
eb:e5:08:8a:00:d0:29:be:78:dd:d4:f0:88:02:3f:
e7:0a:7d:f6:8c:96:c4:7f:d2:d4:d9:94:bf:ba:f7:
f5:a5:ab:7a:3d:ec:03:2f:91:5e:70:fb:32:99:1e:
13:c9:63:8f:cc:a4:58:d8:11:1b:59:5d:17:fe:ce:
94:9c:f2:8d:fe:5e:12:f0:8e:91:7b:b0:36:bc:0a:
4c:2d:3a:c8:6f:21:68:ca:9e:fe:b0:d3:23:c1:4c:
7b:17:eb:e8:33:64:eb:44:5b:a2:0b:e2:7f:1c:9f:
fd:c6:df:bc:01:4a:8f:a1:c9:ff:30:78:51:96:95:
76:63:77:cf:34:a8:64:c0:f0:58:23:b8:cc:0d:47:
ab:eb:74:d4:67:57:3a:4e:d0:ef:fb:90:dd:61:e0:
76:35:0f:ff:8c:b7:08:01:34:c1:5a:e5:b2:b6:f8:
98:51:86:a6:63:de:b6:f6:e8:96:2b:ec:56:5e:ba:
e8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B2:0A:3A:33:E7:76:C5:FB:2F:C0:9E:42:8E:E9:06:74:51:E3:9B
X509v3 Authority Key Identifier:
keyid:FB:43:19:5D:CE:C6:0F:59:C2:F8:9C:8A:F9:02:02:5D:17:3B:BA:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-0MZXc7GD1nC-JyK-QICXRc7umo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/ebIKOjPndsX7L8CeQo7pBnRR45s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/1-0MZXc7GD1nC-JyK-QICXRc7umo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.80.0/24
Signature Algorithm: sha256WithRSAEncryption
82:63:5a:47:c1:e2:8f:f1:fa:31:2e:a0:c7:91:71:d3:bd:50:
ee:e7:6b:63:85:fc:12:29:66:2c:33:dc:7d:75:cd:6f:47:a7:
59:d0:ae:20:50:5c:0a:85:a7:6d:9a:82:80:c7:8c:69:4b:a4:
b5:14:81:4f:32:06:79:3f:4f:83:16:dd:81:cc:c1:0c:8e:5d:
5f:31:51:01:b6:7f:c6:52:48:93:00:a4:71:89:b5:14:5a:bb:
3f:24:c3:1e:e5:7f:f1:a8:83:d2:7c:2b:0d:cf:32:b6:b0:fe:
f0:6b:a8:0e:1b:9d:2e:3c:c5:ca:02:88:a3:5e:29:d1:12:ea:
08:b6:f5:51:55:0e:08:9e:9a:39:09:71:cd:f1:a8:51:b9:4a:
8c:e0:c7:7c:2a:f9:ab:1c:58:21:08:ea:ca:ae:10:62:91:fd:
d4:2a:e3:69:41:ed:f0:47:5f:83:2a:fd:40:11:4f:d6:be:d4:
b3:78:50:d8:4b:43:1e:fd:b5:0f:20:61:47:55:08:0c:c3:1c:
b4:f2:ac:6e:64:a1:51:23:c7:82:19:fc:1d:30:2f:1b:6b:92:
f3:7d:ff:18:68:99:ee:fa:dc:5f:c1:74:29:cf:94:27:cd:b4:
44:4b:35:b0:d4:58:31:fa:0e:c4:00:dc:d2:2f:76:60:02:98:
fd:15:8d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-ams.rpki-client.org