Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/3f6k-o-hxN7diK0R5icN9ZJg77g.roa
File: 3f6k-o-hxN7diK0R5icN9ZJg77g.roa (raw, json)
Hash identifier: ZI0Hv0VJSzG9ODse1+n6gxnaldHfw3oroeogkLikJaw=
Subject key identifier: DD:FE:A4:FA:8F:A1:C4:DE:DD:88:AD:11:E6:27:0D:F5:92:60:EF:B8
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0184E11F35553C8C0469ADEBF0D5325D8220
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/3f6k-o-hxN7diK0R5icN9ZJg77g.roa
Signing time: Mon 05 Dec 2022 07:10:29 +0000
ROA not before: Mon 05 Dec 2022 07:10:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204830
IP address blocks: 5.8.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:1f:35:55:3c:8c:04:69:ad:eb:f0:d5:32:5d:82:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Dec 5 07:10:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddfea4fa8fa1c4dedd88ad11e6270df59260efb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:e7:dd:b0:2d:15:a6:68:3a:3c:2f:cd:30:
df:3f:6a:81:e3:c5:23:1c:2c:dd:7c:de:a7:68:17:
3a:04:b5:cb:b6:5a:14:4d:2e:9d:19:71:df:9c:b1:
7e:39:2c:f8:ac:38:28:b4:73:7c:1d:d9:dc:ba:66:
d9:f5:f3:42:48:50:97:2f:e4:57:9f:a9:f8:a5:2e:
88:1a:39:83:d9:ac:39:09:35:1d:74:73:ec:2f:03:
76:26:66:c8:6f:44:71:89:7b:7e:c5:9a:56:a0:85:
87:88:6e:bf:6b:1c:47:dd:6f:fe:96:63:af:ad:47:
b4:c6:4e:69:21:4a:b4:ee:56:d5:0a:3a:f7:31:fe:
cf:bf:52:99:20:37:c4:8f:1c:ce:59:63:b1:3f:39:
02:c6:43:2d:de:09:84:e7:5d:91:40:8d:f5:8d:f5:
99:8b:4d:66:32:e4:f5:55:91:fb:5a:b2:1d:51:30:
d5:4f:20:8b:f3:8f:eb:37:e5:67:fc:7b:f0:55:0b:
b2:41:63:51:2b:cd:f9:c9:aa:e0:36:8e:71:d5:e5:
7d:ca:df:3b:4c:57:b9:a2:13:2b:16:89:54:f9:40:
75:42:56:8b:f5:b8:5b:1a:ce:cf:8c:ff:d1:d4:d5:
fd:c8:85:cc:ec:53:ef:17:38:40:c2:a3:81:51:09:
8d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FE:A4:FA:8F:A1:C4:DE:DD:88:AD:11:E6:27:0D:F5:92:60:EF:B8
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/3f6k-o-hxN7diK0R5icN9ZJg77g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.62.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:eb:eb:11:6f:7e:d2:14:04:8f:2c:9a:64:25:cf:d5:43:d0:
38:fe:56:b6:7b:11:a1:b3:98:90:66:83:a8:f4:26:8f:23:ee:
8b:83:20:72:32:59:e5:ab:7c:ed:8d:59:66:e4:f0:91:61:64:
4c:f5:76:63:4a:ee:a0:f5:90:b1:90:df:ab:c5:78:3a:16:75:
81:c7:8c:5e:cb:cd:40:22:1a:48:88:ed:07:1f:e0:fc:bf:ef:
88:58:45:75:50:f8:e0:37:be:c6:7d:94:36:8f:a6:c1:94:9d:
55:1d:6a:51:c5:90:58:ec:ae:6e:be:53:c1:c3:97:4e:31:d5:
0e:77:2c:24:74:29:80:46:a9:74:20:1a:ae:32:ea:6b:eb:42:
01:78:97:2f:f3:4a:60:9b:e1:aa:05:cb:9f:56:d6:df:b2:51:
d6:6e:fd:69:0b:9d:71:6d:17:54:32:28:b1:6e:82:b6:b4:df:
ec:dd:24:d3:02:c7:5d:f2:78:63:84:aa:58:65:c4:8a:64:e5:
66:f2:83:09:0b:c2:a8:dd:83:7e:a3:13:ec:07:bd:28:83:34:
2b:c7:84:ad:54:44:81:15:49:13:e7:79:a5:e3:f9:ee:73:4e:
dd:24:c9:7d:2d:24:40:7b:78:60:28:36:c3:17:f0:da:0b:98:
52:1f:bf:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org