Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/tKw_6REaGy1xj7cMUCCwyAmQrPA.roa
File: tKw_6REaGy1xj7cMUCCwyAmQrPA.roa (raw, json)
Hash identifier: zXRsrxv6g8aSD/HeuSMF4WHYmdWngX8RuZg1Ax1zdaU=
Subject key identifier: B4:AC:3F:E9:11:1A:1B:2D:71:8F:B7:0C:50:20:B0:C8:09:90:AC:F0
Certificate issuer: /CN=15ffa042114301368b4069abd68a1efbac47fdce
Certificate serial: 1AE47F8A
Authority key identifier: 15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/tKw_6REaGy1xj7cMUCCwyAmQrPA.roa
Signing time: Sat 01 Jan 2022 07:54:28 +0000
ROA not before: Sat 01 Jan 2022 07:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52081
IP address blocks: 62.215.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451182474 (0x1ae47f8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ffa042114301368b4069abd68a1efbac47fdce
Validity
Not Before: Jan 1 07:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4ac3fe9111a1b2d718fb70c5020b0c80990acf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:91:b3:4e:61:a0:d4:ad:85:3d:29:0e:87:
c8:7c:3d:bb:16:13:91:27:6c:cb:90:53:c6:3d:db:
93:dc:a1:e5:df:a3:17:21:d9:43:f9:ca:4f:3a:16:
b5:42:3f:fa:d2:12:c4:cf:93:92:be:c2:45:d2:17:
7a:37:ed:42:8c:e0:14:e8:c9:03:79:0a:53:33:44:
43:3c:7b:72:fb:aa:3d:ba:6c:13:96:19:77:26:4f:
7e:3b:03:2a:0a:d9:cb:35:83:0d:2d:f3:51:81:29:
97:b6:90:38:23:f1:12:b7:8e:92:b9:9a:6c:dc:99:
59:41:56:e1:78:23:2e:58:d1:80:d5:f7:aa:59:52:
47:80:81:c4:27:9e:66:96:31:08:01:f0:eb:ae:e2:
9f:fb:69:92:08:5a:81:6b:1d:ff:12:1d:2b:59:3b:
d9:9d:7a:ab:87:37:c8:26:8a:be:a4:f3:07:5d:eb:
92:ae:9a:87:06:a5:ca:d7:67:6f:c6:e4:17:11:e0:
8f:cb:a0:b6:a8:92:01:90:0f:d5:04:2a:3f:b5:b5:
9b:b9:9b:9b:97:63:10:c4:8d:d1:37:1e:23:af:bf:
72:38:58:b2:1b:5c:9c:f2:d1:9d:56:4d:d7:2e:ad:
bf:68:8e:52:9e:68:fa:de:cd:77:83:e5:0a:30:2d:
69:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AC:3F:E9:11:1A:1B:2D:71:8F:B7:0C:50:20:B0:C8:09:90:AC:F0
X509v3 Authority Key Identifier:
keyid:15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/tKw_6REaGy1xj7cMUCCwyAmQrPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.215.49.0/24
Signature Algorithm: sha256WithRSAEncryption
98:a3:7b:54:0e:58:01:f8:ab:3d:88:dc:92:33:a2:36:7e:5a:
d0:de:8d:99:b1:11:7a:1c:b2:f2:2a:19:b6:5f:69:1a:84:ff:
8a:2d:49:d9:75:66:ef:66:02:5b:ff:35:ff:83:64:8e:3d:e6:
42:95:fa:ac:8f:14:11:26:e9:88:3b:f2:65:c2:51:da:5b:32:
ba:92:06:34:1e:a4:26:55:d3:2c:44:b9:4b:11:03:06:9f:2b:
7d:60:ac:1c:07:20:89:29:ec:b7:84:d8:58:6e:d7:45:a8:99:
7a:df:ce:fd:8c:05:95:ed:c8:35:3f:31:7c:81:c7:84:f0:da:
da:9f:22:de:f1:2d:1f:f8:72:87:db:99:fb:aa:0f:c4:c0:d0:
46:7a:d0:27:20:9b:93:8d:1c:45:e3:5c:18:a8:ea:06:83:7d:
7c:7a:c8:c7:b4:c7:59:ac:c5:37:7d:f7:e1:81:3a:d7:cb:48:
d0:0f:7d:dd:89:3a:13:12:2f:d0:ee:64:5d:66:4b:c9:4f:7c:
6e:29:e6:e7:fb:2b:ad:1a:e3:2c:92:be:0e:cb:c6:f3:25:05:
11:8e:4a:85:32:5c:9e:6a:6c:ca:80:bc:5c:c1:10:47:42:d9:
43:e5:10:e6:ab:d0:57:f4:9c:1e:27:ca:95:63:23:ce:04:31:
2f:55:73:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGuR/ijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NWZmYTA0MjExNDMwMTM2OGI0MDY5YWJkNjhhMWVmYmFjNDdmZGNlMB4XDTIyMDEw
MTA3NTQyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjRhYzNmZTkxMTFh
MWIyZDcxOGZiNzBjNTAyMGIwYzgwOTkwYWNmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPykbNOYaDUrYU9KQ6HyHw9uxYTkSdsy5BTxj3bk9yh5d+j
FyHZQ/nKTzoWtUI/+tISxM+Tkr7CRdIXejftQozgFOjJA3kKUzNEQzx7cvuqPbps
E5YZdyZPfjsDKgrZyzWDDS3zUYEpl7aQOCPxEreOkrmabNyZWUFW4XgjLljRgNX3
qllSR4CBxCeeZpYxCAHw667in/tpkghagWsd/xIdK1k72Z16q4c3yCaKvqTzB13r
kq6ahwalytdnb8bkFxHgj8ugtqiSAZAP1QQqP7W1m7mbm5djEMSN0TceI6+/cjhY
shtcnPLRnVZN1y6tv2iOUp5o+t7Nd4PlCjAtaTMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS0rD/pERobLXGPtwxQILDICZCs8DAfBgNVHSMEGDAWgBQV/6BCEUMBNotA
aavWih77rEf9zjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZmLWdRaEZEQVRhTFFHbXIxb29lLTZ4SF9jNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvMTQ5YmM1LTUxYWEtNGU3Yi04ZjAzLWI3M2EzNmQ5MzliMi8x
L3RLd182UkVhR3kxeGo3Y01VQ0N3eUFtUXJQQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
MTQ5YmM1LTUxYWEtNGU3Yi04ZjAzLWI3M2EzNmQ5MzliMi8xL0ZmLWdRaEZEQVRh
TFFHbXIxb29lLTZ4SF9jNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD7XMTANBgkqhkiG9w0BAQsFAAOC
AQEAmKN7VA5YAfirPYjckjOiNn5a0N6NmbERehyy8ioZtl9pGoT/ii1J2XVm72YC
W/81/4Nkjj3mQpX6rI8UESbpiDvyZcJR2lsyupIGNB6kJlXTLES5SxEDBp8rfWCs
HAcgiSnst4TYWG7XRaiZet/O/YwFle3INT8xfIHHhPDa2p8i3vEtH/hyh9uZ+6oP
xMDQRnrQJyCbk40cReNcGKjqBoN9fHrIx7THWazFN3334YE618tI0A993Yk6ExIv
0O5kXWZLyU98binm5/srrRrjLJK+DsvG8yUFEY5KhTJcnmpsyoC8XMEQR0LZQ+UQ
5qvQV/ScHifKlWMjzgQxL1VzZA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:34 2023 by rpki-client on console-ams.rpki-client.org