Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/T_PhXWbdP-J2gyLS4sxPi2szCRs.roa
File: T_PhXWbdP-J2gyLS4sxPi2szCRs.roa (raw, json)
Hash identifier: WXpVmsF695x2IDDzLQzxNNXDUlHmNpZiT9J+3zQuOh0=
Subject key identifier: 4F:F3:E1:5D:66:DD:3F:E2:76:83:22:D2:E2:CC:4F:8B:6B:33:09:1B
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0FA3F8E2
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/T_PhXWbdP-J2gyLS4sxPi2szCRs.roa
Signing time: Sat 01 Jan 2022 00:51:09 +0000
ROA not before: Sat 01 Jan 2022 00:51:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205661
IP address blocks: 62.96.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262404322 (0xfa3f8e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 00:51:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ff3e15d66dd3fe2768322d2e2cc4f8b6b33091b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f5:80:7d:c0:e5:6f:86:1f:a4:f4:57:8c:28:
31:d2:ca:2f:f9:24:3a:ef:c8:a1:04:e2:da:da:32:
5e:41:76:21:60:65:d8:ac:56:f3:d2:c6:a1:bc:9f:
2b:8d:45:48:82:30:b7:38:15:73:ce:d9:be:f0:cf:
53:0e:04:53:57:75:88:5c:60:1a:0a:4a:76:3b:a5:
eb:af:ec:c0:0a:0c:46:37:6e:6c:77:5c:14:c6:98:
3f:f2:27:65:c0:1a:11:85:b9:a1:b5:24:1d:2b:95:
68:df:06:26:f0:1d:c4:bc:f5:13:b6:91:4c:ca:c9:
52:2c:3b:eb:58:ff:9a:71:2d:f4:34:6a:1a:86:01:
cd:9b:4c:3d:e9:f1:e3:5e:59:a6:dc:53:5a:2e:be:
c9:77:76:7b:20:58:55:5a:1f:60:32:20:b1:5b:7d:
a5:c4:e1:b7:94:15:c7:46:7d:13:42:c2:c3:f0:b8:
be:f8:e9:af:2b:61:8e:e0:00:e5:a8:e2:17:61:d7:
2e:d9:b8:1a:a3:16:90:c1:8e:72:14:92:ae:3a:5c:
c5:90:55:05:83:fb:02:dd:2c:a4:5e:7c:b3:b8:e5:
27:13:a8:37:0c:c8:42:2d:29:17:ff:8e:fb:3c:da:
0d:43:e0:59:7e:25:cb:7b:f6:4a:20:65:38:61:84:
28:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F3:E1:5D:66:DD:3F:E2:76:83:22:D2:E2:CC:4F:8B:6B:33:09:1B
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/T_PhXWbdP-J2gyLS4sxPi2szCRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.96.23.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ae:a0:a7:2a:11:20:fb:9b:fe:8a:25:0e:d2:24:46:39:3d:
74:40:c5:4a:55:d1:4b:20:78:12:5d:4a:b8:45:46:58:fe:1e:
05:bc:37:2f:ed:ce:ce:46:d0:e7:d9:5e:39:08:63:10:43:1a:
c2:b3:a3:91:e3:02:f5:2a:4b:1d:4b:5b:24:90:19:83:b1:b7:
89:3e:88:e6:75:64:ca:3f:68:4e:18:35:4e:3b:78:c2:18:4e:
57:82:7f:b5:f9:b1:8e:9e:dd:64:df:f6:9b:9f:4b:c8:be:72:
81:8a:f7:37:7a:66:91:ee:28:78:34:20:23:47:a6:8f:1f:29:
d6:f5:c6:a4:32:57:2e:f4:a1:dd:5a:f0:2b:d1:16:1f:e7:a4:
1d:55:66:ff:16:ab:ee:be:35:80:db:09:77:05:eb:f8:64:d1:
83:a0:81:13:a3:e7:63:04:74:b8:48:aa:1e:00:a6:5d:71:c1:
22:c9:b3:f9:be:a7:09:d2:ea:6a:31:64:67:48:dc:29:f2:f8:
50:28:4c:91:5a:15:61:89:de:f0:bb:22:5a:a1:c2:5a:bd:fe:
5e:4b:00:03:33:02:52:23:68:5e:ec:8c:a9:7f:1e:62:bd:20:
8f:ba:25:ff:7e:24:e2:47:6e:bc:9f:ef:16:2f:2f:b3:ef:6d:
9b:8a:4b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:28 2024 by rpki-client on console-ams.rpki-client.org