Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/zH9yeVcmJQhWlzLAgLCEvfOKqlo.roa
File: zH9yeVcmJQhWlzLAgLCEvfOKqlo.roa (raw, json)
Hash identifier: XrThUCj9HtROcgh2ZX1ReSaOakliyZOPSuQFjjlxaLQ=
Subject key identifier: CC:7F:72:79:57:26:25:08:56:97:32:C0:80:B0:84:BD:F3:8A:AA:5A
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 03C25243
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/zH9yeVcmJQhWlzLAgLCEvfOKqlo.roa
Signing time: Sat 01 Jan 2022 03:53:22 +0000
ROA not before: Sat 01 Jan 2022 03:53:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43002
IP address blocks: 62.93.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63066691 (0x3c25243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 1 03:53:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc7f727957262508569732c080b084bdf38aaa5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cb:c2:9b:b2:b5:7f:c2:d0:80:98:06:5e:06:
ab:78:95:1f:61:33:99:8c:83:78:99:63:6a:29:26:
25:03:25:3e:3f:31:8a:74:89:2e:67:40:c3:43:95:
d9:a7:90:7e:53:42:9a:7b:38:70:d3:7d:26:62:af:
54:29:61:59:63:4a:77:30:6c:d3:f5:8b:d5:97:69:
53:c8:83:a2:dd:58:d2:8f:a1:80:5c:d3:ad:48:18:
dc:2d:22:3d:2d:e6:0b:af:f6:ff:36:5e:f6:b2:5d:
d2:e6:c6:42:72:c4:2e:d4:0a:23:ca:da:f0:26:c9:
72:15:8b:d3:59:8e:79:8a:26:18:5a:22:4f:4e:2b:
2a:6c:ee:01:16:e5:81:c2:f2:13:3b:47:3d:95:e4:
72:95:7d:3d:70:15:fd:24:8f:22:36:88:ef:a7:61:
75:f0:ec:bc:17:28:5f:ca:9e:c2:fb:54:2d:97:0a:
50:52:d9:72:b6:10:98:78:14:70:3e:91:bf:be:d5:
ab:c1:5a:cc:80:b3:ed:b1:3b:95:cd:83:e4:bd:57:
c8:d0:e6:39:ec:aa:a2:ce:eb:7c:3a:41:b4:f0:4e:
cc:db:00:a5:7c:51:91:f2:02:79:af:a3:ff:f1:19:
64:d8:56:d2:d6:62:b3:a9:c0:fd:20:16:26:be:0d:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7F:72:79:57:26:25:08:56:97:32:C0:80:B0:84:BD:F3:8A:AA:5A
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/zH9yeVcmJQhWlzLAgLCEvfOKqlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.93.116.0/22
Signature Algorithm: sha256WithRSAEncryption
21:74:d0:df:c4:1d:27:b0:11:a9:98:31:c4:44:a7:fb:bd:7e:
cd:91:53:39:cb:86:12:ad:41:16:6b:3d:7c:f5:3e:35:ce:e4:
d3:ad:77:f2:4e:84:c5:ed:58:ac:7d:46:73:17:88:99:75:f2:
9a:d5:2a:82:5b:94:3f:f1:a4:80:96:f6:ab:4a:a6:ed:5d:cf:
c9:5b:e9:2d:74:3d:f2:3f:8c:b2:16:46:08:1b:13:10:ee:43:
bd:4a:91:f3:d4:f0:7d:84:08:47:a7:b3:67:37:94:f5:e7:85:
08:69:8d:c6:80:da:1f:4b:e0:10:f7:57:ee:6d:82:83:f7:47:
d6:3c:79:82:63:fa:ea:2b:6f:62:3e:a8:bc:43:f6:f8:e0:88:
f1:64:ca:5a:3b:59:3a:27:c4:d2:05:0a:53:1f:18:91:11:c4:
e7:fe:ac:34:36:9c:c0:29:3b:7d:18:ff:ec:61:89:65:80:54:
88:80:fb:89:8f:8f:7f:bc:f2:eb:5c:2d:60:a8:33:e6:a8:b4:
bb:b1:30:9a:01:80:45:55:7f:7f:ef:fc:af:03:07:39:b3:9d:
ca:3b:ef:46:a7:f3:85:73:7f:98:2a:a0:d0:d9:87:a9:9f:2d:
3e:cf:ab:4e:1c:f3:53:b2:1f:6c:0c:f9:44:e7:8a:5a:7d:3f:
d6:5b:37:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org