Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/WxIsMvQysGPCDvgeJWZBIDd0cI8.roa
File: WxIsMvQysGPCDvgeJWZBIDd0cI8.roa (raw, json)
Hash identifier: 1fl4LV9rLkhsbCdCM0iiybpMf8VRXsnH1Vk6V7LsFP0=
Subject key identifier: 5B:12:2C:32:F4:32:B0:63:C2:0E:F8:1E:25:66:41:20:37:74:70:8F
Certificate issuer: /CN=e39176c5a602527533c2b541406ae83f209e620c
Certificate serial: 0182C5FF3F35BE9B3E5626556A18843FC414
Authority key identifier: E3:91:76:C5:A6:02:52:75:33:C2:B5:41:40:6A:E8:3F:20:9E:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45F2xaYCUnUzwrVBQGroPyCeYgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/WxIsMvQysGPCDvgeJWZBIDd0cI8.roa
Signing time: Mon 22 Aug 2022 14:40:15 +0000
ROA not before: Mon 22 Aug 2022 14:40:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204687
IP address blocks: 62.68.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:ff:3f:35:be:9b:3e:56:26:55:6a:18:84:3f:c4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39176c5a602527533c2b541406ae83f209e620c
Validity
Not Before: Aug 22 14:40:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b122c32f432b063c20ef81e256641203774708f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ff:2b:cb:a1:94:7f:37:0f:15:cc:63:dc:c0:
65:37:81:31:0c:aa:3f:47:df:d8:6a:38:5b:d4:e0:
0c:b1:b0:fd:ed:37:a5:90:ec:23:73:1d:fa:03:87:
fe:42:fe:69:74:57:cc:25:bb:d3:89:59:20:80:08:
a5:bf:18:0b:f1:38:47:37:8d:69:08:83:63:e0:9c:
85:34:a4:3d:f8:cd:c8:7d:2e:2a:76:b5:69:e8:36:
84:b0:bc:46:66:43:00:60:fc:c0:97:3e:76:88:00:
56:90:ee:77:1e:b2:22:84:fa:03:bb:6b:de:90:55:
cb:ea:49:f2:87:f5:6f:90:d6:fa:bd:c6:f2:be:28:
e5:6b:27:0b:90:4e:a6:89:05:6f:45:31:fb:a7:82:
47:d3:02:18:ad:5b:71:cf:cb:7d:4c:92:9c:7d:8f:
32:51:f3:a5:e5:a8:8a:eb:5a:b0:58:68:58:a3:99:
08:62:3b:b8:b0:97:c2:95:19:57:d3:34:9c:f6:61:
d7:1f:d7:1e:e7:6d:78:41:07:39:84:16:f2:79:cd:
d8:6a:d3:1e:4c:22:c4:50:c7:92:fc:62:40:66:e5:
46:5d:97:04:44:e7:e7:46:4c:e9:00:49:5e:83:6b:
8a:57:4d:5a:ae:97:d5:85:56:34:44:18:1b:fa:b9:
68:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:12:2C:32:F4:32:B0:63:C2:0E:F8:1E:25:66:41:20:37:74:70:8F
X509v3 Authority Key Identifier:
keyid:E3:91:76:C5:A6:02:52:75:33:C2:B5:41:40:6A:E8:3F:20:9E:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45F2xaYCUnUzwrVBQGroPyCeYgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/WxIsMvQysGPCDvgeJWZBIDd0cI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/45F2xaYCUnUzwrVBQGroPyCeYgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.68.0/24
Signature Algorithm: sha256WithRSAEncryption
05:a6:80:01:f2:79:99:83:cf:e5:bc:1c:cc:25:b6:23:6f:07:
14:e3:b0:25:b7:a6:69:41:b0:5b:0e:63:aa:5b:20:23:59:ae:
49:74:43:75:11:0e:06:d8:75:12:fb:06:19:02:fc:74:46:07:
d0:b2:28:d2:ba:bc:2b:35:6b:2a:83:35:77:ee:6f:f2:27:51:
e7:b1:52:5a:6b:6f:75:59:f0:c4:33:85:2f:39:2c:17:4a:44:
e5:f9:0d:9a:35:19:e7:07:ee:80:f7:a4:37:04:36:be:b0:f3:
19:9c:75:75:c9:0c:48:b6:93:e8:ae:05:78:8d:0a:00:b7:da:
3d:db:0a:38:5b:70:4f:5d:fe:5e:e8:d4:e2:0d:b7:2b:29:4a:
45:62:6b:a5:ba:00:99:c4:6a:d2:12:4e:44:77:84:f1:5d:d5:
5d:82:1a:13:ac:a2:12:6a:35:86:04:15:bb:77:28:f5:c3:cb:
12:c9:9c:26:73:47:2f:76:84:38:f5:06:e5:03:27:9b:d7:b0:
77:ec:17:e4:05:29:09:b8:da:5e:ff:14:50:09:28:96:b0:09:
0b:2f:13:36:d5:84:78:26:ea:9e:12:6f:2c:09:c1:62:96:31:
eb:33:71:a5:fe:98:67:4a:e4:fe:e4:92:dc:62:33:1e:b9:ba:
2e:85:b9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:43 2023 by rpki-client on console-ams.rpki-client.org