Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e4bfda-e708-4eef-919a-4b594278e80e/1/G9PqPwKFWfl-LYTK2bG7mQGaQoY.roa
File: G9PqPwKFWfl-LYTK2bG7mQGaQoY.roa (raw, json)
Hash identifier: 2GEkEx95gTBOgdIg5v+Vp95IMXtCmd+xqRL/1bmyXLA=
Subject key identifier: 1B:D3:EA:3F:02:85:59:F9:7E:2D:84:CA:D9:B1:BB:99:01:9A:42:86
Certificate issuer: /CN=394c4f1d8bccc14046093102d57b34c9129bc47e
Certificate serial: 01B0B3
Authority key identifier: 39:4C:4F:1D:8B:CC:C1:40:46:09:31:02:D5:7B:34:C9:12:9B:C4:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUxPHYvMwUBGCTEC1Xs0yRKbxH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e4bfda-e708-4eef-919a-4b594278e80e/1/G9PqPwKFWfl-LYTK2bG7mQGaQoY.roa
Signing time: Mon 10 Jan 2022 19:56:12 +0000
ROA not before: Mon 10 Jan 2022 19:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212963
IP address blocks: 62.3.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110771 (0x1b0b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=394c4f1d8bccc14046093102d57b34c9129bc47e
Validity
Not Before: Jan 10 19:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bd3ea3f028559f97e2d84cad9b1bb99019a4286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:ce:ea:88:fd:8a:32:c4:c3:b2:54:2f:96:
2b:6e:68:1e:36:31:dd:14:bb:d5:a3:16:ee:fb:d3:
55:28:65:4f:be:4f:b4:1e:03:b1:c0:b4:9b:9f:6b:
61:12:58:06:d0:49:60:a4:ef:87:2f:1d:98:f4:8c:
17:7b:ed:15:44:ae:e3:09:61:28:0a:cf:fd:4e:cd:
0c:86:b9:ad:ce:3a:59:e2:17:3e:4e:e0:e4:60:d3:
c0:90:0a:a8:85:2f:44:a7:2e:ee:e4:b2:f5:86:f7:
52:b4:5d:7c:ff:4e:63:8d:f5:2b:ff:c6:c0:4a:a2:
89:31:c9:c5:ce:f3:f9:65:d7:5d:c1:39:9a:7f:63:
96:ee:d6:e6:47:9c:08:d4:a6:74:3d:cb:19:2a:cb:
ab:47:fb:38:61:5c:11:18:b0:9f:d2:b6:35:18:25:
29:86:42:e4:f8:bf:9b:56:1a:4f:66:02:11:61:66:
d1:7a:4d:57:44:c2:21:81:1d:42:24:af:6f:e6:41:
ec:e1:74:fa:1e:62:f2:c9:6b:33:43:d5:60:ef:8f:
a2:33:af:b4:e4:ca:b3:48:90:b8:3c:b8:a1:53:43:
e4:97:66:9d:6d:9a:6e:a4:73:e7:77:11:6b:6b:b0:
bf:9f:09:52:59:50:bc:cb:65:93:66:21:a7:37:ac:
d7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D3:EA:3F:02:85:59:F9:7E:2D:84:CA:D9:B1:BB:99:01:9A:42:86
X509v3 Authority Key Identifier:
keyid:39:4C:4F:1D:8B:CC:C1:40:46:09:31:02:D5:7B:34:C9:12:9B:C4:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUxPHYvMwUBGCTEC1Xs0yRKbxH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e4bfda-e708-4eef-919a-4b594278e80e/1/G9PqPwKFWfl-LYTK2bG7mQGaQoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e4bfda-e708-4eef-919a-4b594278e80e/1/OUxPHYvMwUBGCTEC1Xs0yRKbxH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.49.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ca:86:d1:f2:e9:46:05:82:ce:50:00:9f:9d:78:3f:9f:e8:
c1:4a:33:5e:be:64:34:f8:6a:83:43:65:f0:56:05:19:95:91:
f8:38:63:93:ef:1b:42:e6:5e:50:d7:68:e1:ff:17:6f:c8:73:
26:ef:68:54:fb:48:70:4b:be:a9:47:e4:7b:e9:b4:3e:f8:af:
bd:68:0e:94:67:c4:3c:2e:cc:8a:34:17:bd:07:99:46:96:ca:
eb:a1:6b:9e:55:15:79:af:75:0b:da:88:2c:c9:51:3f:ee:15:
36:e4:82:3c:e9:e1:5f:58:46:ec:f7:e1:90:6e:8c:3a:71:3c:
85:71:6c:ac:7d:a4:34:50:16:57:fd:62:d5:4e:44:1c:55:f4:
aa:5b:9f:10:fc:bf:5c:d8:51:7f:6f:44:b6:31:a1:18:70:38:
0c:ba:c5:b3:e9:c9:16:2d:7c:2d:e5:fa:a1:a8:32:2b:47:97:
59:23:31:a3:29:b8:70:08:e8:d2:d4:f7:2e:57:a6:49:6a:bd:
e8:24:ca:31:fe:a6:a6:7c:96:7e:fd:cb:9b:c1:2b:e2:10:44:
b0:90:5c:cf:51:f5:70:ea:95:0b:c2:31:06:9a:3b:32:3c:86:
31:7a:73:74:1e:73:38:86:e3:75:85:d0:7b:99:ef:29:fa:dd:
4e:9b:a2:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-fra.rpki-client.org