Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/T00VuI5S9iM6dVZmlkojUgzCfeI.roa
File: T00VuI5S9iM6dVZmlkojUgzCfeI.roa (raw, json)
Hash identifier: uw/pT+UkGB2tzhqea92oAk1bZJ4McDPWi624ch7f5F8=
Subject key identifier: 4F:4D:15:B8:8E:52:F6:23:3A:75:56:66:96:4A:23:52:0C:C2:7D:E2
Certificate issuer: /CN=993b9ea9fdb611b91c8574410ac925c5869f5a60
Certificate serial: 02A14AF5
Authority key identifier: 99:3B:9E:A9:FD:B6:11:B9:1C:85:74:41:0A:C9:25:C5:86:9F:5A:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mTueqf22EbkchXRBCsklxYafWmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/T00VuI5S9iM6dVZmlkojUgzCfeI.roa
Signing time: Sat 01 Jan 2022 11:54:25 +0000
ROA not before: Sat 01 Jan 2022 11:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56851
IP address blocks: 62.192.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44124917 (0x2a14af5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993b9ea9fdb611b91c8574410ac925c5869f5a60
Validity
Not Before: Jan 1 11:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f4d15b88e52f6233a755666964a23520cc27de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fa:67:1a:8d:0f:f7:35:0e:98:4d:76:90:87:
3c:8a:34:2a:57:cd:ab:f8:8c:86:14:b6:b8:92:e0:
57:ac:17:3a:a1:14:5d:da:b9:38:08:72:af:96:d0:
0a:ec:2f:ba:a7:4f:e8:17:08:c8:3b:4f:a8:bf:80:
4f:90:b0:88:ff:44:4e:e4:4a:40:e9:b2:11:d9:5d:
12:d1:45:ad:69:cb:c5:c3:30:0c:49:77:29:2e:26:
47:75:46:0e:94:45:40:ba:a0:72:87:67:89:6d:f4:
88:df:44:32:63:ef:d9:fd:59:ab:d3:89:d7:4c:0b:
8a:2d:96:c3:1a:d7:e3:51:3a:b8:d7:09:a5:2d:de:
04:c1:7d:d7:73:d8:92:4f:1e:d1:42:58:54:2d:dc:
3e:15:8f:ab:18:e9:54:16:9c:60:d9:aa:71:a0:f5:
1b:ac:72:23:72:cb:ae:48:7a:e3:55:95:a6:1d:f5:
50:ab:74:62:e8:f5:97:a1:dc:43:01:a4:f0:e7:e6:
f3:4e:92:cb:af:26:a2:bc:e3:b0:c1:fb:82:7e:fd:
d3:6b:0b:33:67:0d:e3:ba:d7:81:43:7d:a3:11:7a:
c5:e3:33:fb:9e:6c:84:5f:38:6f:ee:0a:db:16:36:
73:e1:50:88:63:38:74:c8:d0:7c:d7:82:4c:9e:9e:
f0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4D:15:B8:8E:52:F6:23:3A:75:56:66:96:4A:23:52:0C:C2:7D:E2
X509v3 Authority Key Identifier:
keyid:99:3B:9E:A9:FD:B6:11:B9:1C:85:74:41:0A:C9:25:C5:86:9F:5A:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mTueqf22EbkchXRBCsklxYafWmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/T00VuI5S9iM6dVZmlkojUgzCfeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/mTueqf22EbkchXRBCsklxYafWmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.154.0/24
Signature Algorithm: sha256WithRSAEncryption
88:7e:da:c8:7c:2e:31:aa:d1:38:61:7e:82:3c:51:1c:d7:fe:
fa:b6:8a:5e:f9:d8:bd:5e:13:f5:1e:30:ba:90:ca:27:ab:0f:
de:c4:30:a6:50:e9:88:2b:60:df:6c:9e:7f:f7:68:82:4e:d9:
fc:94:4a:de:2a:ec:eb:3c:ef:24:ad:1f:00:40:a4:3c:07:a9:
b1:85:f6:ad:66:1a:9b:b5:e9:49:7e:ae:60:28:c0:0c:e3:ba:
3e:ea:13:72:2d:be:bc:cf:b8:fb:43:21:f2:5a:dd:87:18:40:
5d:98:b7:2f:3a:8c:74:52:41:e0:2e:5f:de:ef:56:e3:a3:d8:
ba:d8:a8:46:c8:7e:cf:9c:2e:e8:90:22:f5:79:9d:62:f3:4d:
77:f2:21:44:48:b7:e9:8c:73:4c:4e:53:88:8d:1e:f9:83:7a:
25:be:38:87:f2:5f:30:0e:de:b6:fb:c6:67:d1:27:48:9f:34:
70:8b:2e:69:bc:6f:9a:0a:74:f9:59:50:9a:8c:3c:c0:33:ee:
6a:4a:1c:72:31:19:06:c2:ce:35:84:36:0a:96:13:41:3f:fa:
b1:ed:42:83:aa:a5:1a:db:44:4f:15:7d:8f:ba:49:c5:7d:20:
c5:8b:c3:5a:f9:08:70:6e:da:4d:15:0b:7f:c5:0b:50:36:ba:
6f:2f:03:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:23 2023 by rpki-client on console-ams.rpki-client.org