Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/Y8iyoPOGB37cgFDiAzVcsbu4I9o.roa
File: Y8iyoPOGB37cgFDiAzVcsbu4I9o.roa (raw, json)
Hash identifier: rpIhD0Fl+3cS3vALir0ganXB+Bi4u7rD6EezEJ2syl0=
Subject key identifier: 63:C8:B2:A0:F3:86:07:7E:DC:80:50:E2:03:35:5C:B1:BB:B8:23:DA
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 0184621570CDEDC3D28A336380699BA3430A
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/Y8iyoPOGB37cgFDiAzVcsbu4I9o.roa
Signing time: Thu 10 Nov 2022 15:08:03 +0000
ROA not before: Thu 10 Nov 2022 15:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400536
IP address blocks: 86.62.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:15:70:cd:ed:c3:d2:8a:33:63:80:69:9b:a3:43:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Nov 10 15:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63c8b2a0f386077edc8050e203355cb1bbb823da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d7:47:37:06:c8:10:70:e0:2d:39:83:1d:c7:
9d:39:37:c7:f3:e7:b8:63:d7:30:33:7e:37:3d:b3:
70:14:22:b7:fd:2a:b4:0d:e6:79:69:26:9d:14:6a:
e3:34:ee:36:48:21:9e:e2:46:39:b8:d4:8c:04:ce:
36:01:b2:77:d3:a9:26:95:43:e0:0f:8d:3d:97:c1:
18:45:dc:68:cf:ab:e0:81:1b:33:12:75:d0:e1:59:
8d:6a:a8:b1:a3:69:3a:fa:5f:8a:0b:24:2e:ca:f3:
6d:68:b2:2a:6b:ec:a8:a7:fa:ba:9b:9d:c9:47:c8:
e8:e0:ae:26:ee:1d:d2:9f:de:7f:58:6e:25:46:e6:
9f:3d:da:e9:75:26:04:43:3f:00:2a:f1:ee:29:80:
d3:6a:9d:36:69:34:2b:42:a8:16:bb:4e:91:ee:de:
93:f0:08:65:b5:8c:35:6e:5d:d2:41:48:10:a4:19:
87:4b:37:66:57:a9:ac:98:ee:a2:66:8a:9b:61:c8:
7a:e7:ba:17:4b:07:4c:7c:3f:d0:d2:33:05:fc:49:
76:1a:59:94:66:9c:fd:f2:a6:e1:9f:12:4f:e6:bd:
87:bc:8e:c0:20:81:2d:ab:a3:77:0a:7c:81:34:7e:
c6:f8:80:4f:01:8c:b5:5f:c2:90:02:1a:a2:7d:02:
e3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C8:B2:A0:F3:86:07:7E:DC:80:50:E2:03:35:5C:B1:BB:B8:23:DA
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/Y8iyoPOGB37cgFDiAzVcsbu4I9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.31.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:a4:36:a5:3b:ef:af:15:6d:0a:08:f5:d3:e5:04:93:83:31:
0d:1f:98:6f:29:05:58:85:c5:49:cd:59:82:e3:00:5f:52:e8:
de:75:0c:ab:0f:1d:bd:bc:c8:6e:9f:f5:04:ba:79:43:0c:cb:
2d:79:b9:cf:07:79:d1:7b:6d:3c:f1:20:43:27:ec:f6:78:a3:
7e:90:7d:b9:c6:b1:bf:84:da:db:ab:28:b3:d8:88:d7:42:e9:
3c:f2:cd:3d:e0:02:8b:b7:fd:23:0d:4d:5a:8b:c9:51:66:53:
40:5b:38:7e:20:d6:46:71:bc:2a:2d:80:a0:9d:4d:5d:93:af:
3e:78:13:69:ab:28:82:30:e3:05:95:4d:f9:5d:2e:36:49:e2:
ca:26:16:a2:d5:e6:1f:92:61:3d:9d:09:97:5e:5d:9b:5c:23:
6d:c9:e3:11:e7:e7:d6:83:40:1a:16:17:95:1e:98:72:23:ce:
a1:4c:10:15:93:5e:d1:1f:1b:c1:3e:3f:92:46:93:20:de:77:
3a:31:d9:34:5c:ea:54:81:1c:43:49:fb:58:95:13:79:1c:fd:
06:75:47:17:06:1f:2b:5b:98:15:24:47:02:25:85:5d:c3:67:
f5:7d:ea:19:4f:99:e3:3b:94:31:d0:2a:7a:74:80:ec:61:84:
c9:39:19:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:50 2023 by rpki-client on console-ams.rpki-client.org