Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3582db-68c0-497b-9c25-e6352c4b2522/1/jfn96c4sK6MziGU5kT6Oi-5pUNg.roa
File: jfn96c4sK6MziGU5kT6Oi-5pUNg.roa (raw, json)
Hash identifier: hB0R0Qin2Yryk9v69mHTZRAdgElRV7M4qqFnvWEPOrg=
Subject key identifier: 8D:F9:FD:E9:CE:2C:2B:A3:33:88:65:39:91:3E:8E:8B:EE:69:50:D8
Certificate issuer: /CN=98d426f821f5aa231e3d00fc0f9869b89c647fc8
Certificate serial: B24D15
Authority key identifier: 98:D4:26:F8:21:F5:AA:23:1E:3D:00:FC:0F:98:69:B8:9C:64:7F:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mNQm-CH1qiMePQD8D5hpuJxkf8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3582db-68c0-497b-9c25-e6352c4b2522/1/jfn96c4sK6MziGU5kT6Oi-5pUNg.roa
Signing time: Sat 01 Jan 2022 02:59:16 +0000
ROA not before: Sat 01 Jan 2022 02:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 62.233.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11685141 (0xb24d15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98d426f821f5aa231e3d00fc0f9869b89c647fc8
Validity
Not Before: Jan 1 02:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8df9fde9ce2c2ba333886539913e8e8bee6950d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:46:c1:e9:74:fe:c4:61:8f:c7:bd:2e:f5:
a3:14:53:c2:51:4c:dc:9c:74:05:47:76:e2:fb:f8:
e6:c6:38:c8:f2:af:d8:c5:4e:a2:ad:de:06:9a:54:
c6:a9:d0:bf:37:c5:79:c2:74:63:6b:fa:86:45:74:
79:9c:7c:8f:df:f2:a5:70:b2:1f:d5:4a:92:10:81:
b2:93:4a:be:4c:5c:9b:a3:26:5e:61:1c:db:07:5f:
53:59:18:2f:a3:d5:d9:11:61:9b:ec:ab:6f:0f:a1:
9d:1c:0c:92:61:2d:44:a5:da:59:5e:69:eb:8f:c3:
df:17:88:d4:c9:27:67:34:45:dc:61:9c:b8:43:4b:
f0:89:b0:3a:32:77:2a:19:cd:e4:5a:1c:99:b4:1c:
11:80:f2:71:ae:20:7a:ba:38:f6:7b:e2:8e:64:28:
e4:15:2d:be:9d:28:a0:80:90:8a:75:c6:5d:f2:12:
94:97:cd:81:a2:76:12:e5:93:7b:a1:7f:d8:6e:f3:
ff:be:c1:fb:a4:6d:aa:89:6a:8c:c7:c2:fd:9b:26:
2c:20:53:d2:b4:25:ee:1d:33:df:2e:fe:2d:82:fe:
8e:bd:d6:5e:90:28:6d:a5:32:0a:b8:2f:e4:66:e6:
56:11:0e:c5:88:f3:90:ee:cc:f2:c5:c7:ad:7a:b6:
a2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F9:FD:E9:CE:2C:2B:A3:33:88:65:39:91:3E:8E:8B:EE:69:50:D8
X509v3 Authority Key Identifier:
keyid:98:D4:26:F8:21:F5:AA:23:1E:3D:00:FC:0F:98:69:B8:9C:64:7F:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mNQm-CH1qiMePQD8D5hpuJxkf8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3582db-68c0-497b-9c25-e6352c4b2522/1/jfn96c4sK6MziGU5kT6Oi-5pUNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3582db-68c0-497b-9c25-e6352c4b2522/1/mNQm-CH1qiMePQD8D5hpuJxkf8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.42.0/24
Signature Algorithm: sha256WithRSAEncryption
34:dd:03:eb:91:b9:f3:23:20:6e:58:37:b5:90:6f:fc:1c:fe:
52:d8:05:ee:71:f5:91:7a:80:b7:97:24:5b:5f:75:83:7f:8c:
19:ee:36:80:30:49:c1:5a:2c:a3:40:fa:cf:d0:73:40:05:bc:
6d:50:2d:44:0a:bd:98:6c:10:ff:73:47:89:55:d6:26:d7:40:
ec:d4:c0:48:5a:07:60:3a:d3:ff:18:d1:9f:bd:30:e2:72:3a:
3e:59:9f:42:1c:36:34:d9:b2:d2:f1:06:46:33:58:6a:8e:13:
5a:75:5f:92:8e:5f:9b:3f:31:e0:ca:5f:2e:2c:4a:62:67:c1:
d3:e6:b2:69:65:26:30:92:d4:af:7b:75:0a:d1:73:50:e9:b5:
61:53:65:2d:0a:eb:5b:48:c8:0f:a1:0b:42:b5:5e:64:1f:f0:
30:d0:6c:61:47:7e:ed:2d:d4:f7:2f:99:d7:df:8b:5a:ba:88:
98:d2:65:36:7e:eb:99:a5:5f:b9:4b:7d:c6:af:c2:90:e5:8e:
64:45:c4:79:bd:57:a2:bd:95:91:dd:26:dd:93:2a:9f:9d:9a:
13:77:42:df:59:bf:5f:44:3e:5f:c8:42:05:16:ee:47:da:86:
6c:95:ad:6c:1e:6f:a7:07:c5:47:6e:d3:5e:af:f8:92:cb:b4:
06:8a:98:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:53 2023 by rpki-client on console-ams.rpki-client.org