Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/64Lu2Cv-FOv5yUglT4y0AJAajtY.roa
File: 64Lu2Cv-FOv5yUglT4y0AJAajtY.roa (raw, json)
Hash identifier: 7iOW539GvRqL7mwwd9bhyQE/DtZZ7jWUuWsdVOOdPIQ=
Subject key identifier: EB:82:EE:D8:2B:FE:14:EB:F9:C9:48:25:4F:8C:B4:00:90:1A:8E:D6
Certificate issuer: /CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5
Certificate serial: 01CE1CB0
Authority key identifier: 1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/64Lu2Cv-FOv5yUglT4y0AJAajtY.roa
Signing time: Sat 01 Jan 2022 04:01:11 +0000
ROA not before: Sat 01 Jan 2022 04:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5602
IP address blocks: 62.100.76.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30284976 (0x1ce1cb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5
Validity
Not Before: Jan 1 04:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb82eed82bfe14ebf9c948254f8cb400901a8ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:8a:fe:a2:a1:08:b3:fe:0c:ba:d4:2b:6f:3c:
29:38:78:08:a3:08:66:e5:82:53:e8:a5:f9:74:e4:
88:80:24:1a:61:48:36:49:f9:cb:ad:f6:d4:d7:6f:
a9:7c:c6:11:17:d9:63:b7:01:d4:0f:d7:a1:8d:d6:
44:e5:69:a0:64:a1:05:f6:0c:13:4c:1f:2e:7a:5e:
0e:45:14:e7:9c:c3:21:14:1f:96:95:9f:32:fd:73:
04:cd:6f:37:73:a9:40:b4:91:93:dc:36:e6:a5:47:
cb:ba:73:a2:4d:89:b3:18:97:68:a6:95:d0:df:17:
8b:60:04:51:ac:29:a4:f0:dc:7a:49:de:53:4a:51:
f9:f7:b1:eb:1e:d8:d8:3b:10:ff:ce:1b:41:c5:e4:
50:ca:bf:15:05:a9:dd:fc:d3:81:97:cf:54:16:af:
e2:96:4a:20:fc:35:54:40:2e:1a:52:ae:8b:2e:8f:
de:b0:70:82:0f:0e:95:0a:2f:d8:31:dd:98:f4:dc:
b7:27:0f:b0:86:14:2c:20:e8:ab:d8:1b:78:48:b1:
3f:e8:e1:ab:7e:f9:c6:b5:07:d1:b2:d6:ae:ba:81:
62:3b:59:10:19:e2:06:d2:fc:37:24:02:0c:73:83:
4b:9d:21:1e:21:59:2c:02:86:aa:14:44:24:5a:8a:
3b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:82:EE:D8:2B:FE:14:EB:F9:C9:48:25:4F:8C:B4:00:90:1A:8E:D6
X509v3 Authority Key Identifier:
keyid:1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/64Lu2Cv-FOv5yUglT4y0AJAajtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.76.0/23
Signature Algorithm: sha256WithRSAEncryption
60:93:ee:67:c5:ec:24:f1:50:f6:19:be:42:35:26:8b:ae:37:
92:e6:21:84:69:56:9b:2e:73:35:9c:e6:13:d3:52:2b:c4:6d:
b6:a1:1a:c3:d9:10:8b:69:de:49:4f:37:6c:20:64:e7:fe:2f:
f9:4b:72:32:ce:68:f1:6f:d7:cc:4d:6b:9c:d0:2a:8f:ac:d5:
69:07:db:18:85:b3:95:52:61:d3:9c:87:d5:14:14:e8:4e:27:
db:0c:73:5e:98:cd:d3:b8:3b:db:02:a4:02:6e:0b:bd:84:eb:
da:5d:6e:0a:55:fb:f3:a6:14:a1:19:4d:0e:7a:72:2c:94:a2:
52:3f:2a:ec:7f:40:29:5c:b6:13:ba:32:04:42:af:4b:e0:fe:
94:bb:f8:27:68:ed:a5:c3:89:3e:33:1d:2e:3a:50:ce:a2:44:
ca:6e:6c:77:e9:c9:26:bb:1f:21:9b:40:63:8e:17:4c:01:81:
87:b8:a4:0f:ce:88:39:09:65:28:0d:29:c7:e0:32:d6:f0:d1:
7d:d9:df:45:fc:f9:5a:c6:ef:f5:d6:81:3a:d0:e6:c3:90:d5:
32:ed:62:76:cd:10:57:5a:ba:9e:7e:24:92:a8:62:11:ae:f5:
ec:06:47:f9:b7:72:ee:1e:69:a2:9c:44:24:f9:7f:6d:bb:a9:
54:77:85:1e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAc4csDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZmM0OTI3YWIxOTRhZTEyMzdmZGUyZDNiZWY2OTAzODg5M2YwZGM1MB4XDTIyMDEw
MTA0MDExMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWI4MmVlZDgyYmZl
MTRlYmY5Yzk0ODI1NGY4Y2I0MDA5MDFhOGVkNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO+K/qKhCLP+DLrUK288KTh4CKMIZuWCU+il+XTkiIAkGmFI
Nkn5y6321NdvqXzGERfZY7cB1A/XoY3WROVpoGShBfYME0wfLnpeDkUU55zDIRQf
lpWfMv1zBM1vN3OpQLSRk9w25qVHy7pzok2JsxiXaKaV0N8Xi2AEUawppPDcekne
U0pR+fex6x7Y2DsQ/84bQcXkUMq/FQWp3fzTgZfPVBav4pZKIPw1VEAuGlKuiy6P
3rBwgg8OlQov2DHdmPTctycPsIYULCDoq9gbeEixP+jhq375xrUH0bLWrrqBYjtZ
EBniBtL8NyQCDHODS50hHiFZLAKGqhREJFqKO2UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTrgu7YK/4U6/nJSCVPjLQAkBqO1jAfBgNVHSMEGDAWgBQfxJJ6sZSuEjf9
4tO+9pA4iT8NxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0g4U1NlckdVcmhJM19lTFR2dmFRT0lrX0RjVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvOTQzZDVkLTU2MGMtNDMxNC1hZjgyLThiOGEwMWJkNzQxNC8x
LzY0THUyQ3YtRk92NXlVZ2xUNHkwQUpBYWp0WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
OTQzZDVkLTU2MGMtNDMxNC1hZjgyLThiOGEwMWJkNzQxNC8xL0g4U1NlckdVcmhJ
M19lTFR2dmFRT0lrX0RjVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAT5kTDANBgkqhkiG9w0BAQsFAAOC
AQEAYJPuZ8XsJPFQ9hm+QjUmi643kuYhhGlWmy5zNZzmE9NSK8RttqEaw9kQi2ne
SU83bCBk5/4v+UtyMs5o8W/XzE1rnNAqj6zVaQfbGIWzlVJh05yH1RQU6E4n2wxz
XpjN07g72wKkAm4LvYTr2l1uClX786YUoRlNDnpyLJSiUj8q7H9AKVy2E7oyBEKv
S+D+lLv4J2jtpcOJPjMdLjpQzqJEym5sd+nJJrsfIZtAY44XTAGBh7ikD86IOQll
KA0px+Ay1vDRfdnfRfz5Wsbv9daBOtDmw5DVMu1ids0QV1q6nn4kkqhiEa717AZH
+bdy7h5popxEJPl/bbupVHeFHg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:46 2023 by rpki-client on console-fra.rpki-client.org