Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/31d275-acfc-4878-8f57-121d535085d6/1/AglG32WEhAKvXcf9JdgB8aIBoLI.roa
File: AglG32WEhAKvXcf9JdgB8aIBoLI.roa (raw, json)
Hash identifier: JOe9caOz7e6KzJ9/7IZ7YCkLxkg7bSLN4ahMhYzpqss=
Subject key identifier: 02:09:46:DF:65:84:84:02:AF:5D:C7:FD:25:D8:01:F1:A2:01:A0:B2
Certificate issuer: /CN=249b558c48550e06234c5ddffcaa1fcf2e9ac6ff
Certificate serial: 0259D8C1
Authority key identifier: 24:9B:55:8C:48:55:0E:06:23:4C:5D:DF:FC:AA:1F:CF:2E:9A:C6:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JJtVjEhVDgYjTF3f_Kofzy6axv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/31d275-acfc-4878-8f57-121d535085d6/1/AglG32WEhAKvXcf9JdgB8aIBoLI.roa
Signing time: Sat 01 Jan 2022 15:05:00 +0000
ROA not before: Sat 01 Jan 2022 15:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212961
IP address blocks: 62.112.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39442625 (0x259d8c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=249b558c48550e06234c5ddffcaa1fcf2e9ac6ff
Validity
Not Before: Jan 1 15:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=020946df65848402af5dc7fd25d801f1a201a0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8c:9e:4b:2a:ba:ee:91:e9:66:1d:1c:ca:9f:
6b:a4:95:e9:7b:34:da:09:43:91:2c:af:b6:7d:41:
a4:ac:5e:d8:0e:e5:61:d2:26:9b:21:da:71:63:bd:
ad:b2:6a:63:6c:b7:5f:cf:3e:1b:ce:2e:9e:1b:f8:
11:4c:30:fd:b8:99:7c:76:7c:ef:95:8f:3a:11:7a:
c1:10:aa:bc:44:3f:50:92:ac:94:67:e7:6e:a2:0a:
7a:52:ee:f9:cd:37:5a:d6:06:3e:43:36:1a:45:78:
d0:15:fe:da:1a:75:8b:59:01:14:b6:e2:e9:d3:6c:
0d:51:c3:cc:d6:23:25:a4:2a:a1:0e:06:dd:ef:01:
db:07:c0:1d:9c:74:4c:02:9d:94:a6:80:de:85:3f:
72:cb:da:96:85:69:78:d5:ae:4c:26:07:ca:f3:db:
7c:0e:70:5c:c7:e4:6d:bb:29:f0:99:dd:6c:f1:88:
3f:1e:b8:d5:70:8f:fd:4d:ed:18:58:d9:52:57:c5:
57:5f:29:86:db:e2:9c:d4:d1:f4:37:29:2f:f3:25:
cd:16:a3:2c:87:7f:0f:2c:18:8d:6c:ef:a6:13:6b:
60:6d:a8:53:84:2d:f3:38:5b:1a:5a:3e:0c:4d:47:
c5:71:7b:ea:0a:67:c3:a3:4b:93:f6:ae:b4:60:ff:
ea:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:09:46:DF:65:84:84:02:AF:5D:C7:FD:25:D8:01:F1:A2:01:A0:B2
X509v3 Authority Key Identifier:
keyid:24:9B:55:8C:48:55:0E:06:23:4C:5D:DF:FC:AA:1F:CF:2E:9A:C6:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JJtVjEhVDgYjTF3f_Kofzy6axv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/31d275-acfc-4878-8f57-121d535085d6/1/AglG32WEhAKvXcf9JdgB8aIBoLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/31d275-acfc-4878-8f57-121d535085d6/1/JJtVjEhVDgYjTF3f_Kofzy6axv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.37.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:6d:84:79:a4:54:20:18:41:18:04:87:2c:44:19:ad:4b:a7:
2d:e7:a6:20:c6:8c:37:7a:5f:24:e6:b2:27:64:80:ce:6f:dc:
7d:9c:b3:3f:13:53:77:ab:25:19:06:22:e4:63:3b:9d:bc:e1:
1f:a6:9e:ba:23:b7:f9:c9:87:69:44:fb:c5:fc:2d:39:ec:e7:
f5:ec:50:fd:c0:eb:fa:4b:8d:d2:80:1b:d1:ee:76:cd:d6:7d:
58:a6:1d:ba:76:5d:d1:63:63:56:8f:cb:46:8e:e1:8b:43:6f:
12:96:2f:3d:b2:c8:85:91:a3:a3:f2:73:72:cd:bf:8a:26:5a:
40:5b:d9:af:78:c0:4d:24:24:bd:d7:42:ef:4f:f0:ea:29:62:
69:6b:51:9f:8f:3a:b4:ca:a8:92:07:d1:c1:53:32:51:ef:58:
f9:7a:b4:40:69:c2:fd:b3:d1:0f:6d:0b:7a:91:5a:2b:68:c1:
a9:b5:cb:eb:56:91:22:24:10:1a:95:28:47:d8:f9:61:ce:bd:
06:4f:02:25:95:6a:4a:5f:06:f9:bd:ab:bb:05:a5:d3:3e:0d:
c4:3e:2f:48:24:dd:35:61:d9:fd:41:88:23:68:22:17:41:b1:
42:6f:42:f9:7a:2e:aa:e2:42:77:dd:69:ac:a0:b3:95:51:bd:
d1:05:aa:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:11 2024 by rpki-client on console-ams.rpki-client.org