Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/d-V2OWmJkS4KoxdodnPmqDzJLJw.roa
File: d-V2OWmJkS4KoxdodnPmqDzJLJw.roa (raw, json)
Hash identifier: B4oBEfIuLppm9Dbg3WSVP4WTGmNtplZ9GQEHao2EU4E=
Subject key identifier: 77:E5:76:39:69:89:91:2E:0A:A3:17:68:76:73:E6:A8:3C:C9:2C:9C
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 3789A9B9
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/d-V2OWmJkS4KoxdodnPmqDzJLJw.roa
Signing time: Sat 01 Jan 2022 14:01:20 +0000
ROA not before: Sat 01 Jan 2022 14:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56804
IP address blocks: 62.0.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931768761 (0x3789a9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 1 14:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77e576396989912e0aa317687673e6a83cc92c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:68:2a:ad:a3:c6:c5:b1:27:34:09:cd:3c:ef:
22:63:d9:04:57:e2:d4:48:21:fb:b6:3f:59:ff:25:
f9:e0:f4:84:bd:94:3f:ff:a7:d7:2f:05:b1:fb:36:
82:59:3d:b9:db:11:eb:f4:11:d9:36:73:f9:7d:12:
52:4e:1b:80:e1:c0:e9:df:77:b4:02:f2:df:c5:57:
eb:c3:07:b8:89:83:09:34:1c:0e:fc:14:5e:f1:23:
82:d4:c4:6b:c5:cf:b1:eb:fe:1c:b4:e3:5f:ee:07:
8e:58:93:e3:b3:cc:80:24:8a:05:be:7f:1f:c3:7f:
59:86:fa:09:41:f3:32:59:e8:63:f8:70:b4:81:86:
ed:e2:1c:76:c4:ae:7e:c9:51:cf:41:6a:2f:d2:95:
11:b1:d7:39:39:39:14:e5:e9:0f:ba:28:c4:86:49:
39:65:c1:d0:c4:3a:71:f4:29:6e:e2:24:08:fc:ca:
43:16:cc:02:2d:b6:7a:16:d3:8a:15:a3:71:5b:1e:
46:21:4a:bd:7b:0f:47:c5:07:3e:e8:07:9c:3b:d4:
72:09:46:a1:2b:f8:fb:67:1e:14:d4:84:d0:dd:f0:
1b:a0:f0:46:ed:e9:7f:52:a3:29:6d:c1:22:61:97:
a0:03:e0:67:8d:32:0f:4c:ab:34:81:19:99:13:a7:
d6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E5:76:39:69:89:91:2E:0A:A3:17:68:76:73:E6:A8:3C:C9:2C:9C
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/d-V2OWmJkS4KoxdodnPmqDzJLJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.0.4.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e5:5e:5f:72:b5:f5:af:5c:f6:e5:55:a5:f9:c1:b9:e6:50:
1f:5d:d5:0c:c7:4d:3e:97:d0:53:fe:ab:0a:cb:d8:f0:62:96:
c9:07:53:2a:f3:d3:f0:27:f4:fe:5a:af:d1:77:21:2f:39:fa:
5a:cf:e5:0c:65:c3:a2:ba:ff:94:47:f4:17:3c:61:5b:b6:05:
98:85:67:d2:c8:21:3b:c7:d1:f6:d8:51:99:1a:4c:0c:25:b6:
87:4d:e4:65:cc:f6:7d:b2:35:ee:ae:7a:89:c6:6f:12:76:2a:
d7:75:67:5e:c3:bf:bf:7c:1d:e2:8a:3c:a2:eb:95:9a:9d:e1:
33:73:98:32:42:25:6d:c3:91:a0:e6:c4:ea:80:3e:00:a3:5f:
68:df:3c:4d:8d:38:42:c5:15:98:15:f8:41:56:44:e3:66:4c:
7f:d8:a6:8b:13:5b:04:22:b2:37:f4:d5:81:77:e7:d0:c2:31:
9b:cf:db:0a:9f:42:bc:09:ad:03:9b:49:d8:30:32:91:25:89:
c0:b1:80:64:ee:3a:af:37:db:33:5f:d1:c5:86:ea:78:36:dc:
36:6b:b5:bf:96:3b:da:ea:5b:99:25:35:f7:d2:6a:00:8f:06:
c6:48:ea:07:d6:fe:9a:0c:55:09:99:05:a3:21:26:75:5d:b4:
39:9a:8c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:56 2023 by rpki-client on console-fra.rpki-client.org