Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/S0OkNp7_VJrpMSJWwO7x32GDfXU.roa
File: S0OkNp7_VJrpMSJWwO7x32GDfXU.roa (raw, json)
Hash identifier: RzDAev+t7sEGg/lhJmbce2nfpYNUgsIT4/9z49mIhcM=
Subject key identifier: 4B:43:A4:36:9E:FF:54:9A:E9:31:22:56:C0:EE:F1:DF:61:83:7D:75
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 03B6521C
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/S0OkNp7_VJrpMSJWwO7x32GDfXU.roa
Signing time: Sat 01 Jan 2022 03:54:35 +0000
ROA not before: Sat 01 Jan 2022 03:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1902
IP address blocks: 62.152.128.0/20 maxlen: 20
62.152.142.0/24 maxlen: 24
62.152.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62280220 (0x3b6521c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jan 1 03:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b43a4369eff549ae9312256c0eef1df61837d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:67:25:b1:6b:1a:6c:c5:74:13:4b:17:3a:28:
00:af:39:78:17:3f:44:9b:4a:ce:e0:43:89:5c:0a:
ba:2a:1e:28:cb:d0:6c:a6:42:3a:3f:17:4f:10:27:
bb:b4:89:16:c5:db:1a:2b:67:9e:da:e4:96:4d:98:
95:83:1e:26:65:51:7c:ba:d6:c2:0a:8a:2c:87:a2:
29:67:a5:8f:22:7b:52:62:73:06:16:14:ed:52:5d:
bc:ac:17:6f:3b:e3:37:f3:32:ab:55:87:ea:72:76:
08:75:4b:8e:49:cb:4e:6e:23:3e:8b:48:be:96:5d:
2f:f2:7b:ef:f2:be:94:9d:30:97:d1:c0:d0:34:44:
81:6b:8a:86:00:74:ee:ec:ce:74:21:48:6e:d3:13:
1e:bd:cb:05:77:16:75:89:57:51:49:45:52:1b:07:
a6:27:5a:83:30:1d:42:0f:2b:ec:b6:66:f1:dd:31:
21:a3:4f:88:83:83:ce:18:08:94:10:dd:a6:11:77:
20:9f:7b:bd:41:96:42:cd:f8:ea:15:7c:bc:9d:13:
87:ac:d0:4d:07:d4:e4:0b:79:50:bc:d9:41:e5:9d:
42:97:67:16:2b:0a:f9:fe:79:55:ec:ef:c1:88:30:
61:98:75:fb:20:14:66:62:bf:e0:bf:27:10:54:c1:
b0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:43:A4:36:9E:FF:54:9A:E9:31:22:56:C0:EE:F1:DF:61:83:7D:75
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/S0OkNp7_VJrpMSJWwO7x32GDfXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.152.128.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:88:1d:ed:cc:bd:5d:2c:8a:50:72:81:07:99:dd:67:24:88:
2d:d2:61:fa:a2:d8:01:b7:ee:a9:76:dc:ac:fc:ce:d2:f5:c5:
27:83:ec:88:0e:ac:f2:38:b9:53:9b:90:2d:56:14:95:34:9e:
18:1a:c3:13:e5:cc:17:45:79:01:e1:5f:84:45:b7:3e:57:f8:
26:02:f3:58:52:6b:e5:a2:e1:98:b2:e5:b0:f1:50:c9:2c:60:
94:7d:b3:0e:61:01:40:19:b3:2e:e6:8d:9d:46:44:85:5e:a2:
93:7a:8a:29:29:7f:8a:cc:38:f1:2f:72:f6:63:6c:18:35:f4:
be:5e:5e:6b:b4:6c:3f:9b:eb:c8:95:22:88:31:84:66:49:ba:
6b:b8:62:1e:1c:ed:02:ba:a2:c4:e6:be:31:44:3d:ff:8f:56:
2e:e5:df:37:07:9a:b9:7c:f8:28:97:ea:1d:a0:e8:c7:89:39:
80:6f:b5:8f:2a:a1:d5:e3:16:7c:05:e5:fb:45:6c:ee:2e:1f:
9f:32:18:0e:c4:98:6c:68:5e:86:b1:e0:4b:f1:98:6a:f6:f4:
ad:19:b0:fd:1a:d3:0b:01:bf:75:c0:f7:fa:2c:80:81:9e:66:
3b:8e:cb:bf:61:dc:e8:e3:b2:9d:19:61:2b:b7:d3:1f:c0:2f:
0f:da:03:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org