Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/s73qq7Zf0D4O8mD8m7ghq8lVFh4.roa
File: s73qq7Zf0D4O8mD8m7ghq8lVFh4.roa (raw, json)
Hash identifier: vHRvfZZL/IdJBncHLB9S2SGQF2hIVYk1v9ZD0/WArSs=
Subject key identifier: B3:BD:EA:AB:B6:5F:D0:3E:0E:F2:60:FC:9B:B8:21:AB:C9:55:16:1E
Certificate issuer: /CN=6255f073ffb04727d15cd758399c6c613faef10e
Certificate serial: 8644E0
Authority key identifier: 62:55:F0:73:FF:B0:47:27:D1:5C:D7:58:39:9C:6C:61:3F:AE:F1:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YlXwc_-wRyfRXNdYOZxsYT-u8Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/s73qq7Zf0D4O8mD8m7ghq8lVFh4.roa
Signing time: Sat 01 Jan 2022 02:53:36 +0000
ROA not before: Sat 01 Jan 2022 02:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 62.3.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8799456 (0x8644e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6255f073ffb04727d15cd758399c6c613faef10e
Validity
Not Before: Jan 1 02:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3bdeaabb65fd03e0ef260fc9bb821abc955161e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:eb:0d:69:69:84:fc:61:94:ed:e6:40:d5:81:
9f:a3:4c:6f:b4:c3:92:29:ec:cd:c4:30:d8:5a:ef:
17:44:98:6b:f5:70:6f:da:7d:4d:75:a2:40:f0:61:
d9:65:8c:1e:37:02:69:7a:e4:22:7d:89:bb:05:4c:
c3:45:09:cc:56:b8:e9:5f:ed:1b:16:a2:d7:1d:99:
12:04:ba:45:53:ee:83:72:2d:24:42:d0:2f:5b:71:
ee:59:69:fa:67:cd:8d:f9:f8:33:31:0f:5f:0c:04:
e3:cd:2f:2b:31:d8:5b:48:83:56:1f:5f:34:a4:aa:
7e:15:c8:70:ef:97:b5:64:ca:18:1c:9b:fc:9a:ae:
85:e0:aa:8e:55:a6:10:f6:23:17:f7:fe:4d:86:2c:
df:d5:67:f4:15:86:9e:e5:04:53:76:7a:e6:ef:2e:
a1:4f:cb:b6:0e:b0:4d:53:e9:a6:7b:08:3f:05:fd:
d3:ef:eb:c2:44:c0:ed:8c:e2:84:af:04:26:42:21:
dd:38:44:ee:3d:b3:8d:29:c4:68:f7:14:6e:c2:79:
50:04:0a:28:fc:ec:9a:c7:c5:ad:13:50:f5:57:cc:
35:9b:95:6e:ad:1f:88:a2:7f:cd:ce:e6:57:cf:7c:
95:7d:20:71:a6:51:53:7a:88:ce:4c:cc:ce:f2:11:
a4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BD:EA:AB:B6:5F:D0:3E:0E:F2:60:FC:9B:B8:21:AB:C9:55:16:1E
X509v3 Authority Key Identifier:
keyid:62:55:F0:73:FF:B0:47:27:D1:5C:D7:58:39:9C:6C:61:3F:AE:F1:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YlXwc_-wRyfRXNdYOZxsYT-u8Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/s73qq7Zf0D4O8mD8m7ghq8lVFh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/YlXwc_-wRyfRXNdYOZxsYT-u8Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.26.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:99:e0:b0:84:11:41:94:44:87:9a:54:43:eb:bc:98:90:f0:
95:f7:3f:da:b8:26:0b:4b:54:08:75:36:4b:2d:69:32:f6:23:
84:3c:ec:6d:d9:90:61:a6:38:fc:d5:24:08:5b:1b:69:7f:8a:
00:ee:fd:50:a0:5f:a9:04:d4:07:22:6b:e9:6b:9c:3b:81:df:
70:02:2b:f6:71:f3:6c:6a:e3:03:ca:0b:ca:7d:0e:75:e1:93:
9b:e4:6a:ff:a2:ad:a8:ee:4d:91:5f:cc:df:a8:df:7f:c2:b1:
f3:55:ad:30:d7:69:96:99:3b:f6:00:7f:7e:45:c5:12:64:de:
55:b2:fd:39:36:2a:cc:87:57:c8:f5:02:06:dc:41:67:58:9e:
22:09:e6:02:ec:c8:d0:19:65:b0:57:96:6a:95:c1:e4:ed:b0:
6c:6a:0d:dc:1b:5f:ef:15:d8:fe:3d:9f:8c:c2:11:6e:ec:60:
dc:2d:bd:82:e7:8a:3f:02:a2:4c:67:09:dc:35:f5:a4:80:eb:
cb:8f:09:19:09:0a:5f:ff:3a:3a:57:e7:54:6c:12:28:6b:90:
7e:56:ee:b0:22:9a:81:65:28:69:ec:ef:76:48:8e:d8:29:dc:
ac:e8:ac:5d:d7:54:36:24:51:ef:0c:e2:58:fa:70:d8:78:3a:
ef:72:a9:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org