Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2GTXyyK86tF9Jn5h4PV5gXVPR94.roa
File: 2GTXyyK86tF9Jn5h4PV5gXVPR94.roa (raw, json)
Hash identifier: kehkHtf3m5WzrjNfmJ8CGCrsYyBWfR4ZUhoo5IKu36s=
Subject key identifier: D8:64:D7:CB:22:BC:EA:D1:7D:26:7E:61:E0:F5:79:81:75:4F:47:DE
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 027F9D4B
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2GTXyyK86tF9Jn5h4PV5gXVPR94.roa
Signing time: Thu 24 Mar 2022 06:34:35 +0000
ROA not before: Thu 24 Mar 2022 06:34:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 62.72.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41917771 (0x27f9d4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Mar 24 06:34:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d864d7cb22bcead17d267e61e0f57981754f47de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:64:3f:1b:37:a6:19:48:27:d7:04:49:67:ac:
6e:96:a6:17:6a:3b:f3:06:03:fe:28:ee:e8:cc:ce:
2a:ce:b9:cd:b7:46:4b:f7:10:19:f0:19:fe:06:55:
e7:21:db:49:c7:83:60:ac:82:bc:ce:4c:89:89:de:
8b:7e:60:b7:32:9a:92:1f:5f:1b:2b:f5:aa:79:2e:
95:d7:4b:60:92:3a:26:4a:32:e4:6c:84:2c:94:44:
1b:a9:8b:01:2a:f3:14:e3:22:05:b3:9d:97:92:e8:
f9:a7:56:fc:8c:97:b7:e1:25:96:2f:c5:98:1c:38:
84:26:b1:c8:c2:30:2a:b1:44:8f:43:e7:e8:74:e7:
e8:2c:30:ee:f2:90:8a:6f:db:d5:9b:b2:37:e8:8e:
8d:c5:36:36:92:57:83:65:65:ef:db:07:8b:4b:7f:
a2:e6:0d:8a:4b:db:90:18:bc:b6:f5:82:14:02:20:
e3:77:f9:b6:ef:00:79:46:72:e0:fc:00:dd:20:e4:
bf:47:6c:f5:da:27:1f:df:95:53:d0:bf:60:1e:68:
1f:5e:2a:f1:44:df:0e:a4:37:8e:a7:36:c7:35:b4:
d3:48:9f:7a:e0:16:4c:8d:3c:0f:78:e2:de:f4:8f:
c7:4a:1b:eb:d7:94:f2:82:f4:17:f9:19:d4:e3:50:
ad:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:64:D7:CB:22:BC:EA:D1:7D:26:7E:61:E0:F5:79:81:75:4F:47:DE
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2GTXyyK86tF9Jn5h4PV5gXVPR94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.183.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:8e:66:ed:d2:2b:3a:00:10:eb:f2:a6:cd:d8:4e:46:a6:7e:
67:0c:95:99:e2:ac:44:50:81:b3:17:bf:3b:e0:3f:3f:14:db:
06:6c:44:d4:64:71:0c:21:38:bd:b8:e0:68:18:41:3a:6b:26:
00:45:3e:91:4a:59:c3:6c:d1:10:47:e9:61:63:7c:f5:9d:47:
26:37:07:e7:ed:72:c1:10:5a:98:5e:41:5a:0c:65:7c:5b:64:
d3:1d:b2:97:45:87:71:19:fa:f9:5a:36:f0:42:3f:a8:f9:5b:
34:48:9a:bb:8e:f6:56:2d:a2:52:1a:d6:ef:db:66:1d:18:51:
80:69:5b:b5:24:56:b7:2a:72:c0:d2:11:9f:11:a1:34:a0:28:
58:5b:be:25:3e:8b:49:e2:a5:f0:46:43:d8:81:be:c6:01:6b:
2b:bb:76:a7:bf:e2:c8:c3:cd:5b:ea:6c:13:65:80:ea:bf:80:
a1:0f:67:23:00:ce:c6:fd:65:ff:eb:3d:0a:09:9d:11:eb:16:
9b:69:58:b6:5f:db:ab:da:c2:e2:39:b8:ed:0d:42:22:62:9a:
92:0a:a2:18:72:c8:2f:e1:26:4f:c3:c8:d8:32:74:72:49:0e:
47:dc:33:84:0a:94:f0:8f:fb:13:ba:f9:f3:48:2d:0a:5d:c3:
93:f0:65:f3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAn+dSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NWYxOTA3NDU0OGQyYTI5NGU0Mzg1ZDk1Y2Q2NzUyNDkwZWU0NmQ3MB4XDTIyMDMy
NDA2MzQzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDg2NGQ3Y2IyMmJj
ZWFkMTdkMjY3ZTYxZTBmNTc5ODE3NTRmNDdkZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALZkPxs3phlIJ9cESWesbpamF2o78wYD/iju6MzOKs65zbdG
S/cQGfAZ/gZV5yHbSceDYKyCvM5MiYnei35gtzKakh9fGyv1qnkulddLYJI6Jkoy
5GyELJREG6mLASrzFOMiBbOdl5Lo+adW/IyXt+Elli/FmBw4hCaxyMIwKrFEj0Pn
6HTn6Cww7vKQim/b1ZuyN+iOjcU2NpJXg2Vl79sHi0t/ouYNikvbkBi8tvWCFAIg
43f5tu8AeUZy4PwA3SDkv0ds9donH9+VU9C/YB5oH14q8UTfDqQ3jqc2xzW000if
euAWTI08D3ji3vSPx0ob69eU8oL0F/kZ1ONQrccCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTYZNfLIrzq0X0mfmHg9XmBdU9H3jAfBgNVHSMEGDAWgBQV8ZB0VI0qKU5D
hdlc1nUkkO5G1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZmR1FkRlNOS2lsT1E0WFpYTloxSkpEdVJ0Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMDA2MjQxLTgwOGQtNGE0OS1iMGNkLTU2MjQ0ZjQzMGRjYy8x
LzJHVFh5eUs4NnRGOUpuNWg0UFY1Z1hWUFI5NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MDA2MjQxLTgwOGQtNGE0OS1iMGNkLTU2MjQ0ZjQzMGRjYy8xL0ZmR1FkRlNOS2ls
T1E0WFpYTloxSkpEdVJ0Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD5ItzANBgkqhkiG9w0BAQsFAAOC
AQEAv45m7dIrOgAQ6/KmzdhORqZ+ZwyVmeKsRFCBsxe/O+A/PxTbBmxE1GRxDCE4
vbjgaBhBOmsmAEU+kUpZw2zREEfpYWN89Z1HJjcH5+1ywRBamF5BWgxlfFtk0x2y
l0WHcRn6+Vo28EI/qPlbNEiau472Vi2iUhrW79tmHRhRgGlbtSRWtypywNIRnxGh
NKAoWFu+JT6LSeKl8EZD2IG+xgFrK7t2p7/iyMPNW+psE2WA6r+AoQ9nIwDOxv1l
/+s9CgmdEesWm2lYtl/bq9rC4jm47Q1CImKakgqiGHLIL+EmT8PI2DJ0ckkOR9wz
hAqU8I/7E7r580gtCl3Dk/Bl8w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org