Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2dO8shFoNDW8bNvDq0HriuVygZ8.roa
File: 2dO8shFoNDW8bNvDq0HriuVygZ8.roa (raw, json)
Hash identifier: IgRyodAEzGxcTbkdOyFDc+LIT2vNNIr7FUT+lDxAIQY=
Subject key identifier: D9:D3:BC:B2:11:68:34:35:BC:6C:DB:C3:AB:41:EB:8A:E5:72:81:9F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01825DD2FDA5B94F3D86CA3450B3E4998838
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2dO8shFoNDW8bNvDq0HriuVygZ8.roa
Signing time: Tue 02 Aug 2022 09:11:24 +0000
ROA not before: Tue 02 Aug 2022 09:11:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 62.72.189.0/24 maxlen: 24
176.57.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5d:d2:fd:a5:b9:4f:3d:86:ca:34:50:b3:e4:99:88:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 2 09:11:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9d3bcb211683435bc6cdbc3ab41eb8ae572819f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9c:a0:6a:bd:24:c6:93:a5:c5:cc:76:6c:0d:
01:57:d4:f5:de:4d:a2:23:95:52:fd:29:63:54:a6:
e1:21:11:fc:63:b0:d8:a2:7d:09:0d:b0:4c:95:ff:
96:96:2b:6a:65:26:d8:2e:11:2a:d6:25:18:ff:cb:
cf:7e:3a:ba:7c:81:c4:a4:80:4f:2e:4b:52:31:c1:
e3:c4:85:45:a0:1a:1c:c8:c2:9a:39:6c:cb:1d:6f:
d2:3f:0e:dc:ea:7c:da:b9:97:c6:51:59:41:e9:81:
e0:f9:ce:92:88:d5:a9:92:ce:ab:f6:67:d1:d7:18:
33:10:08:23:82:9c:50:ad:74:13:d4:c4:97:d9:3c:
72:aa:d7:88:be:e5:df:85:8b:d4:f6:08:ef:2f:85:
3b:80:06:15:1a:13:52:a8:d9:15:be:bb:ec:09:b4:
d5:66:26:ed:10:7e:0e:63:48:0c:bf:ae:74:3c:36:
17:16:74:98:ea:85:0e:3e:90:73:92:fa:ae:ca:f7:
51:bc:4e:f0:1e:3a:d8:61:d8:77:97:1a:17:ba:bf:
4f:30:ff:7a:e2:dc:4b:d8:c1:97:7b:62:2f:d3:63:
94:3a:97:34:f7:4b:6c:3b:14:dc:0f:5e:17:d8:eb:
98:66:a0:5d:fe:6b:bb:25:cb:93:92:da:f1:80:9c:
0a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D3:BC:B2:11:68:34:35:BC:6C:DB:C3:AB:41:EB:8A:E5:72:81:9F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2dO8shFoNDW8bNvDq0HriuVygZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.189.0/24
176.57.48.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:cf:81:f8:7a:36:40:80:c2:36:e5:4c:96:4d:43:3e:05:60:
35:7b:fe:03:d5:cd:4f:23:7b:67:c6:d7:0d:fa:ac:c1:c4:cd:
09:55:dc:2c:83:da:81:2b:a6:66:86:7d:22:ea:22:09:60:43:
99:88:e8:26:af:cb:63:ff:15:bd:88:00:e4:d1:fa:25:98:9b:
5b:80:c4:62:bb:ca:f7:dd:d4:3c:7f:87:a4:ce:36:0f:0e:b1:
dd:26:6e:cd:be:7b:ec:de:ed:7e:2a:cb:fd:a6:7d:54:19:b3:
bf:2e:08:1b:a6:05:77:60:4f:15:98:61:fc:ec:59:00:8a:8a:
10:e6:e3:6a:69:bd:d0:36:ca:e9:84:fe:fa:8d:9c:c0:8a:78:
94:e0:01:9b:f5:0e:87:41:1b:c3:b5:66:d6:8e:13:51:61:4b:
3e:f1:4c:86:08:14:2a:6a:5e:29:a4:81:c5:99:5f:eb:7c:82:
af:c2:d5:e0:e2:c2:02:bd:f6:a7:3e:78:5a:8d:93:6d:fd:c4:
c9:8c:a9:0b:3f:de:36:5c:27:79:e2:04:c9:7b:0b:92:00:ac:
e9:51:20:18:2a:30:ca:5a:c9:8b:d8:4e:91:85:88:92:11:77:
9c:1c:d7:da:eb:ac:e5:ee:0d:4e:4c:1e:b8:57:c6:51:5b:ef:
cd:a2:a8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org