Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/87ZOomKNklvYqdx4e-dnEGVsV-4.roa
File: 87ZOomKNklvYqdx4e-dnEGVsV-4.roa (raw, json)
Hash identifier: V1Uqv4n3Mq3THS7+3v0n3xsk/pDKs+JGm+KN6ayyrcQ=
Subject key identifier: F3:B6:4E:A2:62:8D:92:5B:D8:A9:DC:78:7B:E7:67:10:65:6C:57:EE
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 03951C17
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/87ZOomKNklvYqdx4e-dnEGVsV-4.roa
Signing time: Fri 01 Jul 2022 07:20:01 +0000
ROA not before: Fri 01 Jul 2022 07:20:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13737
IP address blocks: 62.72.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60103703 (0x3951c17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jul 1 07:20:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3b64ea2628d925bd8a9dc787be76710656c57ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6c:a6:a1:af:26:d8:e2:3c:97:c7:e4:b1:af:
bf:9a:54:73:a2:c8:a1:c0:18:b9:d4:43:8b:ee:80:
bd:90:0b:a2:3a:b6:50:76:64:02:47:3a:26:ca:8c:
f3:50:e4:c3:5d:a1:4a:86:c8:ff:66:f8:81:40:70:
76:e1:80:52:08:5d:5f:a9:2a:1b:39:83:32:f3:d0:
d3:64:8a:4d:5e:fa:93:f2:1a:22:11:a0:4d:d6:0e:
ee:47:f7:5f:fd:3c:c7:81:d6:f7:dc:9f:f3:e0:6a:
ce:80:7f:20:4e:06:f0:bc:04:db:8a:69:bf:23:0e:
e2:43:db:13:7a:f0:1c:f7:be:c7:08:2b:47:0d:01:
3e:19:86:40:11:4d:75:ad:e3:6e:29:20:69:6f:8a:
62:83:43:1e:f3:bd:aa:a4:c6:52:2d:c2:00:6b:bf:
f6:ad:65:e5:c7:86:0b:80:c8:b6:4f:82:c3:5e:bd:
06:8c:71:be:6a:83:08:f7:f7:ec:7f:4b:d3:74:15:
1a:96:03:44:26:b4:a2:d9:e2:54:68:51:38:80:6a:
46:a1:c3:91:0c:3e:0b:8c:52:9a:63:18:8f:85:11:
9d:c8:45:86:62:94:bb:67:d7:4b:4c:40:7d:e1:57:
b5:6d:63:f4:3a:0c:a4:8b:46:44:9f:db:ad:87:bc:
ef:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B6:4E:A2:62:8D:92:5B:D8:A9:DC:78:7B:E7:67:10:65:6C:57:EE
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/87ZOomKNklvYqdx4e-dnEGVsV-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.178.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:f3:a1:72:61:db:8e:72:15:7e:6d:e9:de:14:84:51:2d:e8:
a3:6e:a7:e1:1d:fc:7e:f2:1b:fd:4a:a3:27:ad:b7:a6:38:2b:
a8:38:f9:2f:69:e0:11:37:52:19:c2:ea:7e:59:c4:90:28:14:
33:8c:1c:db:75:a3:67:26:d8:68:90:a8:45:86:b9:72:56:75:
2e:ce:a3:22:17:44:5c:22:31:0e:32:c3:7c:ab:c1:a0:c7:d7:
a1:0c:16:ff:0c:7c:76:f1:9c:63:3e:e6:36:4c:5a:8d:27:d3:
2a:ce:43:50:35:25:97:a4:c9:a6:e1:98:4f:a1:d0:b8:77:1d:
59:0e:06:23:78:66:29:af:31:22:cd:3a:f1:19:bf:ac:95:23:
cd:91:b2:4d:9a:57:3e:90:62:79:29:07:2d:c4:27:23:33:6c:
56:77:4b:28:ec:ca:77:76:e2:eb:d2:62:32:ce:a5:89:d4:b3:
d6:73:a3:98:5e:1e:eb:3b:ea:10:2d:a8:59:0a:ea:a3:d8:1d:
2c:0d:82:df:78:16:dc:d2:c0:99:fa:a7:36:ca:d3:8d:4e:bc:
1f:bc:d5:2f:e6:ee:d2:52:58:0d:bc:6d:9e:6f:49:ed:58:55:
bc:38:a2:e2:f7:98:9f:86:61:fe:ce:45:7d:88:00:5b:97:f2:
47:81:a4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org