Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KiUHRPg3bLjJgIsjaYoBVkA_HAE.roa
File: KiUHRPg3bLjJgIsjaYoBVkA_HAE.roa (raw, json)
Hash identifier: 1mec/IljpT6VfQx+4UQf+/z6Dd+1gJSyWyKlW78lfjQ=
Subject key identifier: 2A:25:07:44:F8:37:6C:B8:C9:80:8B:23:69:8A:01:56:40:3F:1C:01
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0184D6CDE5E45C086A6DF7A49757FD39C01E
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KiUHRPg3bLjJgIsjaYoBVkA_HAE.roa
Signing time: Sat 03 Dec 2022 07:05:28 +0000
ROA not before: Sat 03 Dec 2022 07:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 62.72.176.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d6:cd:e5:e4:5c:08:6a:6d:f7:a4:97:57:fd:39:c0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 3 07:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a250744f8376cb8c9808b23698a0156403f1c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:b8:b3:4e:58:fe:bf:43:95:3c:f3:92:5a:
17:b3:f2:29:f7:9c:b1:03:9e:57:7d:89:08:bd:fd:
5a:35:ba:68:d3:e5:43:80:7b:b9:ec:df:27:8d:cd:
6a:91:8e:5a:f5:56:8c:43:48:13:e7:d6:0e:62:a2:
95:90:ce:b5:29:2a:9a:4b:0f:5f:79:8a:ee:cd:b2:
a2:36:7f:94:ed:fc:54:6c:45:c9:80:fc:6d:3a:45:
7b:4a:53:c0:24:3e:4d:65:f6:2d:5c:73:d9:69:bc:
6e:10:ae:ad:fc:35:20:3a:ab:94:04:54:ff:b9:a7:
61:91:5c:c5:5e:e9:96:28:5a:6c:a7:4d:9c:dd:34:
fe:1b:30:6a:5b:e3:f6:0e:d8:e2:0e:cb:57:68:a4:
39:ce:16:21:7c:23:88:ee:4e:5b:13:cf:91:3b:7a:
a0:1f:03:b3:14:c4:66:49:68:f5:71:21:5b:db:e6:
07:97:ba:ce:56:4a:ef:90:87:96:2f:2a:bd:fe:db:
34:b3:b9:2b:c4:18:60:0a:96:c6:8c:8d:fb:15:0f:
18:ac:b1:23:72:8b:c8:ce:d8:f7:71:17:90:e7:21:
de:a9:9d:4a:82:ba:82:c1:9b:1a:ad:00:2e:0e:50:
95:1c:61:7b:e2:2a:fb:2a:d7:7d:78:c1:66:73:1a:
fd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:25:07:44:F8:37:6C:B8:C9:80:8B:23:69:8A:01:56:40:3F:1C:01
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KiUHRPg3bLjJgIsjaYoBVkA_HAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.176.0/23
176.57.51.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:33:eb:d7:e2:b3:ab:18:35:d7:75:a0:ec:97:f1:ff:15:fa:
ce:79:88:3a:cf:50:a9:04:b6:6e:64:3d:03:c5:29:18:9d:67:
f7:ce:9f:14:2a:8a:b6:b6:87:72:61:5c:a8:91:51:21:41:12:
85:99:1e:41:ba:1a:51:e9:aa:d4:16:6a:da:24:06:c5:d1:11:
6b:3a:ef:c7:d0:06:f7:9e:b7:3f:52:82:d8:8d:d1:04:df:02:
76:ae:3e:ab:e2:08:e6:f5:9b:f6:5d:30:69:e4:ca:94:cf:8a:
31:7c:c5:17:05:e8:35:2b:1d:19:17:ed:e6:c3:6a:34:d9:c3:
f5:4b:04:8c:89:62:52:1e:a9:f7:98:f3:8f:f1:dd:36:e4:ba:
03:ee:0c:b5:4f:d7:97:61:c5:e8:ef:28:7a:6c:cc:8c:bc:79:
35:c8:fc:d5:6d:af:0a:9d:3c:b1:d1:52:33:6b:40:56:8f:6b:
7d:e4:eb:fc:5e:87:69:33:8d:81:14:d1:9c:0a:8d:5a:3b:5d:
34:c7:5b:f4:0e:73:5c:32:5e:3a:f6:00:05:9f:b4:71:f6:7f:
ac:c1:42:20:81:37:d5:92:e2:48:cb:b2:62:ac:5a:2e:b8:45:
c5:33:a6:53:73:09:75:84:86:ea:8f:67:d2:b3:6e:14:be:d1:
13:a7:b5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org