Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KnjdtUGvPJxQZrViRQnvs3QE4_M.roa
File: KnjdtUGvPJxQZrViRQnvs3QE4_M.roa (raw, json)
Hash identifier: gJO1Ot0WWOzfSYHXWJCJR0i1sBt/P54m1hVos5qrEbk=
Subject key identifier: 2A:78:DD:B5:41:AF:3C:9C:50:66:B5:62:45:09:EF:B3:74:04:E3:F3
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0185246287F05E4CA470DD9303D9FED6813C
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KnjdtUGvPJxQZrViRQnvs3QE4_M.roa
Signing time: Sun 18 Dec 2022 08:38:35 +0000
ROA not before: Sun 18 Dec 2022 08:38:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 62.72.176.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:24:62:87:f0:5e:4c:a4:70:dd:93:03:d9:fe:d6:81:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 18 08:38:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a78ddb541af3c9c5066b5624509efb37404e3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:72:2f:cc:bd:34:fc:1c:7d:a6:03:98:fe:54:
c4:44:de:74:d1:80:be:54:d8:2d:13:1e:52:2b:27:
7a:23:c5:99:25:33:65:a6:bc:48:ab:bc:f6:9f:33:
24:d5:f2:89:0f:7c:af:17:c3:c5:40:e4:42:ac:67:
f5:43:3f:b5:ce:67:74:bd:3e:90:df:b8:79:15:cb:
eb:8d:ed:40:e6:7f:6e:d6:eb:89:34:83:2f:41:06:
64:ee:b7:f6:db:b0:31:fa:59:43:de:d2:48:98:2f:
47:0f:06:f6:37:0c:52:99:11:ae:2c:59:b2:64:3a:
cd:71:5c:6f:ba:01:38:17:72:65:8e:51:cb:12:f1:
52:d7:38:3a:c4:df:97:13:99:34:68:ed:05:88:42:
1b:7f:0a:ed:94:71:c9:ef:ca:c9:7b:42:58:be:c2:
a9:34:70:1f:65:93:f3:0e:7b:ce:df:31:95:5e:cf:
c4:0b:c2:3c:a1:38:06:f9:70:3c:22:03:b8:8b:31:
ed:06:3a:41:97:84:d6:b5:19:6c:9a:45:8c:94:65:
59:c8:65:13:98:e2:81:2d:c5:a2:03:b7:c0:21:51:
01:28:da:32:03:bb:c9:de:36:ce:7f:3c:f0:a4:09:
90:7b:b7:bb:ba:ad:a2:ac:12:23:63:64:e9:6e:a4:
20:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:78:DD:B5:41:AF:3C:9C:50:66:B5:62:45:09:EF:B3:74:04:E3:F3
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KnjdtUGvPJxQZrViRQnvs3QE4_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.176.0/23
Signature Algorithm: sha256WithRSAEncryption
be:bf:4d:5a:4e:39:be:82:95:bd:a0:43:eb:fc:91:3e:bc:3e:
b7:92:4e:cc:97:2a:86:58:36:bc:79:8c:9e:34:b2:2c:12:22:
5e:c6:d9:aa:73:dc:80:3c:7d:4e:28:4a:2c:e5:19:86:e0:9e:
d0:a0:40:b4:09:88:6e:9f:09:42:1a:19:6a:d8:cf:3b:a0:98:
bd:f2:3a:af:a6:bc:24:26:13:9d:b4:0f:43:e7:11:4d:1b:72:
4b:58:4c:48:72:76:43:f0:10:04:a7:03:43:f2:91:4c:bb:a4:
9e:16:ba:0b:61:c5:0f:7c:94:0a:a9:c7:7e:f7:5a:bd:84:49:
af:b4:55:22:f8:8c:4b:75:a5:f0:c8:ce:8d:82:87:be:90:e5:
91:5b:40:1a:0f:3c:2a:eb:58:44:7b:6a:25:27:d9:4f:2c:95:
04:b2:63:2e:d0:cd:a6:bc:e8:17:0f:c3:a3:96:b6:c8:a3:dc:
1f:26:07:77:c5:2b:50:13:dd:5b:b6:6f:df:90:3e:99:45:fb:
ee:2d:1b:74:7e:c2:38:ee:fd:ab:b3:9f:85:62:4f:ce:e3:4e:
4e:68:05:3c:5d:33:21:9a:0d:d9:eb:ba:99:d5:c3:43:69:be:
5f:97:f0:f5:3b:3c:ea:47:b7:c1:c9:de:d9:5c:ef:40:68:fc:
ec:44:f4:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org