Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Q0YHPlsF42PGg-A0sQjzhbkn__o.roa
File: Q0YHPlsF42PGg-A0sQjzhbkn__o.roa (raw, json)
Hash identifier: FwRtozdJstpQyfsVSc/Y1Ev8U8tniv4+x5zaDfxiYJ8=
Subject key identifier: 43:46:07:3E:5B:05:E3:63:C6:83:E0:34:B1:08:F3:85:B9:27:FF:FA
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0184614D90A4BBC7F5385E48E37FE641327A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Q0YHPlsF42PGg-A0sQjzhbkn__o.roa
Signing time: Thu 10 Nov 2022 11:29:44 +0000
ROA not before: Thu 10 Nov 2022 11:29:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 62.72.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:4d:90:a4:bb:c7:f5:38:5e:48:e3:7f:e6:41:32:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 10 11:29:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4346073e5b05e363c683e034b108f385b927fffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:14:0f:02:9a:a3:ca:8a:4f:cf:62:b3:2e:75:
d3:ef:69:50:e5:85:85:6c:ac:61:78:8f:80:38:f0:
26:3a:3d:b0:c2:29:64:ff:96:5b:e1:76:b0:3b:ef:
19:66:be:23:8b:cf:9f:7e:91:59:ee:7b:14:32:be:
8d:0f:93:6a:e9:e3:b5:c8:cd:f3:f8:28:fa:3a:e8:
56:57:df:f1:e2:27:9f:f1:0e:15:eb:73:bd:8d:0f:
70:f7:05:f9:5e:a6:e3:b1:15:83:cd:c2:c9:91:48:
4f:e4:19:f9:55:7a:be:42:1d:df:bc:c0:57:5d:56:
f7:93:48:4f:03:0a:07:06:4e:e0:72:f2:9c:b8:9c:
c4:02:2d:18:ff:ba:31:57:75:a8:bd:64:6f:be:1d:
69:e3:2b:41:d6:88:79:ff:ae:05:65:29:19:cf:3d:
c5:b4:df:94:06:dc:cf:4e:2e:3b:91:54:f3:0e:36:
37:c2:a8:fe:06:e8:44:6b:62:61:18:13:22:67:9b:
6d:23:4a:50:82:c8:9e:1a:51:f6:34:98:68:2c:71:
5b:42:da:5a:bd:3a:98:d2:4c:11:f2:eb:a2:2c:c8:
d1:50:83:cb:8e:b5:c8:44:22:5f:f0:6b:d8:bf:be:
8d:a9:e5:fb:ca:af:49:8e:05:29:1b:9f:b4:06:88:
1e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:46:07:3E:5B:05:E3:63:C6:83:E0:34:B1:08:F3:85:B9:27:FF:FA
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Q0YHPlsF42PGg-A0sQjzhbkn__o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.176.0/24
Signature Algorithm: sha256WithRSAEncryption
55:60:fe:05:2e:53:5a:5f:b1:2f:3c:ed:15:09:a6:79:2d:65:
03:18:5f:10:df:21:08:89:41:be:54:fd:02:94:b6:65:17:cd:
1d:5e:5f:bf:cf:4f:fe:5e:9e:a1:10:9c:00:e3:1e:01:f1:57:
34:d0:4a:e2:2e:92:4c:4e:53:12:bd:1f:c9:03:f5:c5:df:e1:
e3:56:4c:66:f2:df:15:81:2a:66:1b:18:81:df:82:1c:55:d3:
82:66:5a:2a:6d:11:50:d6:82:46:00:ff:33:2c:2d:cc:8a:b5:
42:c0:58:52:00:20:66:4e:03:6d:c3:ce:68:52:7e:c7:02:88:
d6:ef:16:d7:50:f6:75:c0:3d:b3:44:3d:fe:1b:41:23:d5:e2:
ad:c6:7d:ee:b2:fa:96:c5:c8:39:7e:2e:53:76:f9:77:4f:38:
12:a2:d4:9c:2e:d3:58:43:a8:99:20:22:47:b7:70:b9:cb:c8:
0b:c7:23:fb:ff:e7:36:dd:87:60:ba:30:c0:66:eb:0f:8d:f2:
da:64:68:34:6f:49:3e:30:76:5c:98:10:c0:f2:86:26:59:23:
17:ce:41:7f:c7:2a:38:b3:1d:5c:19:12:47:70:af:dd:21:7b:
ce:29:ca:9c:11:f3:13:7c:9d:aa:b1:54:c9:03:c5:b8:15:9b:
d7:1e:9b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org