Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/YMXqJYCdXq1kqLOmlHL91wC6NKI.roa
File: YMXqJYCdXq1kqLOmlHL91wC6NKI.roa (raw, json)
Hash identifier: Vp842uj1nQpVkwxXytvzEFyaqXmW2wQiHRqqqF02HHI=
Subject key identifier: 60:C5:EA:25:80:9D:5E:AD:64:A8:B3:A6:94:72:FD:D7:00:BA:34:A2
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 039A8D36
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/YMXqJYCdXq1kqLOmlHL91wC6NKI.roa
Signing time: Sun 03 Jul 2022 13:53:25 +0000
ROA not before: Sun 03 Jul 2022 13:53:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 62.72.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60460342 (0x39a8d36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jul 3 13:53:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60c5ea25809d5ead64a8b3a69472fdd700ba34a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f0:e1:16:1c:3e:15:c4:39:53:9d:b9:16:a4:
8c:58:7e:fa:f3:ed:04:e4:4d:bd:46:94:a8:91:46:
64:c3:64:15:72:b6:e0:15:fd:2a:0c:d7:94:8a:24:
e2:5f:f6:8b:00:16:fd:88:d4:4b:69:b5:3c:43:8b:
be:95:c6:db:39:a9:de:22:0e:52:42:4f:1c:ff:dd:
75:31:a9:85:9a:19:1b:26:2d:7e:b1:9d:16:fe:9a:
73:dc:d7:13:ea:0e:51:c5:5f:ac:62:df:e9:04:86:
cd:e2:08:ab:d3:83:94:85:95:c1:25:00:fd:56:55:
55:de:2c:08:81:13:f2:c3:31:ba:32:f6:bb:33:0d:
35:a4:16:ed:2c:9d:4b:70:28:00:e0:20:73:c1:4d:
ba:be:99:cb:c9:06:8a:60:2e:eb:5d:6c:47:18:19:
40:f0:49:7d:d8:ac:b4:8a:21:e6:2d:6d:32:a6:77:
75:0d:41:ed:22:29:c0:40:b2:08:14:77:9f:22:0d:
2a:9c:40:65:1e:99:51:f0:94:38:2d:23:a0:12:d5:
e7:27:33:5b:27:61:3e:00:93:1c:f8:ec:f7:e0:58:
2a:a2:76:7c:98:b6:53:2c:43:b9:69:0f:83:cf:98:
33:fa:08:5c:86:96:95:f4:36:1a:db:f6:78:90:13:
8c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C5:EA:25:80:9D:5E:AD:64:A8:B3:A6:94:72:FD:D7:00:BA:34:A2
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/YMXqJYCdXq1kqLOmlHL91wC6NKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.185.0/24
Signature Algorithm: sha256WithRSAEncryption
66:95:c7:58:10:04:e5:ca:b9:b6:34:f2:0d:fc:f2:95:93:61:
08:1f:0d:50:55:74:a1:08:fb:81:57:c1:31:a7:87:4e:46:0f:
d6:64:e9:9b:a3:8b:86:a8:2d:b2:9b:f5:34:6f:26:7e:61:f7:
c4:62:18:59:17:35:5d:32:aa:0e:96:14:13:e8:1a:59:17:a8:
82:53:03:6a:a7:71:db:c9:61:6d:d2:ba:ab:ec:a3:48:cb:ce:
77:dd:88:ae:53:ec:a4:c6:9b:6b:0a:bf:e5:7e:e7:12:22:4d:
64:36:5e:ed:19:be:4d:f8:eb:54:12:30:ef:5e:2c:34:df:60:
81:76:63:26:62:8d:c6:26:7b:7f:bc:f6:90:92:85:32:7e:db:
b7:dd:dd:69:e1:d2:8c:12:37:a4:c6:b2:d9:f2:85:7a:b5:f8:
e3:48:49:07:76:ab:af:05:d9:54:fc:f5:4e:1f:4f:d3:d4:57:
88:6e:ba:ee:c5:f9:fa:e1:31:9b:28:26:8f:05:42:1a:06:80:
74:4c:19:a6:61:1d:b5:ac:50:0b:a3:fe:e2:16:40:d2:04:56:
af:06:3c:dc:07:6e:29:56:9d:61:76:4f:a8:1a:fc:dd:00:f4:
b5:ca:74:f1:84:46:6a:d7:c3:10:bb:66:10:a3:f2:b3:b0:7d:
12:d9:82:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org