Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/cNnRX1IaoBCTqfpBC6n52p13FSM.roa
File: cNnRX1IaoBCTqfpBC6n52p13FSM.roa (raw, json)
Hash identifier: kHCGx56YoEtuqT4WXgpHMWyOFzs1uHsDsm3I7qGUv0s=
Subject key identifier: 70:D9:D1:5F:52:1A:A0:10:93:A9:FA:41:0B:A9:F9:DA:9D:77:15:23
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01842CA1CB1636B95F164D066F67798FB5DB
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/cNnRX1IaoBCTqfpBC6n52p13FSM.roa
Signing time: Mon 31 Oct 2022 06:01:51 +0000
ROA not before: Mon 31 Oct 2022 06:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 62.72.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2c:a1:cb:16:36:b9:5f:16:4d:06:6f:67:79:8f:b5:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 31 06:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70d9d15f521aa01093a9fa410ba9f9da9d771523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:79:02:cd:2b:82:a7:c8:d4:76:36:9d:a5:18:
8f:57:1f:f1:07:d4:09:7a:cc:45:e4:c5:35:0d:20:
de:a3:b6:e2:f9:f0:d4:0b:03:60:da:fc:14:7f:aa:
cb:ea:60:10:1f:f4:85:22:f3:36:c8:14:5b:b8:e8:
c3:ae:5f:4e:c2:57:fc:4b:5c:77:47:ee:1a:0a:c9:
7e:be:41:f0:bb:1b:9c:92:38:1a:bb:64:65:59:75:
a7:f1:96:92:d3:a0:13:41:92:50:fa:56:03:4c:bd:
27:68:6b:f0:14:8e:39:b9:0b:d1:7c:5d:ed:32:d1:
9f:ee:cf:74:55:2d:84:01:2d:3d:a7:27:39:46:44:
48:78:6d:56:75:fb:e1:6b:f9:0d:82:27:31:9d:30:
7c:2d:c3:1a:de:f0:94:ca:63:cc:72:36:59:28:3e:
07:dc:e8:a9:fc:28:b6:aa:b0:4a:07:91:da:66:aa:
8d:00:1c:ca:06:20:6e:af:97:1d:f6:d5:68:9f:71:
c3:b7:bb:a6:21:93:bb:c7:71:c0:2e:fd:81:8a:42:
b7:13:3b:cb:a3:09:59:d4:64:6b:c1:4c:13:c2:d1:
a3:20:ee:5c:8a:b1:67:7a:56:f2:ff:0b:d1:61:89:
8b:62:a4:d9:fc:6d:8c:aa:7d:e1:b6:91:29:79:31:
ea:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D9:D1:5F:52:1A:A0:10:93:A9:FA:41:0B:A9:F9:DA:9D:77:15:23
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/cNnRX1IaoBCTqfpBC6n52p13FSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.178.0/24
Signature Algorithm: sha256WithRSAEncryption
78:fb:a8:67:7f:46:dc:27:4c:4f:10:ad:5d:0f:12:44:7b:7d:
f0:42:fa:a8:59:6b:41:ca:51:c9:79:fb:7e:53:81:ca:33:34:
26:84:6a:3b:83:e5:15:dc:41:b2:96:5c:69:60:8a:4b:07:9b:
07:1a:ea:c1:ae:62:67:c7:35:6d:2f:55:86:a0:c8:6a:4e:03:
2b:b0:67:d1:3f:b8:8c:53:7a:b4:45:34:5e:46:66:71:20:39:
4b:8f:b3:e6:20:2e:17:69:32:d2:42:cf:85:ed:87:ca:44:06:
01:8f:ad:28:63:6b:b4:32:de:fb:bc:2c:75:a0:e8:c3:13:37:
4a:41:a5:7a:86:a3:ce:c0:43:99:f3:a8:27:fe:a4:e1:84:f6:
49:97:14:81:58:49:34:3b:7f:a1:66:58:6e:2e:f0:d5:c9:8c:
9c:f2:6f:2f:1e:12:b2:07:8d:f9:07:0f:15:dd:67:b3:76:6a:
06:7f:bc:7a:2c:82:23:87:0a:89:ec:9a:19:21:00:32:8f:a7:
bc:23:2e:df:0a:30:ca:ab:a7:91:b2:4f:04:01:7c:30:6f:7f:
a0:4c:b9:81:9c:a5:02:4f:c0:d4:b8:2b:2c:4d:92:d9:2c:0c:
5b:ca:fa:ce:ec:dd:96:c2:76:fe:fa:1d:4e:ba:44:76:bd:47:
94:66:e5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org