Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fPEZaU9w7Fu6LBN8mPVxgdFGw8w.roa
File: fPEZaU9w7Fu6LBN8mPVxgdFGw8w.roa (raw, json)
Hash identifier: elCQricGf+9kJRS6ZTdSEjEIFgwI0ouBA8r9DLDP0po=
Subject key identifier: 7C:F1:19:69:4F:70:EC:5B:BA:2C:13:7C:98:F5:71:81:D1:46:C3:CC
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 02EDB385
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fPEZaU9w7Fu6LBN8mPVxgdFGw8w.roa
Signing time: Wed 11 May 2022 12:57:02 +0000
ROA not before: Wed 11 May 2022 12:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 62.72.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49132421 (0x2edb385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: May 11 12:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cf119694f70ec5bba2c137c98f57181d146c3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1b:59:df:0b:c5:e0:04:a4:b6:c7:66:20:ec:
25:64:5a:fe:ba:0b:3c:c1:0f:87:9a:dc:db:29:35:
2c:8d:6f:f7:b9:07:81:ea:d1:b6:87:e6:c7:1a:a4:
f7:0f:6c:a8:49:a9:a8:c3:3f:62:8a:4f:d9:a8:01:
79:f9:d6:11:05:a7:42:72:41:f7:e5:fd:a3:a9:ab:
e9:d2:bb:68:0a:90:ed:c6:8e:50:c0:42:5c:d1:98:
27:dd:17:fc:71:f3:5a:d9:4d:99:a1:56:90:8e:fb:
b1:a3:18:d2:77:02:dd:6c:53:b6:de:f9:ba:49:b3:
14:ca:21:9e:58:dc:70:e2:ab:a4:12:b8:e7:f6:f2:
d8:a7:b7:d8:78:0b:21:dc:18:fa:7d:2e:2a:b0:ac:
e4:6c:3b:13:78:19:34:11:72:14:57:df:de:22:6c:
78:3f:de:0e:77:2e:e6:40:96:cc:50:7e:7c:89:96:
51:a7:64:24:ab:36:d8:4a:38:e4:d8:c2:f3:41:35:
09:e6:a5:ce:a3:09:ff:c7:65:61:29:50:33:25:4c:
0a:15:37:6e:a1:c8:bc:2c:02:b8:50:49:1f:b8:0f:
86:76:c5:b7:db:5f:c1:74:fd:9a:00:9d:d7:bc:33:
5a:52:85:fd:79:f4:cd:9c:d4:5b:bc:dc:70:26:22:
2c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F1:19:69:4F:70:EC:5B:BA:2C:13:7C:98:F5:71:81:D1:46:C3:CC
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fPEZaU9w7Fu6LBN8mPVxgdFGw8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.177.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c4:b4:c2:24:a0:fe:66:65:ea:ff:f9:51:47:fb:29:25:fc:
c6:8b:bb:d8:87:d4:7e:c6:de:5d:38:fd:5f:48:26:22:00:da:
14:1e:d2:89:df:07:a0:91:6c:ed:76:70:35:7b:8a:22:65:ea:
41:63:80:60:8e:55:0f:78:5a:ce:ca:1d:0a:dd:68:54:10:b7:
4a:98:1c:91:f0:20:9d:90:70:9b:00:40:7f:fd:7f:c0:95:54:
ff:7f:8e:36:53:b5:3f:36:5c:b7:67:c6:cf:e8:19:4b:88:5f:
f7:04:60:bf:77:c2:c0:7d:65:b5:6a:d3:27:75:9e:e0:ea:02:
44:3a:e6:52:0a:aa:f0:09:27:f3:7b:cd:f4:a0:6a:cf:e7:ee:
53:47:4c:89:95:96:ef:82:4c:df:11:1a:89:b1:5a:94:e2:8a:
d8:da:ee:da:8f:ae:c6:6c:fe:8c:86:01:d6:7b:9c:ae:ed:65:
7e:3d:f6:3f:88:78:ef:e5:15:85:b0:6b:42:9e:ee:76:02:85:
f2:9c:6f:cb:25:0a:11:a6:9c:80:7a:40:de:96:64:d9:af:89:
58:fc:a8:0a:36:83:b6:c6:39:5a:a2:ac:35:81:c3:e0:f7:34:
65:8f:71:68:5e:a1:53:d0:bc:0c:74:87:ee:25:74:f4:0a:3c:
b9:2c:08:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org