Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/igDm7smHwVg_0S2tdU7lSTfHUwY.roa
File: igDm7smHwVg_0S2tdU7lSTfHUwY.roa (raw, json)
Hash identifier: vYxJP0iJ+gPkAv+9Ew9k31YuGddAI5fpJ8MUpLVpzuQ=
Subject key identifier: 8A:00:E6:EE:C9:87:C1:58:3F:D1:2D:AD:75:4E:E5:49:37:C7:53:06
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01BD6066
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/igDm7smHwVg_0S2tdU7lSTfHUwY.roa
Signing time: Sat 01 Jan 2022 04:53:44 +0000
ROA not before: Sat 01 Jan 2022 04:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 62.72.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29188198 (0x1bd6066)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 04:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a00e6eec987c1583fd12dad754ee54937c75306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:06:5c:2d:34:3a:a1:44:64:d6:b6:e7:f2:
e2:a8:df:6b:8d:68:fb:f2:d6:08:35:34:82:02:11:
69:68:e3:ba:5f:76:e8:e6:15:6e:68:e0:45:e4:33:
6a:11:4b:44:e6:6b:f2:6c:34:e5:f3:d6:bf:de:89:
3c:a6:de:f9:c2:78:c1:ba:94:63:f2:92:95:07:a4:
d5:d6:2b:1f:56:7e:65:c9:43:13:ae:b3:e5:17:91:
ad:a1:ce:03:bb:9b:1c:75:df:c9:e2:74:16:f7:3c:
e1:9c:0b:a2:07:da:b3:1a:48:f5:a6:80:72:c7:19:
44:6a:f4:51:55:6a:f5:08:44:d2:a9:bf:f0:5d:de:
c5:c8:ff:d1:d3:22:5e:cb:33:fb:a4:ee:bb:dc:58:
5f:f6:c6:4c:68:20:07:79:78:90:73:4d:d2:d3:fd:
07:cb:f1:1d:f3:86:0e:a4:a5:ef:28:96:7d:be:f8:
cc:f1:ee:36:d4:ec:0e:e1:bf:f7:2e:b5:67:28:8b:
ba:fe:80:96:5c:9b:b0:b6:e4:c6:ab:1e:5f:60:d0:
9c:64:2f:a8:16:f4:ee:56:e4:c2:cb:0a:39:a6:51:
56:b1:39:17:b7:0a:2d:44:5c:69:6c:50:b4:c8:77:
9d:03:ee:04:a5:ec:54:57:e5:2e:66:08:71:92:c9:
e2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:00:E6:EE:C9:87:C1:58:3F:D1:2D:AD:75:4E:E5:49:37:C7:53:06
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/igDm7smHwVg_0S2tdU7lSTfHUwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.184.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:55:b6:64:37:45:92:2b:5c:9d:13:14:61:87:db:cb:86:af:
7b:c4:37:5f:c9:c6:a9:60:8c:9e:1e:b7:ae:f8:a8:b9:9c:f4:
44:cb:50:9b:8d:75:08:7a:28:a5:73:ee:07:3c:96:82:47:a6:
66:da:91:ce:a2:c9:c0:31:2d:5e:d9:e8:ae:a2:fe:61:c2:68:
e9:0a:93:f2:5f:ec:51:a4:aa:0f:9d:cf:70:74:1e:56:e5:1d:
93:94:9a:2d:f0:d4:48:29:5d:78:d2:ff:b2:3a:fe:13:c7:8c:
79:40:b3:64:16:e6:4f:90:a6:49:50:f9:f2:b4:73:59:d4:e5:
74:13:fd:6d:ad:41:3f:1f:40:2b:61:31:8b:23:e2:65:b3:00:
4d:79:62:97:5b:5d:d4:05:48:11:ed:6e:94:f5:28:e6:09:3a:
ec:60:4a:38:07:ed:fe:d8:ef:46:51:cc:76:25:7e:9d:5e:bc:
d9:6d:4d:db:19:2f:f7:c9:26:ef:92:bb:0c:52:7e:db:5b:97:
bd:1b:66:21:c5:36:7d:92:15:76:83:eb:2d:17:c6:d6:88:06:
18:eb:6d:bf:62:e1:c8:2b:b9:3d:eb:e2:76:e7:87:b5:e5:71:
db:42:3b:9b:fa:3b:6c:89:f5:b8:06:75:58:b6:15:8e:08:a6:
eb:6c:37:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org