Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/kVKAsMOAFd1s4tOFOEGjlWP_yl8.roa
File: kVKAsMOAFd1s4tOFOEGjlWP_yl8.roa (raw, json)
Hash identifier: NKsGYe2RhWiqsZswRLDvdlu1bddjOgD+PnFNwgEMLaw=
Subject key identifier: 91:52:80:B0:C3:80:15:DD:6C:E2:D3:85:38:41:A3:95:63:FF:CA:5F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 03781563
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/kVKAsMOAFd1s4tOFOEGjlWP_yl8.roa
Signing time: Mon 20 Jun 2022 12:17:51 +0000
ROA not before: Mon 20 Jun 2022 12:17:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 62.72.176.0/23 maxlen: 24
62.72.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58201443 (0x3781563)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 20 12:17:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=915280b0c38015dd6ce2d3853841a39563ffca5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6e:7f:6e:40:a6:f3:59:d5:e7:a9:d2:bd:93:
ae:bb:35:e8:ff:6f:b2:18:a7:d0:99:d6:a0:31:02:
f2:f7:1d:09:9c:a5:22:65:ce:68:3b:3c:fb:a2:fc:
42:a5:c3:fd:b7:c0:16:0c:87:ea:b8:13:74:df:12:
99:c5:e7:64:35:c7:8e:c5:5b:48:52:f7:10:db:42:
ad:1a:ea:33:d8:1a:7c:2f:be:92:f2:cb:4a:86:ad:
dd:28:d8:98:20:67:bd:a3:ab:9e:e3:bb:59:4d:90:
6e:7c:7d:f3:c0:2e:fa:83:c4:0a:3e:52:c2:d9:4d:
13:45:05:dc:f3:b8:63:5e:e6:2b:c9:74:f4:b7:96:
2a:82:fc:22:67:fa:47:79:7c:6c:3c:fa:5b:c6:82:
16:11:52:72:9d:fa:cc:b1:72:ec:42:5e:6e:e7:06:
07:97:d0:0a:0e:b4:38:4e:f5:da:27:59:30:40:55:
39:2b:ac:17:a7:eb:34:b3:ed:d8:de:6f:bf:3f:aa:
9a:5b:20:c8:47:1e:23:55:01:6c:c9:01:1c:75:e8:
bf:ab:57:2e:5d:54:90:b5:d5:a9:11:5d:85:fa:5d:
6b:53:09:76:ea:b0:f3:69:83:c2:f9:e7:f0:15:5b:
e0:51:0e:4f:b0:4b:6b:cd:c2:f7:4b:b2:29:e7:c7:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:52:80:B0:C3:80:15:DD:6C:E2:D3:85:38:41:A3:95:63:FF:CA:5F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/kVKAsMOAFd1s4tOFOEGjlWP_yl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.176.0/23
62.72.186.0/23
Signature Algorithm: sha256WithRSAEncryption
24:93:4f:7e:2d:d3:3d:bd:89:84:c3:a3:e3:a3:1c:79:74:b1:
e1:02:ec:ed:c8:21:0f:de:75:dd:16:5f:63:6a:1b:f0:24:b1:
ea:d6:86:7c:83:cb:30:3c:c0:4a:74:53:20:03:1d:90:a0:cc:
54:86:ee:5b:40:20:fe:9f:ee:e4:30:90:0c:e2:8b:4e:d4:3d:
fb:64:a2:56:63:d0:7b:fc:f9:9f:de:67:a7:9a:95:1d:7d:58:
8c:7b:a8:95:7c:70:7b:cb:f0:6b:da:91:4b:13:54:92:b7:fd:
b1:05:38:f9:32:80:4d:80:54:f4:76:02:b8:0a:47:ca:00:1c:
1b:6c:ff:f6:1d:22:0e:3d:65:3b:64:aa:a3:40:87:d1:25:0d:
72:32:be:07:37:71:99:6d:af:fc:1f:1c:83:2b:df:30:c4:f5:
21:22:99:71:16:89:46:4a:c9:3e:b0:30:5b:62:c5:e4:8b:2f:
09:e0:66:ed:ef:0d:38:b1:8b:d0:24:01:3e:fc:99:9b:18:f7:
ea:5b:f8:b0:5b:67:53:3a:dd:ed:c0:73:2b:67:14:a3:9f:c8:
58:07:9f:3f:68:79:0b:45:fe:69:17:7a:90:3f:8b:60:a7:16:
6a:e7:26:0e:1d:18:5e:39:48:db:a1:89:0c:2f:92:13:3d:30:
0e:01:48:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org