Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/tKKG03iQLTx68VvDUzrMYdjesH8.roa
File: tKKG03iQLTx68VvDUzrMYdjesH8.roa (raw, json)
Hash identifier: JZI5mVBkHBTb07qecJPwxn5ce/raGMF86FcokPT3I2c=
Subject key identifier: B4:A2:86:D3:78:90:2D:3C:7A:F1:5B:C3:53:3A:CC:61:D8:DE:B0:7F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0184CCD942006188286BF8A50223BF40FED5
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/tKKG03iQLTx68VvDUzrMYdjesH8.roa
Signing time: Thu 01 Dec 2022 08:41:40 +0000
ROA not before: Thu 01 Dec 2022 08:41:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 62.72.188.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cc:d9:42:00:61:88:28:6b:f8:a5:02:23:bf:40:fe:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 1 08:41:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4a286d378902d3c7af15bc3533acc61d8deb07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:a1:f3:69:96:e5:fe:c5:5e:08:f1:00:6e:
87:2c:8b:3c:2c:c9:7b:b0:e7:dc:88:f7:91:f9:42:
9d:94:f8:49:1f:7e:b7:f6:c6:f8:30:4c:e9:2c:ce:
b4:42:6e:61:4f:39:3c:78:61:43:f5:80:95:d8:23:
7f:36:0f:32:87:d0:e4:4b:f1:e1:fb:da:ec:95:9f:
62:50:4d:41:14:9b:26:5a:a7:81:fe:50:df:63:76:
6c:73:8d:fc:75:24:16:84:86:44:eb:02:e2:24:fe:
b0:40:56:b4:01:f4:c6:ef:52:6d:8b:18:93:a1:93:
8f:05:ef:b2:0e:d9:5a:d6:70:b7:f5:b5:73:d8:4a:
20:9e:ed:c5:a8:cb:74:80:84:39:f3:a6:06:ed:c4:
11:30:2c:21:14:81:20:0a:12:b3:68:74:b6:a3:2e:
ed:fe:41:57:db:76:ba:13:be:5b:cd:e9:0a:42:e2:
8d:6e:f0:89:57:eb:91:5a:31:39:dd:e9:69:b8:d0:
17:f7:1e:84:00:31:79:d0:8a:d0:11:f0:02:97:fa:
47:fa:d0:73:60:77:a3:9e:e8:7b:4c:14:b8:42:ab:
1e:7a:c2:29:e7:a0:d2:41:ba:1f:db:e3:e5:19:c6:
27:bc:7d:1a:65:7d:e2:3d:8b:c5:b1:b0:2e:1a:19:
4b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A2:86:D3:78:90:2D:3C:7A:F1:5B:C3:53:3A:CC:61:D8:DE:B0:7F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/tKKG03iQLTx68VvDUzrMYdjesH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.188.0/24
62.72.191.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f6:5b:f6:a0:1e:e1:cd:f4:01:e2:88:1d:a1:77:eb:45:32:
e8:b4:67:7f:91:5b:c5:72:8c:d5:ee:2c:b3:e0:93:77:9a:8a:
f9:b4:df:f9:32:da:7a:8c:94:5c:01:a8:f3:d8:f1:a9:71:17:
82:05:d0:55:9a:7c:01:3e:4a:bf:11:a6:66:54:37:9e:44:bc:
fc:4c:ba:ef:b2:63:ff:07:14:dc:ac:6f:34:67:54:ef:15:c9:
cc:5e:cb:f1:82:3f:0d:a2:6c:04:35:03:20:7f:9f:ea:0b:73:
b5:2b:f8:db:4d:48:e2:87:f4:3c:6a:3a:a6:f8:da:40:0f:0d:
17:1f:dc:50:9e:f0:ec:41:cb:39:9b:66:9b:0c:c1:39:1e:12:
97:26:96:84:ab:5a:e8:17:92:45:0b:14:03:9b:fd:e5:95:4b:
cd:0c:13:3b:88:d8:a1:d8:fe:91:40:f6:1b:8f:e8:73:67:d3:
b9:6d:87:23:39:d8:91:44:96:53:65:c9:b6:57:09:c1:27:5d:
36:3d:b8:1e:ae:97:bc:27:4e:f8:2b:9d:3e:8f:6e:fa:6f:0d:
38:78:31:8a:e2:d2:be:a2:2c:54:2b:ed:8d:31:a4:a6:bb:e7:
61:bc:36:16:a1:da:68:5b:f6:54:50:d6:8a:eb:73:f5:cb:55:
82:a6:06:97
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYTM2UIAYYgoa/ilAiO/QP7VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjIxMjAxMDg0MTQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGEyODZkMzc4OTAyZDNjN2FmMTViYzM1MzNhY2M2MWQ4ZGViMDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUWh82mW5f7FXgjxAG6HLIs8LMl7
sOfciPeR+UKdlPhJH3639sb4MEzpLM60Qm5hTzk8eGFD9YCV2CN/Ng8yh9DkS/Hh
+9rslZ9iUE1BFJsmWqeB/lDfY3Zsc438dSQWhIZE6wLiJP6wQFa0AfTG71JtixiT
oZOPBe+yDtla1nC39bVz2Eognu3FqMt0gIQ586YG7cQRMCwhFIEgChKzaHS2oy7t
/kFX23a6E75bzekKQuKNbvCJV+uRWjE53elpuNAX9x6EADF50IrQEfACl/pH+tBz
YHejnuh7TBS4QqseesIp56DSQbof2+PlGcYnvH0aZX3iPYvFsbAuGhlLkQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLSihtN4kC08evFbw1M6zGHY3rB/MB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvdEtLRzAzaVFMVHg2OFZ2RFV6ck1ZZGplc0g4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPki8AwQA
Pki/MA0GCSqGSIb3DQEBCwUAA4IBAQAS9lv2oB7hzfQB4ogdoXfrRTLotGd/kVvF
cozV7iyz4JN3mor5tN/5Mtp6jJRcAajz2PGpcReCBdBVmnwBPkq/EaZmVDeeRLz8
TLrvsmP/BxTcrG80Z1TvFcnMXsvxgj8NomwENQMgf5/qC3O1K/jbTUjih/Q8ajqm
+NpADw0XH9xQnvDsQcs5m2abDME5HhKXJpaEq1roF5JFCxQDm/3llUvNDBM7iNih
2P6RQPYbj+hzZ9O5bYcjOdiRRJZTZcm2VwnBJ102Pbgerpe8J074K50+j276bw04
eDGK4tK+oixUK+2NMaSmu+dhvDYWodpoW/ZUUNaK63P1y1WCpgaX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org