Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u0-L-f_4zLMCy5ZOiMsTPfc4nNw.roa
File: u0-L-f_4zLMCy5ZOiMsTPfc4nNw.roa (raw, json)
Hash identifier: nHOtAi+HC8eb6Zb8bL6UZNQUs3PA2wJw/4uNJ/En/EU=
Subject key identifier: BB:4F:8B:F9:FF:F8:CC:B3:02:CB:96:4E:88:CB:13:3D:F7:38:9C:DC
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0184C20334225C33E5667E0AD7D66AB06B81
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u0-L-f_4zLMCy5ZOiMsTPfc4nNw.roa
Signing time: Tue 29 Nov 2022 06:11:40 +0000
ROA not before: Tue 29 Nov 2022 06:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 62.72.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:03:34:22:5c:33:e5:66:7e:0a:d7:d6:6a:b0:6b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 29 06:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb4f8bf9fff8ccb302cb964e88cb133df7389cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ed:65:bc:05:f3:a1:16:02:2e:d4:c6:25:5c:
25:c4:aa:57:1a:cb:c9:89:d9:76:ef:40:5a:f7:26:
70:fd:c3:21:97:ce:98:aa:6b:c9:74:b6:99:43:f6:
c9:00:08:cb:f7:34:8c:f8:36:27:15:9b:fd:87:c9:
f3:d3:bb:ad:b9:08:a8:9b:c0:ad:e2:3d:34:bd:77:
11:10:da:8d:42:99:12:20:0f:ff:23:ab:43:33:4f:
39:44:75:1a:3f:6a:30:8f:ed:2d:3d:1f:71:9b:d7:
58:8d:b7:6d:97:2c:33:cb:8e:3d:51:45:42:4e:1d:
da:35:d9:ac:cf:02:b5:9f:3e:1d:0c:ce:de:3e:f3:
50:47:14:16:cf:6a:c2:30:f9:22:c3:44:12:ea:23:
ff:95:41:72:91:ad:e8:59:21:42:92:56:a7:28:3e:
38:44:ae:19:6f:de:a0:0e:a6:5e:46:2d:05:e4:30:
38:91:d0:2f:d5:0e:d4:ec:6c:cb:12:fa:47:05:30:
bb:5c:6f:05:62:b2:06:82:5e:90:ab:9b:22:5a:c5:
2a:a8:d3:0f:3d:19:9c:50:22:fe:cc:ed:08:bc:4f:
4e:b9:9c:96:ea:c5:e6:69:2a:4f:af:67:d3:85:cc:
6d:38:d9:90:4c:a7:32:fe:a0:81:55:e0:15:7d:74:
79:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:4F:8B:F9:FF:F8:CC:B3:02:CB:96:4E:88:CB:13:3D:F7:38:9C:DC
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u0-L-f_4zLMCy5ZOiMsTPfc4nNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.177.0/24
Signature Algorithm: sha256WithRSAEncryption
99:dd:9a:e8:e7:2d:df:46:19:7e:cb:60:df:6d:92:bd:17:8c:
3a:18:ad:0b:1e:5f:a2:ec:7b:ac:b1:5f:19:36:c3:fd:d8:96:
99:5e:f9:d6:9f:7e:ba:e8:e9:e9:18:38:00:f5:5e:45:f6:3f:
05:06:00:de:80:21:d1:12:be:38:b9:e2:f8:76:77:ed:5c:e1:
81:48:a4:4e:ec:81:54:34:c7:79:78:67:de:f9:7b:ff:e4:e1:
49:07:1e:05:09:98:0c:b9:47:88:46:3f:35:79:68:f5:0f:92:
05:2b:4a:4a:75:f8:d8:b0:71:12:04:c4:3d:33:dc:f2:02:05:
61:57:ad:de:f6:04:14:f4:16:9c:10:86:0b:43:d8:50:e7:ac:
ca:71:ea:df:58:02:5a:64:b2:26:15:d6:3a:9c:58:9a:bd:4f:
1f:84:7c:cf:e1:6a:16:5d:60:ed:1b:ca:79:cf:a6:e5:d6:ce:
6c:32:f1:76:ba:08:1e:b9:76:49:fb:f6:72:00:ec:32:fb:46:
b0:89:f2:0f:d6:38:cd:82:39:44:7a:93:f7:9c:ad:fd:51:b9:
06:0d:9f:27:e3:80:a3:ec:bd:3c:d6:58:2a:32:6b:5e:b2:f2:
69:79:3c:69:98:57:52:40:22:9f:7a:a9:a5:28:65:b3:2f:13:
d0:33:01:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org