Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/8OIwoBkPI-xkelf74exeu9jh6uo.roa
File: 8OIwoBkPI-xkelf74exeu9jh6uo.roa (raw, json)
Hash identifier: lbDKHFLu+QWSk8OUUoCY17Fak+frub8VbGqHoUpijHc=
Subject key identifier: F0:E2:30:A0:19:0F:23:EC:64:7A:57:FB:E1:EC:5E:BB:D8:E1:EA:EA
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 0183D06477F510F91DD107235C5C60FA33C5
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/8OIwoBkPI-xkelf74exeu9jh6uo.roa
Signing time: Thu 13 Oct 2022 08:09:48 +0000
ROA not before: Thu 13 Oct 2022 08:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 62.202.152.0/21 maxlen: 24
62.202.160.0/20 maxlen: 24
62.202.174.0/23 maxlen: 24
2a02:1215:ffff::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:64:77:f5:10:f9:1d:d1:07:23:5c:5c:60:fa:33:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Oct 13 08:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0e230a0190f23ec647a57fbe1ec5ebbd8e1eaea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f9:fc:b9:2f:f3:d8:77:0d:9d:54:27:2b:9f:
62:4d:7b:31:0d:1a:b2:13:b1:99:46:e7:36:e9:22:
5d:b4:8d:34:5c:34:63:14:58:3e:01:9c:16:ea:43:
f2:a0:d8:4d:b5:ab:25:d3:a8:00:25:af:4a:8e:53:
48:68:b0:5f:23:6c:be:5c:2a:ba:e2:a2:f0:6f:a9:
28:8d:de:ac:e6:98:79:01:04:28:4b:6b:ae:cb:53:
04:0c:86:30:8f:1d:23:ad:26:0f:62:73:98:bc:d1:
63:2a:48:ed:00:f1:07:e4:33:4b:d0:42:5d:a3:93:
e2:1b:57:61:22:bf:73:93:ce:60:75:4a:ec:0d:fb:
f5:d1:f9:b2:69:93:5a:93:c6:69:04:2e:5a:e8:b6:
39:ca:03:86:ae:64:8d:09:2e:79:bf:17:b1:42:f7:
8b:7b:a1:e7:b8:52:6c:66:da:e5:e6:81:de:39:b0:
a9:95:3c:3e:56:58:e4:a6:fd:c7:8f:dc:7d:4f:80:
b7:3a:12:ce:c8:b3:18:43:6b:6d:47:0a:c4:67:c9:
52:5d:f2:4b:eb:e4:59:93:18:0c:9b:e0:75:26:c2:
2a:48:78:ee:26:a8:01:c4:83:9c:13:97:aa:39:6f:
2f:d4:30:2c:d0:e1:75:7c:44:bc:56:ff:1f:da:5e:
2a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E2:30:A0:19:0F:23:EC:64:7A:57:FB:E1:EC:5E:BB:D8:E1:EA:EA
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/8OIwoBkPI-xkelf74exeu9jh6uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.202.152.0-62.202.175.255
IPv6:
2a02:1215:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
15:8d:18:21:f0:23:25:cb:a0:6b:8a:9b:e0:ea:c1:62:0c:77:
bb:37:52:69:fc:1f:3e:df:a9:4c:78:1a:15:e0:9d:1e:7f:8a:
b3:e4:5d:93:7a:03:55:15:c8:e4:5f:5a:cd:cf:78:ef:ec:ac:
ef:de:81:06:6a:bb:4f:2f:3e:3f:dd:e2:70:52:2f:87:b6:24:
3d:6d:4f:a3:2f:19:df:a0:99:6d:8c:51:29:72:d6:fd:75:d0:
ff:97:97:49:f0:8b:7a:39:14:1a:78:bd:85:4c:2d:ca:49:58:
c3:84:29:c9:cf:ce:5d:f1:b1:15:61:e2:e6:ce:db:ff:ce:f6:
eb:e6:93:5e:02:28:48:73:fb:4d:72:17:30:90:cc:d2:82:2b:
27:20:c3:54:c1:82:1f:bb:36:e2:b4:67:b6:1e:57:99:b0:b7:
d5:1b:05:61:4e:60:10:59:68:24:19:62:cd:ad:47:a7:ec:e5:
aa:7f:04:45:76:56:d1:33:80:1f:7b:d9:f1:a1:c4:3c:5d:32:
69:b8:00:02:03:7b:9c:4a:b9:9e:96:33:a5:ce:b5:96:55:f5:
d1:a4:57:89:52:05:04:43:e3:17:25:5c:79:f7:10:bf:9d:c0:
35:a0:46:15:0b:96:01:3d:4b:48:e0:43:e9:86:37:48:29:78:
e0:12:a8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org