Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/Nw4WFO02dysRkkpZHV0Nvj2dhDw.roa
File: Nw4WFO02dysRkkpZHV0Nvj2dhDw.roa (raw, json)
Hash identifier: WomXejU9/jX/Tp029rUGyGc3K49q1xn0EihX5hveOMs=
Subject key identifier: 37:0E:16:14:ED:36:77:2B:11:92:4A:59:1D:5D:0D:BE:3D:9D:84:3C
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 0184133A827D02AA856EBC53E16BAF8D66CD
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/Nw4WFO02dysRkkpZHV0Nvj2dhDw.roa
Signing time: Wed 26 Oct 2022 07:38:32 +0000
ROA not before: Wed 26 Oct 2022 07:38:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 62.202.152.0/21 maxlen: 24
62.202.168.0/21 maxlen: 21
2a02:1215:ffff::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:3a:82:7d:02:aa:85:6e:bc:53:e1:6b:af:8d:66:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Oct 26 07:38:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=370e1614ed36772b11924a591d5d0dbe3d9d843c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bf:b6:a8:76:1f:49:30:7d:3c:d2:5e:29:63:
c8:55:bf:d8:de:77:4a:96:b0:40:79:87:2d:07:7d:
98:36:99:53:43:f6:82:f6:24:31:db:28:74:cd:1f:
2c:3b:f9:cb:2a:a0:d3:b2:b5:23:bc:bc:02:fe:17:
af:4a:b5:48:1d:93:89:69:1e:c1:5b:f0:a1:c6:18:
0b:53:d0:65:f2:62:8a:8e:7f:f5:42:ce:16:98:f6:
2e:12:4d:59:7d:b9:5a:90:c7:f7:8f:97:ec:6f:73:
b0:fb:7b:09:50:8f:93:26:da:51:7c:a5:07:50:62:
52:eb:4d:1d:ff:d7:e3:44:62:f5:79:20:c2:76:b4:
11:55:a4:5d:07:8b:1f:d8:f3:aa:87:f2:a1:d3:d5:
5a:56:9a:de:e0:42:dc:9c:57:34:f9:a4:d0:3a:9d:
1b:b4:79:eb:72:44:71:35:05:a8:4d:88:98:90:b8:
35:a0:fa:df:41:3d:8e:23:6e:cb:fe:bc:88:83:d8:
6e:7b:e7:9d:97:26:3d:b3:aa:22:8f:af:da:4e:fc:
d5:b1:4c:13:09:e9:7b:f6:af:36:4d:d4:77:7e:ad:
11:8d:9c:9d:fa:af:a1:d7:d0:d3:22:94:79:4d:fe:
a9:49:d0:5c:52:30:7f:6c:46:2a:32:22:88:65:28:
d6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0E:16:14:ED:36:77:2B:11:92:4A:59:1D:5D:0D:BE:3D:9D:84:3C
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/Nw4WFO02dysRkkpZHV0Nvj2dhDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.202.152.0/21
62.202.168.0/21
IPv6:
2a02:1215:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
4d:89:44:49:d7:68:2f:17:51:42:39:0e:e8:2a:85:a9:77:32:
c6:cb:31:01:d6:14:70:2f:64:4c:eb:6d:b4:03:2a:7f:4f:49:
3f:1c:ce:d6:93:09:a6:24:ab:1c:cc:c4:33:ba:c2:11:41:8e:
25:cb:e7:a2:05:01:9a:c3:d5:49:a1:45:74:ea:2d:72:36:ad:
5b:2a:5a:ca:80:6c:a3:9b:d7:ee:21:bb:10:30:55:b8:57:ad:
72:7e:6a:da:90:b1:fd:48:d8:6c:0a:77:be:ba:f3:0c:b5:98:
f1:af:67:1f:97:24:97:53:fe:8d:d3:11:8d:50:e8:4d:dc:de:
0e:1c:5d:d8:56:14:d3:57:b2:3c:6e:ef:3f:8a:e5:01:1b:06:
5b:70:61:99:da:d3:a8:7b:23:44:d5:0f:98:55:50:e3:61:c4:
37:c8:4a:eb:c9:cc:0e:e5:07:2e:49:b6:3b:a0:c6:e8:b3:c9:
c7:98:78:da:84:31:13:d1:d9:9c:36:98:fd:30:08:6c:10:52:
0b:b7:db:4c:de:61:37:0f:e9:b9:2d:07:87:de:d8:e1:8f:27:
27:82:5a:c8:c0:b3:e1:64:59:1e:b8:e4:76:32:1c:52:76:21:
2a:2c:ef:27:c0:c0:87:ec:43:f4:96:4b:b3:fd:4e:a7:b2:07:
90:90:33:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org