Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/PKRvf0PXnqIWAPEgdIq9Dlb-Pis.roa
File: PKRvf0PXnqIWAPEgdIq9Dlb-Pis.roa (raw, json)
Hash identifier: FeV9GLTD7L3fx0t/Ldv4UpdOxBdgcO+MKXjZr+3Ldko=
Subject key identifier: 3C:A4:6F:7F:43:D7:9E:A2:16:00:F1:20:74:8A:BD:0E:56:FE:3E:2B
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 3F29EF2C
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/PKRvf0PXnqIWAPEgdIq9Dlb-Pis.roa
Signing time: Mon 16 May 2022 09:41:29 +0000
ROA not before: Mon 16 May 2022 09:41:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 62.202.152.0/21 maxlen: 24
2a02:1215:ffff::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1059712812 (0x3f29ef2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: May 16 09:41:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ca46f7f43d79ea21600f120748abd0e56fe3e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c1:ae:6f:ee:f9:ea:30:97:da:89:01:11:9c:
0d:86:3f:81:ab:34:5f:e0:d1:2d:9e:52:ba:47:bc:
db:5c:53:8c:bf:71:5f:32:23:51:86:3f:5f:94:3f:
5c:4a:de:b6:34:60:6d:b3:07:a3:1e:e2:ef:1c:10:
af:04:bd:62:cb:61:a8:80:9a:3e:3d:bf:52:22:7d:
0b:43:45:32:31:9f:1a:67:9b:0a:35:a0:57:f4:10:
71:ba:8d:af:07:8c:3c:87:68:29:b4:d1:99:a0:8e:
b0:cd:21:1f:24:2e:a5:cb:b9:04:57:c2:a0:c7:ba:
dd:4c:74:c4:74:28:ed:39:b2:55:ad:a2:61:82:9e:
b7:66:0f:f1:d9:da:b2:4f:88:1f:84:c5:9b:36:2f:
bd:4b:cb:a7:42:34:0c:cd:01:be:4f:0a:d2:85:da:
f3:2d:6e:74:46:e5:49:2e:96:f6:14:01:ce:b2:b3:
96:80:76:5e:8e:d8:0c:4b:25:8d:7c:61:a4:14:2e:
5a:c3:11:d1:70:f3:d0:8f:fa:f5:a4:be:a6:3d:2f:
40:fd:2a:66:82:a9:4b:3f:38:9a:00:3e:45:45:ef:
10:44:a8:dd:f6:90:c2:9b:8d:4b:40:e1:45:b8:94:
e5:b8:ae:05:ca:c6:3c:08:2d:02:b9:62:15:82:9a:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A4:6F:7F:43:D7:9E:A2:16:00:F1:20:74:8A:BD:0E:56:FE:3E:2B
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/PKRvf0PXnqIWAPEgdIq9Dlb-Pis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.202.152.0/21
IPv6:
2a02:1215:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
0d:88:53:8f:b1:a1:48:aa:5a:c6:59:33:72:c9:3d:83:19:4c:
18:be:5a:1c:5b:0b:13:e9:1f:75:34:56:99:e8:d2:07:0c:9c:
55:f1:b9:d0:3a:92:51:ad:b8:cd:fc:74:5e:9d:66:f9:1d:33:
f8:b7:a4:8c:82:6c:1b:81:c2:2f:77:ad:89:1c:f8:e1:66:de:
5a:b6:e3:18:cd:96:69:23:9f:4d:e3:5f:0f:7e:2e:2e:ab:14:
e7:6a:e9:f3:1b:79:93:6e:3a:e9:95:e8:d3:1f:ab:d1:81:4f:
9f:10:6c:77:57:e0:fe:c0:f0:c1:aa:c4:a0:de:66:11:33:bb:
e3:24:42:f3:f8:b6:f5:5a:ec:2a:47:95:ee:95:c2:72:9f:a6:
82:cb:45:dd:ec:cf:a4:ec:e2:8a:4f:04:f5:c1:88:96:43:83:
86:61:81:59:56:52:fe:8c:7a:c7:8d:20:4c:42:ed:21:78:4d:
a1:39:5b:13:c1:12:b7:41:3e:09:a2:c6:a1:37:93:2f:45:24:
fe:4d:95:b5:83:c6:de:17:76:8a:96:7a:d8:e5:ba:4b:80:48:
e7:fd:83:78:8c:71:d7:d4:fb:74:c4:82:a7:b2:c2:88:2c:dd:
17:7f:96:ae:37:e3:1d:94:8f:fe:8f:40:a0:d7:71:d3:4c:b4:
fa:80:cd:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org