Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/vNhiY-k9EUZkLDEiRX1omH5ebYc.roa
File: vNhiY-k9EUZkLDEiRX1omH5ebYc.roa (raw, json)
Hash identifier: xvsR09wGyrC4eK3a5X+OqFeNKwjme0ncBRy7tOwOiNg=
Subject key identifier: BC:D8:62:63:E9:3D:11:46:64:2C:31:22:45:7D:68:98:7E:5E:6D:87
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 0184AE5B04D3E136A73D7F0597F4EFE16548
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/vNhiY-k9EUZkLDEiRX1omH5ebYc.roa
Signing time: Fri 25 Nov 2022 10:35:11 +0000
ROA not before: Fri 25 Nov 2022 10:35:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12684
IP address blocks: 62.202.160.0/21 maxlen: 21
62.202.160.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:5b:04:d3:e1:36:a7:3d:7f:05:97:f4:ef:e1:65:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Nov 25 10:35:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcd86263e93d1146642c3122457d68987e5e6d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:3d:c1:83:5e:12:12:3f:50:a6:36:71:67:
f9:82:78:32:6f:15:f9:06:ec:22:91:38:aa:d5:0c:
55:e2:ed:55:7a:6f:2c:69:82:7f:71:6a:9e:03:28:
b9:b1:a8:05:75:9e:b3:22:69:73:fc:3b:7b:8c:49:
6c:6c:08:8f:ab:67:bd:20:c8:5e:88:aa:a1:5a:c1:
ac:9f:d7:da:53:15:0f:25:c3:e9:ed:0a:b3:1d:ae:
ca:0e:f5:c6:20:7c:ce:7d:41:a4:8b:4b:e4:3c:2e:
be:96:07:c2:df:91:7f:92:2d:cf:32:97:00:8b:e7:
1e:6e:b2:77:07:39:7a:72:e6:22:7b:59:fa:3e:d1:
c3:47:e1:2f:f1:73:2e:41:c3:00:5d:38:ef:6e:69:
f5:16:68:96:3e:81:d2:6b:43:3d:16:67:d6:d3:cc:
ff:54:22:7b:04:16:a1:3f:bc:db:0d:53:09:5e:3c:
01:92:96:2f:3c:55:55:2e:72:91:1b:a4:6c:35:91:
ae:fd:86:78:63:ef:ea:62:a7:28:e9:b4:f8:8e:b4:
d6:2e:c4:bb:d5:87:d5:fa:31:2c:02:40:0e:93:a6:
ec:af:96:9d:59:01:cb:a7:2f:9b:f1:db:de:44:e3:
21:64:09:7e:c9:d1:1b:91:34:3a:1c:c1:4d:7b:d9:
ee:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D8:62:63:E9:3D:11:46:64:2C:31:22:45:7D:68:98:7E:5E:6D:87
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/vNhiY-k9EUZkLDEiRX1omH5ebYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.202.160.0/20
Signature Algorithm: sha256WithRSAEncryption
16:c5:e6:04:ce:b5:77:00:82:0f:2f:ab:88:c4:c8:23:d1:41:
e0:6a:b7:99:35:7c:ba:e7:82:e2:4b:e2:1a:0f:11:ef:3a:f4:
2b:62:28:57:5f:7d:ee:cf:89:54:7b:c4:a7:53:d3:e1:3f:89:
30:73:b0:70:01:c8:39:0d:6e:a8:ba:49:a5:9a:af:58:a4:ec:
66:88:ac:1d:2d:71:ce:17:6e:92:76:41:02:f5:aa:c7:33:4b:
a3:f2:99:61:b7:40:15:86:42:40:cd:74:d1:e4:ca:23:8c:71:
e3:f6:6b:33:d7:71:3c:e6:e1:c2:1f:a1:92:f4:8d:fc:38:36:
f6:f8:38:be:79:54:00:47:e1:86:bf:7f:1a:58:a4:9d:ee:0c:
77:48:cc:ca:ac:4d:6d:29:e7:41:ad:74:df:d1:e1:93:0a:45:
4f:be:e5:ee:02:80:b1:7d:04:f7:68:f4:19:4a:ad:f2:d2:2f:
3b:96:ab:44:73:5c:81:af:38:d3:fa:09:5c:47:b5:fe:84:c8:
14:cd:88:b0:43:7f:82:5e:4c:42:02:1d:4d:b6:38:22:67:6d:
9c:c1:3a:9e:4f:fd:42:9e:40:b7:f4:0a:de:54:f1:66:32:6b:
cf:d8:bb:32:da:fd:86:1c:f7:92:dd:1a:f2:96:72:e8:dc:ca:
9d:a0:51:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org