Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/op8eESxOpwDBtNlH1RREBlcRhv4.roa
File: op8eESxOpwDBtNlH1RREBlcRhv4.roa (raw, json)
Hash identifier: p5SEjwY2RGUjFV4mYCOv2hSfiSQvbDCa+vplxB3yj3o=
Subject key identifier: A2:9F:1E:11:2C:4E:A7:00:C1:B4:D9:47:D5:14:44:06:57:11:86:FE
Certificate issuer: /CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Certificate serial: 377D8C1B
Authority key identifier: 11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/op8eESxOpwDBtNlH1RREBlcRhv4.roa
Signing time: Mon 10 Jan 2022 13:18:44 +0000
ROA not before: Mon 10 Jan 2022 13:18:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50149
IP address blocks: 62.122.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930974747 (0x377d8c1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Validity
Not Before: Jan 10 13:18:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a29f1e112c4ea700c1b4d947d5144406571186fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:86:54:60:d9:47:0b:2c:0d:3e:e3:62:5c:94:
72:4d:a6:d6:7c:a0:f3:b3:8f:c2:3d:46:02:98:d2:
17:16:40:bc:8c:73:b0:ee:f1:e9:e2:74:6c:2e:35:
6e:9e:f1:14:cd:05:95:d3:e7:b7:3f:94:3e:2d:72:
28:66:77:6b:d1:30:a7:7f:a3:5f:bf:7c:6f:44:e3:
42:f3:29:b7:95:2c:90:86:ce:6e:41:11:9a:84:7a:
d8:59:a6:93:5f:f9:96:e7:ef:3b:31:e9:bd:04:83:
ef:64:55:5e:0d:9f:8e:fd:a8:e4:64:a4:5a:81:df:
8b:f8:43:7f:19:91:35:1d:7a:90:87:6c:23:82:3f:
dd:f4:ee:b1:41:7b:d6:aa:48:b1:26:f9:78:83:93:
db:cc:5e:d7:c8:66:2a:6d:72:10:ac:24:e4:ac:46:
c9:a6:4f:a9:78:f8:13:5e:1f:8b:00:6a:df:53:59:
6d:b8:d9:a8:67:0b:11:b9:e5:9d:65:2c:bb:30:20:
42:be:63:17:5a:51:da:00:1d:2d:14:af:66:06:3a:
2a:35:2f:7f:49:e1:2c:5d:07:4f:41:09:44:1a:b9:
57:42:91:e6:94:14:7b:ad:39:3c:e9:68:fe:8b:4e:
fa:30:a7:ef:73:b7:40:a8:94:23:2a:6b:f6:59:10:
79:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9F:1E:11:2C:4E:A7:00:C1:B4:D9:47:D5:14:44:06:57:11:86:FE
X509v3 Authority Key Identifier:
keyid:11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/op8eESxOpwDBtNlH1RREBlcRhv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.216.0/22
Signature Algorithm: sha256WithRSAEncryption
86:2a:43:a7:5a:c4:10:44:b8:8f:2c:c2:a1:fb:0a:02:fd:6c:
01:3c:53:2e:71:76:0b:62:ce:05:d9:fe:b2:15:6d:e7:fd:c0:
4d:5b:6f:aa:67:96:bc:17:ff:95:d4:7a:fa:32:e8:91:f6:20:
dc:5c:a3:f6:58:d4:79:d9:5f:27:41:5d:b6:df:b3:98:3c:95:
1e:04:5a:ff:ee:8a:76:f1:f5:fe:d9:07:f2:83:3d:30:6a:67:
a7:00:47:0d:02:67:7b:c2:46:c2:8f:3c:13:1a:51:52:f6:b6:
92:6a:d1:5f:83:9f:82:f2:9e:0b:e3:c4:87:66:5d:47:61:39:
87:fc:24:31:94:d0:96:95:87:48:4b:2f:58:ed:70:47:05:6b:
87:e9:eb:b3:71:d0:5a:e6:97:7a:b4:07:f3:60:5b:ba:96:1e:
bc:2e:4b:0b:a3:44:5d:b6:bf:fb:bb:2a:8a:19:e7:88:ce:80:
c6:06:11:0d:4a:65:0f:d6:cc:51:c2:7c:8e:72:16:c0:07:df:
77:95:bb:ca:74:83:78:67:fb:1c:47:cd:2a:99:5c:f0:ec:27:
3d:4b:5f:f0:e4:85:42:0b:83:15:88:0d:b5:e2:4a:60:ac:9b:
33:e1:ff:b6:2a:7e:8d:e5:fa:56:95:15:12:30:ee:26:ca:6d:
56:34:b8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:37 2024 by rpki-client on console-fra.rpki-client.org