Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c62f5a-fe95-4926-85a2-e18e3c4e9cd1/1/VQN7BHIm5a4Q6VYK7l_dZN1stDw.roa
File: VQN7BHIm5a4Q6VYK7l_dZN1stDw.roa (raw, json)
Hash identifier: ZSs22KGm4WWkFS07z6T0QxmXrVA1igQEEyC6SvCL4gk=
Subject key identifier: 55:03:7B:04:72:26:E5:AE:10:E9:56:0A:EE:5F:DD:64:DD:6C:B4:3C
Certificate issuer: /CN=56b001a946e67129d794235b515b20d9ea908a87
Certificate serial: 0181F4650B5EB4B9F5F14DC2EFF5EBB2A23B
Authority key identifier: 56:B0:01:A9:46:E6:71:29:D7:94:23:5B:51:5B:20:D9:EA:90:8A:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrABqUbmcSnXlCNbUVsg2eqQioc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c62f5a-fe95-4926-85a2-e18e3c4e9cd1/1/VQN7BHIm5a4Q6VYK7l_dZN1stDw.roa
Signing time: Tue 12 Jul 2022 21:51:11 +0000
ROA not before: Tue 12 Jul 2022 21:51:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 62.233.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:65:0b:5e:b4:b9:f5:f1:4d:c2:ef:f5:eb:b2:a2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b001a946e67129d794235b515b20d9ea908a87
Validity
Not Before: Jul 12 21:51:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55037b047226e5ae10e9560aee5fdd64dd6cb43c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ee:31:f4:0c:de:1f:bd:3f:b5:15:2c:bd:4a:
14:b0:21:99:80:b6:58:40:85:73:a9:c6:47:1e:73:
5e:83:07:fd:36:72:e6:b9:08:45:9a:38:d9:57:d7:
71:14:f6:9f:b8:26:74:1b:c9:79:ff:a7:c7:d2:ad:
30:b4:76:24:ec:a3:81:de:d1:81:b3:b4:f0:29:e6:
ad:a3:0c:ed:4d:91:5b:2c:40:a0:e4:9e:38:a2:a4:
14:71:8f:5c:00:a4:7a:20:38:1a:2f:3b:8c:50:12:
fc:ae:99:d4:38:c6:f6:c9:38:ce:be:b1:7d:19:fe:
94:8c:e0:c9:21:3e:bf:3f:71:7e:c3:24:36:3a:06:
34:7b:7d:8a:d8:71:04:85:86:e0:3b:de:e8:00:9b:
f7:a2:8c:d6:51:89:c0:02:66:03:c9:98:d0:5a:69:
c4:61:59:73:3d:ef:be:24:c7:70:ed:7d:13:92:57:
b3:6e:e0:f7:df:b7:33:59:cf:70:54:28:6e:ca:72:
40:e8:3a:fc:e6:da:53:e8:0b:da:c8:5e:d2:a3:2e:
a1:98:7c:b7:94:f5:f3:6d:f0:4d:28:ce:55:0e:70:
d8:21:1e:51:c0:50:ab:6e:fd:69:a4:86:62:05:fa:
4b:20:b0:41:a9:bd:7d:18:68:6e:b8:1a:d9:59:34:
6e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:03:7B:04:72:26:E5:AE:10:E9:56:0A:EE:5F:DD:64:DD:6C:B4:3C
X509v3 Authority Key Identifier:
keyid:56:B0:01:A9:46:E6:71:29:D7:94:23:5B:51:5B:20:D9:EA:90:8A:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrABqUbmcSnXlCNbUVsg2eqQioc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c62f5a-fe95-4926-85a2-e18e3c4e9cd1/1/VQN7BHIm5a4Q6VYK7l_dZN1stDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c62f5a-fe95-4926-85a2-e18e3c4e9cd1/1/VrABqUbmcSnXlCNbUVsg2eqQioc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.35.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8e:30:0c:40:4e:25:da:6e:f4:0a:9a:3e:2b:99:a6:42:2f:
d2:cb:e0:52:25:c1:df:36:d9:64:4d:4a:b3:3c:99:1e:0e:8f:
a8:8e:14:75:0d:77:53:f3:16:47:41:db:bb:89:ea:2f:ba:be:
f6:ce:15:8e:4f:72:a7:c2:fa:bf:5a:09:fb:79:34:73:2c:d9:
ec:fd:eb:7a:f6:0d:32:9d:56:46:c1:6f:a7:ea:4b:58:41:00:
ec:10:46:b3:5c:7e:78:e7:db:cb:d8:5e:e2:71:72:50:4f:cc:
df:bf:22:1f:47:de:05:43:de:ce:da:74:91:8e:64:06:0a:b0:
eb:76:4e:00:04:86:f9:8f:33:01:54:85:e4:cb:55:07:0e:07:
64:a9:e6:12:1b:09:e1:7e:d6:c4:95:3e:5f:17:1a:d0:2a:f9:
32:86:36:02:77:27:d6:3a:76:22:ca:69:c9:67:0b:0b:5c:0f:
f4:4c:c1:d2:1c:55:5f:78:d9:93:40:92:ec:5a:60:ec:79:77:
b8:de:ea:70:b3:96:44:04:3a:a3:2c:5e:74:8a:40:1a:ad:a9:
82:a5:e1:75:6b:f8:2b:6e:5a:7b:98:86:c9:69:3b:b7:fe:0a:
db:77:4f:29:80:8b:46:2d:cf:51:d0:03:09:8a:e1:c8:26:9e:
53:9e:81:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:10 2023 by rpki-client on console-ams.rpki-client.org