Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/KV_FSmRUt8CPaBHuPHs3Zl7cbKc.roa
File: KV_FSmRUt8CPaBHuPHs3Zl7cbKc.roa (raw, json)
Hash identifier: ge/vyfyiAoA8x6+OdXgSBb4yZnBSxIUH3Ammx03ygvM=
Subject key identifier: 29:5F:C5:4A:64:54:B7:C0:8F:68:11:EE:3C:7B:37:66:5E:DC:6C:A7
Certificate issuer: /CN=b17d969208e19f2fcb9d0ce0be8f72995081d6b7
Certificate serial: B16E17
Authority key identifier: B1:7D:96:92:08:E1:9F:2F:CB:9D:0C:E0:BE:8F:72:99:50:81:D6:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sX2Wkgjhny_LnQzgvo9ymVCB1rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/KV_FSmRUt8CPaBHuPHs3Zl7cbKc.roa
Signing time: Sat 01 Jan 2022 10:01:09 +0000
ROA not before: Sat 01 Jan 2022 10:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34412
IP address blocks: 62.204.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11628055 (0xb16e17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b17d969208e19f2fcb9d0ce0be8f72995081d6b7
Validity
Not Before: Jan 1 10:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=295fc54a6454b7c08f6811ee3c7b37665edc6ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f3:70:dc:7d:c4:e4:48:96:6c:4e:ec:a7:b5:
70:35:38:da:83:84:cc:d0:9b:d2:74:84:1b:f4:c9:
38:3e:62:ca:f7:8e:22:7b:05:b6:84:e5:9e:1a:62:
38:98:e2:69:d2:7f:a8:ba:8f:5b:d1:6b:b8:07:2d:
a8:3f:30:f7:83:f0:ef:29:96:7b:41:08:3e:3a:79:
9a:e0:e2:d1:4f:b6:9f:c3:46:6e:a7:50:7b:91:e9:
5b:5e:91:d6:76:5a:59:98:12:24:10:58:6c:bd:a9:
02:7f:2b:74:6d:13:3c:0c:96:64:b8:dd:a9:d6:9a:
88:f5:81:f0:12:cd:72:d3:46:ec:46:7d:f2:79:cb:
35:e7:cc:f6:0b:49:cf:75:96:db:87:7c:25:83:6c:
7c:b7:0d:96:02:1a:a6:df:3a:17:14:66:b7:19:c5:
6c:58:1e:1a:7f:7f:08:58:ac:22:72:e5:82:57:4e:
73:52:4e:84:cc:82:1e:24:84:12:6a:1f:6b:0e:b8:
18:08:f6:b3:8c:b2:9f:f1:74:36:b6:26:c5:ce:e7:
c7:a2:01:a2:e4:d6:ef:79:4d:a9:87:89:26:41:6a:
fd:2e:58:3b:83:7b:48:b5:28:9e:65:3e:de:6b:fb:
2c:0d:f6:6a:44:17:97:a4:cd:1c:c9:59:c5:3d:9a:
1a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:5F:C5:4A:64:54:B7:C0:8F:68:11:EE:3C:7B:37:66:5E:DC:6C:A7
X509v3 Authority Key Identifier:
keyid:B1:7D:96:92:08:E1:9F:2F:CB:9D:0C:E0:BE:8F:72:99:50:81:D6:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sX2Wkgjhny_LnQzgvo9ymVCB1rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/KV_FSmRUt8CPaBHuPHs3Zl7cbKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/sX2Wkgjhny_LnQzgvo9ymVCB1rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.61.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:4b:51:68:40:80:45:9f:1f:19:c1:15:47:44:c7:c7:52:39:
c5:c9:fb:d1:10:76:a2:a5:79:95:e3:04:d3:42:fd:54:0e:45:
1b:7d:62:df:1e:1a:01:55:9d:0d:54:88:92:f0:d6:05:15:71:
bb:d0:24:9c:ea:25:e8:aa:c4:a0:45:53:8f:00:3d:18:2d:14:
cd:80:37:b7:2d:8c:02:f6:0c:0f:1c:f0:e5:bc:78:27:51:f1:
8a:08:6a:56:b5:cb:06:26:dc:d0:06:c1:c3:65:bc:c1:96:67:
85:4a:27:52:a0:30:6e:53:7f:cb:53:9b:35:0b:51:4b:f7:c2:
e3:68:49:7d:d3:94:19:c9:38:ed:c6:3b:77:76:2f:81:ef:b5:
5d:ba:97:72:35:63:e7:e9:18:27:da:d4:78:88:f5:27:7b:21:
f0:e9:ee:b9:f4:9f:60:6b:d4:59:86:90:e9:05:c1:fc:b8:f3:
88:52:86:2e:f5:3e:fe:6a:25:81:39:95:a1:87:d3:35:bc:e7:
6a:be:23:58:ee:6a:c7:6f:bc:9a:ae:93:fd:ce:ad:34:cd:6a:
33:7b:ca:c2:65:94:28:53:87:93:45:19:ea:fa:f6:6e:73:7f:
73:f8:ea:ec:c2:7e:21:8c:11:1e:79:b5:3e:f2:ec:39:3f:78:
a8:b3:04:d8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALFuFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTdkOTY5MjA4ZTE5ZjJmY2I5ZDBjZTBiZThmNzI5OTUwODFkNmI3MB4XDTIyMDEw
MTEwMDEwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjk1ZmM1NGE2NDU0
YjdjMDhmNjgxMWVlM2M3YjM3NjY1ZWRjNmNhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKXzcNx9xORIlmxO7Ke1cDU42oOEzNCb0nSEG/TJOD5iyveO
InsFtoTlnhpiOJjiadJ/qLqPW9FruActqD8w94Pw7ymWe0EIPjp5muDi0U+2n8NG
bqdQe5HpW16R1nZaWZgSJBBYbL2pAn8rdG0TPAyWZLjdqdaaiPWB8BLNctNG7EZ9
8nnLNefM9gtJz3WW24d8JYNsfLcNlgIapt86FxRmtxnFbFgeGn9/CFisInLlgldO
c1JOhMyCHiSEEmofaw64GAj2s4yyn/F0NrYmxc7nx6IBouTW73lNqYeJJkFq/S5Y
O4N7SLUonmU+3mv7LA32akQXl6TNHMlZxT2aGrcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQpX8VKZFS3wI9oEe48ezdmXtxspzAfBgNVHSMEGDAWgBSxfZaSCOGfL8ud
DOC+j3KZUIHWtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NYMldrZ2pobnlfTG5Remd2bzl5bVZDQjFyYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODUvMGJkODIzLWE4MWYtNDgyNC05ZjVkLWZjY2ExOWMzZjYzNS8x
L0tWX0ZTbVJVdDhDUGFCSHVQSHMzWmw3Y2JLYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUv
MGJkODIzLWE4MWYtNDgyNC05ZjVkLWZjY2ExOWMzZjYzNS8xL3NYMldrZ2pobnlf
TG5Remd2bzl5bVZDQjFyYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD7MPTANBgkqhkiG9w0BAQsFAAOC
AQEAxEtRaECARZ8fGcEVR0THx1I5xcn70RB2oqV5leME00L9VA5FG31i3x4aAVWd
DVSIkvDWBRVxu9AknOol6KrEoEVTjwA9GC0UzYA3ty2MAvYMDxzw5bx4J1Hxighq
VrXLBibc0AbBw2W8wZZnhUonUqAwblN/y1ObNQtRS/fC42hJfdOUGck47cY7d3Yv
ge+1XbqXcjVj5+kYJ9rUeIj1J3sh8OnuufSfYGvUWYaQ6QXB/LjziFKGLvU+/mol
gTmVoYfTNbznar4jWO5qx2+8mq6T/c6tNM1qM3vKwmWUKFOHk0UZ6vr2bnN/c/jq
7MJ+IYwRHnm1PvLsOT94qLME2A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:51 2023 by rpki-client on console-fra.rpki-client.org