Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/1-g5ZTW48yrb2iUq3kvue4HiaTAA.roa
File: 1-g5ZTW48yrb2iUq3kvue4HiaTAA.roa (raw, json)
Hash identifier: chfWcKcvNAgsEhIe3yA6cak+GY2YpWQ25dVZcmMbNGI=
Subject key identifier: FA:0E:59:4D:6E:3C:CA:B6:F6:89:4A:B7:92:FB:9E:E0:78:9A:4C:00
Certificate issuer: /CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Certificate serial: 0114866E
Authority key identifier: BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/1-g5ZTW48yrb2iUq3kvue4HiaTAA.roa
Signing time: Mon 14 Feb 2022 09:26:50 +0000
ROA not before: Mon 14 Feb 2022 09:26:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18122350 (0x114866e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Validity
Not Before: Feb 14 09:26:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa0e594d6e3ccab6f6894ab792fb9ee0789a4c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3a:8b:2f:f5:45:59:b2:d9:22:b2:ea:f0:9e:
ad:38:c5:fc:3f:65:5c:ea:57:4b:6d:4c:53:96:48:
a7:89:6a:d5:29:b0:5c:8f:e2:30:a0:19:d1:84:93:
43:30:99:a5:95:b9:e2:5e:67:70:96:06:bc:3c:1a:
74:f6:dc:d8:de:eb:44:63:d1:b1:e9:80:11:64:36:
69:f7:a5:7c:62:44:7f:38:69:32:1e:63:16:2b:11:
ec:5a:48:94:37:7c:f5:10:24:b2:c5:ad:4b:cc:a1:
24:69:3a:2d:a3:60:e2:21:64:21:f1:7f:c8:a0:66:
e8:cc:08:88:07:6e:82:83:cc:01:c0:da:31:42:f8:
ad:71:b4:49:0a:8f:a7:ba:b7:d5:72:ae:35:80:b5:
bf:27:56:56:25:1b:ae:4b:c5:e9:42:e6:ff:8a:c8:
e1:80:7a:56:93:2f:b6:12:60:71:c8:8b:67:7b:45:
21:1c:2e:50:82:7b:5a:39:69:7a:29:db:56:41:21:
9f:6f:5e:33:7e:5a:1c:a0:31:51:ee:48:5f:6f:48:
2f:a9:f5:e7:c4:ca:c9:22:ab:84:68:73:12:58:a6:
57:58:23:c3:a2:23:7b:ea:90:b7:0e:fd:f6:36:70:
ea:43:dc:6c:0b:b2:99:c5:f3:06:54:2c:6c:44:c7:
37:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:0E:59:4D:6E:3C:CA:B6:F6:89:4A:B7:92:FB:9E:E0:78:9A:4C:00
X509v3 Authority Key Identifier:
keyid:BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/1-g5ZTW48yrb2iUq3kvue4HiaTAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/uuz01e1oqmkmNX5JdH7HAUETGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:66:56:11:47:ff:2d:7e:0a:b0:96:b5:0f:92:0d:d9:1b:0d:
51:84:c9:64:00:88:a3:ae:9e:3f:db:83:aa:64:df:d4:db:01:
51:7b:4d:64:88:29:04:f5:84:f0:e4:0b:fb:8d:84:d1:b8:34:
77:8f:f1:5a:96:f3:07:bd:39:52:e2:bd:8d:4c:5d:e5:09:a9:
26:f9:0d:83:5e:ac:5c:68:36:42:a9:f7:2b:a8:ee:71:5b:d4:
66:2e:e2:e4:84:5b:0a:de:49:a6:53:aa:7e:c3:ab:2e:c1:2b:
0a:d0:23:90:00:b2:6c:f0:5c:a5:e9:03:88:9c:0e:b3:a2:e5:
ca:ad:f8:61:d9:b6:63:1c:33:2d:e4:7a:11:0d:01:bf:b3:5e:
47:57:60:82:38:50:13:8f:50:2f:47:2b:26:a2:01:72:cd:12:
eb:b3:6b:db:5e:7c:69:14:01:c9:e9:30:c1:ad:ce:e5:e9:c4:
72:e3:eb:90:f7:e0:4c:4e:27:a4:ce:76:0c:67:47:a7:63:b0:
df:c5:e9:79:41:01:b5:d3:6a:b8:b7:57:a6:d8:13:cc:b0:f1:
30:b9:2a:b7:ca:95:d9:3a:e5:89:9a:dc:2d:f9:27:a8:18:ed:
73:2c:4f:dd:ec:45:c3:14:d8:a3:e9:f7:ad:26:c1:71:11:d2:
3c:78:2e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:54 2023 by rpki-client on console-fra.rpki-client.org