Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/iMdpEDxr256A---NkC6A2V0JiJA.roa
File: iMdpEDxr256A---NkC6A2V0JiJA.roa (raw, json)
Hash identifier: QyzILbjeh22GzgWXHteqwEAPI8/doIm0aAtS7tNWhNE=
Subject key identifier: 88:C7:69:10:3C:6B:DB:9E:80:FB:EF:8D:90:2E:80:D9:5D:09:88:90
Certificate issuer: /CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Certificate serial: AB48BA
Authority key identifier: BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/iMdpEDxr256A---NkC6A2V0JiJA.roa
Signing time: Sat 01 Jan 2022 09:57:01 +0000
ROA not before: Sat 01 Jan 2022 09:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11225274 (0xab48ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Validity
Not Before: Jan 1 09:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88c769103c6bdb9e80fbef8d902e80d95d098890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:24:68:17:da:46:a1:5a:08:ec:26:49:b0:b4:
bd:29:51:be:ee:16:1e:a4:b3:de:94:64:a8:8b:58:
c0:53:05:8f:ed:49:f0:1f:4a:d1:c4:53:10:da:4e:
4c:17:ba:71:15:dd:43:6a:da:07:73:2f:14:d4:2b:
39:05:c7:21:e0:d7:2d:76:1a:61:b8:dc:71:75:db:
ef:a0:70:b8:c1:3d:8c:27:3d:e7:4b:cf:f8:7c:5a:
ab:93:20:dc:a7:11:22:24:08:62:ce:94:4f:fb:f7:
32:3e:9c:88:fa:54:74:48:f3:68:54:d4:90:55:d0:
ee:be:b3:f9:12:52:54:1a:83:97:c2:9e:94:c1:e5:
be:05:8d:0c:c0:05:44:9e:7f:e7:22:5f:23:21:0c:
0d:b8:9b:8e:7e:0c:af:36:29:24:5d:39:47:d3:9f:
37:da:f3:f8:c5:ed:32:24:68:2d:ba:b4:15:8c:47:
09:a4:2a:d8:06:8c:e2:2a:30:d2:23:f3:c3:a0:fa:
96:91:b0:57:10:63:3a:1a:5b:3e:26:81:18:17:40:
13:28:e3:22:5d:df:b9:a8:2c:6e:0f:43:6e:ad:cc:
0e:d5:1b:83:8d:27:11:00:b9:e0:81:be:93:82:82:
9d:2e:1c:ac:9f:52:7c:5d:61:35:89:e7:1c:91:b4:
e3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C7:69:10:3C:6B:DB:9E:80:FB:EF:8D:90:2E:80:D9:5D:09:88:90
X509v3 Authority Key Identifier:
keyid:BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/iMdpEDxr256A---NkC6A2V0JiJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/uuz01e1oqmkmNX5JdH7HAUETGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f8:b4:40:c3:36:5d:de:af:c6:52:78:11:0d:6c:c8:f8:b4:
a8:96:74:42:a8:e3:2a:1a:4f:c7:e2:b2:b3:e0:5c:04:67:fd:
19:4a:df:64:2e:cc:99:8b:77:ab:4f:0f:a1:b8:6a:1d:43:58:
b4:47:de:62:49:ab:9e:20:b2:0f:fb:2e:e1:ba:fa:20:c5:de:
3e:8a:71:4f:f6:c0:9b:d3:99:36:fd:6f:69:23:b4:f5:c8:f6:
3d:49:96:2c:57:e3:79:e5:3a:26:60:da:92:15:5c:0a:a5:7a:
c3:a5:7d:05:8a:c6:55:62:92:a9:be:8f:22:80:ae:d2:6c:4e:
7e:7a:e9:9b:fc:fc:75:64:a4:c8:5f:b2:2a:2a:1b:13:e5:33:
cb:a8:68:77:88:07:e2:7e:9e:6e:bc:f9:ec:06:2b:fd:ea:43:
21:53:9a:b7:7f:0c:13:ad:f3:23:8b:0c:ed:3d:0e:13:a9:34:
76:a7:13:f0:5a:fb:e1:5c:0b:fa:b5:25:74:4b:04:62:ef:3e:
ca:2a:4d:da:ab:0e:2d:6a:e5:3d:33:73:86:58:c8:10:f9:41:
bd:6c:c8:3f:9d:db:6f:45:f1:9b:8a:d0:fc:d7:51:01:6c:13:
2b:b3:39:a0:1a:46:d0:e6:79:00:35:13:82:40:4d:a9:75:fa:
a2:97:68:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:31 2023 by rpki-client on console-ams.rpki-client.org