Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/1-U6cP3sEeoDQHchFkJN_2ehsguQ.roa
File: 1-U6cP3sEeoDQHchFkJN_2ehsguQ.roa (raw, json)
Hash identifier: d45uUF68lAmwnGIe3eTdnxCtxDK5KVGCGNPh4ofJwRI=
Subject key identifier: F9:4E:9C:3F:7B:04:7A:80:D0:1D:C8:45:90:93:7F:D9:E8:6C:82:E4
Certificate issuer: /CN=dabb1d01602f15211132ed48185a99b36225117f
Certificate serial: 2AAF20
Authority key identifier: DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/1-U6cP3sEeoDQHchFkJN_2ehsguQ.roa
Signing time: Sat 01 Jan 2022 01:52:39 +0000
ROA not before: Sat 01 Jan 2022 01:52:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210646
IP address blocks: 62.233.37.0/24 maxlen: 24
2a11:9d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2797344 (0x2aaf20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dabb1d01602f15211132ed48185a99b36225117f
Validity
Not Before: Jan 1 01:52:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f94e9c3f7b047a80d01dc84590937fd9e86c82e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:48:c3:b2:a9:d3:ef:8f:7e:11:0c:28:11:81:
80:f6:81:c5:91:4c:68:07:b8:89:fb:0a:c2:7f:b2:
0e:f2:0b:3b:74:33:15:11:56:92:08:f5:a9:18:c8:
bb:70:98:a0:79:f9:59:7c:08:8c:d7:e8:e7:b2:cf:
da:73:9a:20:24:43:e4:01:e3:5a:6a:6c:99:3f:c1:
56:03:59:1c:c5:91:74:bf:60:0c:e4:0f:e4:a5:f0:
ca:59:2a:8f:ef:83:87:6d:3e:4c:6f:a2:a3:fd:b5:
91:7b:86:4f:d9:71:2e:21:61:57:4d:57:e9:5c:4b:
4a:46:08:61:18:02:e1:3a:f1:80:50:06:71:56:b1:
36:e7:78:a6:96:9f:f0:67:48:02:39:01:54:3e:69:
31:2a:19:18:67:3e:3f:62:4f:32:e9:77:27:a1:97:
eb:1f:94:44:b6:5a:73:26:c0:2a:04:51:48:b7:98:
39:ec:1b:07:ad:38:30:0e:bf:8c:a9:54:e3:16:df:
3b:ba:1b:63:81:78:c6:2f:24:e1:bc:77:5c:52:50:
ca:b4:f6:24:6b:b3:df:cd:43:7d:16:d5:79:ed:52:
99:2f:ad:df:1b:e0:6c:4f:dd:e7:b8:82:7f:1e:74:
e7:33:f4:88:92:b0:34:39:08:35:51:f5:c1:b0:d4:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4E:9C:3F:7B:04:7A:80:D0:1D:C8:45:90:93:7F:D9:E8:6C:82:E4
X509v3 Authority Key Identifier:
keyid:DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/1-U6cP3sEeoDQHchFkJN_2ehsguQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.37.0/24
IPv6:
2a11:9d40::/29
Signature Algorithm: sha256WithRSAEncryption
75:5f:03:e0:0c:7e:f5:df:c7:b7:17:7d:e6:b3:36:78:07:90:
e0:d3:f0:8b:2f:7c:5c:1e:fc:b9:53:d9:52:1f:2f:10:06:36:
5c:dd:d4:2c:f4:d9:a9:2a:bf:04:84:6d:f0:b7:62:5c:2f:64:
c5:8b:24:a0:91:2d:72:04:78:2f:f9:97:65:45:86:a5:29:9a:
32:67:06:44:e1:a1:f8:c3:36:c8:b7:ef:6e:91:55:7e:20:55:
5e:9d:bf:1d:6b:02:8f:ed:30:22:de:e9:b0:b4:78:e0:a6:75:
39:56:94:10:46:79:8f:f4:68:92:c5:54:b9:e1:72:91:4e:24:
33:de:d8:1a:25:43:54:db:53:69:ae:8a:15:ec:33:e8:55:b2:
69:ed:1f:e3:27:d4:e0:fb:bb:17:0f:b6:1b:10:ae:c5:62:42:
b8:20:89:d3:0c:1e:cb:00:33:70:06:32:f1:31:71:b4:84:d9:
e4:0b:ed:65:2c:49:da:bc:a8:c1:39:4a:d8:e9:d1:91:85:23:
31:2a:dd:76:f5:f0:c7:39:ea:b8:b4:4c:82:e5:09:99:02:22:
4f:2f:fd:4f:1e:46:fc:c9:87:99:cd:c5:8c:ba:56:74:2e:ed:
c0:01:b9:96:bd:cf:19:b4:13:be:2a:ce:a7:3e:37:6c:3a:da:
28:8c:5b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:42 2023 by rpki-client on console-ams.rpki-client.org