Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/3rokECJoL4sWh5lWcoGSJMcEcWc.roa
File: 3rokECJoL4sWh5lWcoGSJMcEcWc.roa (raw, json)
Hash identifier: yCdFGEoIjryCXSkygdIEbbg0jGuvw5qKMTFbKMEPkiU=
Subject key identifier: DE:BA:24:10:22:68:2F:8B:16:87:99:56:72:81:92:24:C7:04:71:67
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 1767EE67
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/3rokECJoL4sWh5lWcoGSJMcEcWc.roa
Signing time: Sat 01 Jan 2022 09:54:06 +0000
ROA not before: Sat 01 Jan 2022 09:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202232
IP address blocks: 62.228.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392687207 (0x1767ee67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 1 09:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=deba241022682f8b1687995672819224c7047167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:81:e9:14:d9:01:2c:6c:4e:b1:4d:d3:28:
a8:0a:f6:47:90:16:d2:a6:42:7d:93:4e:4e:28:be:
d3:5e:4e:57:9e:49:df:15:b0:bc:50:d0:06:16:60:
f6:2b:e2:43:e8:25:96:b1:7b:ae:96:de:09:58:d8:
98:53:c6:36:6c:1c:5a:8f:4b:e4:45:8c:5a:af:24:
1d:78:f8:41:f9:6a:f8:91:40:3c:8d:97:84:85:e2:
d3:4a:fa:3f:cf:74:6b:33:90:7b:a0:ea:ba:16:cb:
e8:34:56:65:58:17:db:f8:03:7e:b3:52:1c:a4:fa:
02:b5:68:4b:e4:7b:6b:f4:07:5d:f7:80:2e:d5:45:
c8:83:8f:d9:c2:78:ea:2b:42:f4:d2:3f:4d:1d:bd:
ab:44:c1:51:ee:d8:92:a7:60:45:58:92:19:4d:32:
d3:34:f1:ec:93:e6:24:54:fd:6e:c4:4c:2c:e9:d6:
c5:7b:ef:b7:98:b1:72:e1:41:70:2c:7d:a5:d3:86:
b8:fb:15:ce:d5:0f:37:79:74:3f:8c:55:1e:66:84:
58:0b:a6:24:92:04:25:5c:13:a0:5f:03:f7:e4:ad:
e9:f6:51:61:9c:f3:50:c0:2c:da:62:96:d6:62:0d:
fa:fd:8e:8b:bb:2f:ac:68:6e:18:cf:70:c8:1e:e1:
4a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BA:24:10:22:68:2F:8B:16:87:99:56:72:81:92:24:C7:04:71:67
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/3rokECJoL4sWh5lWcoGSJMcEcWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:01:95:ed:3b:10:64:a8:ac:c9:f2:5d:c6:bd:ff:b5:be:ec:
cc:6e:fe:cf:29:54:e8:0c:0e:29:f8:ef:fb:df:77:aa:3a:56:
dd:54:73:6b:0c:ee:25:54:8a:13:b8:30:2c:44:f7:05:dc:1b:
36:94:9b:ec:3e:04:08:a7:db:b5:cd:e6:31:b7:ab:6a:de:f2:
1d:ae:52:da:35:07:c0:74:51:28:cc:8e:9f:80:71:a6:22:47:
0c:b3:f7:9a:b0:30:38:38:21:46:8f:c1:c8:17:89:5e:4b:6e:
b2:a0:af:55:f4:19:49:f8:7c:74:a1:88:11:e2:f0:5c:60:08:
5e:ee:8e:13:6a:75:58:97:ea:d6:16:f4:eb:f1:27:0f:12:82:
30:05:27:63:aa:fb:4a:c3:2d:92:36:5b:bc:19:82:44:7f:c1:
bf:89:8c:c6:a7:18:d5:fc:6b:c6:b2:96:e1:c5:5e:55:e7:74:
64:29:48:82:64:98:49:0b:47:50:de:fe:99:35:56:73:e0:8a:
9e:30:24:6d:21:0e:12:ed:a9:30:dc:28:70:0c:bf:a9:f9:5d:
b2:57:91:8b:9f:9a:d0:a3:7d:22:81:c9:41:ef:a8:18:43:28:
e8:f4:e0:9d:99:0b:41:b8:07:f5:97:67:d0:b3:4c:5e:5d:c0:
56:43:81:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-ams.rpki-client.org