Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/QzG2I2ZaGZIehh9elypyNDteIQI.roa
File: QzG2I2ZaGZIehh9elypyNDteIQI.roa (raw, json)
Hash identifier: ZB9h74ezXxGwphgzHy3wfS0tU5I1jxKT2jkSPP4Zc2A=
Subject key identifier: 43:31:B6:23:66:5A:19:92:1E:86:1F:5E:97:2A:72:34:3B:5E:21:02
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 18B0B5E2
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/QzG2I2ZaGZIehh9elypyNDteIQI.roa
Signing time: Sat 28 May 2022 07:52:13 +0000
ROA not before: Sat 28 May 2022 07:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207971
IP address blocks: 62.228.246.0/24 maxlen: 24
62.228.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414234082 (0x18b0b5e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: May 28 07:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4331b623665a19921e861f5e972a72343b5e2102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c4:93:a1:f3:cc:75:a9:0f:14:33:d5:b0:e8:
f6:8b:12:5d:3a:db:62:a1:97:a3:7f:e3:21:29:be:
66:54:27:c5:af:8d:ca:47:d9:7e:ab:23:5e:62:42:
6f:05:5d:40:bb:5a:97:34:fa:b1:bd:a9:9a:77:8d:
2b:f0:0f:6b:e3:07:b3:5a:0e:c8:af:37:21:c3:1d:
c5:81:c1:25:df:ad:83:38:91:cb:93:8c:a5:83:94:
fa:a4:df:9c:f8:06:4a:49:dd:a9:c7:c1:62:a1:bb:
12:af:cd:2d:49:c3:81:a4:fa:19:72:a0:8d:c3:a3:
29:28:73:74:23:cf:f0:31:01:b6:b3:4c:52:f2:ff:
fb:57:05:18:39:dd:28:7c:e5:97:64:a6:32:bd:f3:
a7:0e:db:86:b3:05:be:72:f5:2f:a9:29:f1:c2:0f:
13:a4:07:e3:1b:8e:31:3c:70:5b:ea:0b:7e:a2:98:
91:3d:cb:30:4f:30:d1:a4:1c:3e:7c:84:4b:13:eb:
47:4e:ad:47:a6:c8:b6:1b:0d:17:94:a5:f8:6e:63:
5e:d9:cd:7f:7d:0e:2e:a9:ce:d3:49:94:d1:c2:3e:
14:75:56:0c:0e:2c:bd:d7:9f:4a:da:be:88:75:a8:
91:1b:cf:ec:9d:42:ef:67:80:48:5c:5b:e3:31:36:
13:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:31:B6:23:66:5A:19:92:1E:86:1F:5E:97:2A:72:34:3B:5E:21:02
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/QzG2I2ZaGZIehh9elypyNDteIQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.246.0/23
Signature Algorithm: sha256WithRSAEncryption
65:52:6d:bc:ef:b5:64:45:fa:2b:f3:12:46:8b:57:a9:2a:09:
65:19:14:62:49:90:ac:94:3f:5a:e8:7d:20:7f:56:95:a5:3b:
e1:50:df:8b:94:3f:7e:c3:a4:7e:d9:25:e1:81:a7:6e:bf:ee:
fa:52:f9:fa:e0:1c:ce:2e:c2:b1:b5:88:68:eb:d6:4e:ed:25:
2d:73:c5:22:1e:37:a1:8b:be:2f:25:c3:e2:5b:fb:51:7b:1f:
f3:2b:c2:62:40:34:a8:8e:a0:24:2a:46:fe:1e:45:03:d9:a3:
75:3c:08:4d:7f:a7:6c:42:8d:e7:5e:ef:a2:22:27:d8:6e:14:
62:81:64:d7:06:df:b8:ec:55:3a:4b:6a:0d:39:07:7c:af:fc:
b6:62:29:3b:52:5e:73:2a:11:ef:8c:88:18:62:f1:69:54:24:
b1:8c:27:b8:02:3a:13:ec:7b:18:62:d6:4c:ef:08:6b:51:46:
46:55:e1:44:c1:19:6b:45:33:f7:e0:a3:2b:34:9d:9b:31:c3:
d4:56:4d:43:ea:9b:c7:bd:e7:54:8f:f4:a8:ee:72:61:2d:4f:
a8:75:9e:f5:bc:0b:1e:dc:21:6f:ff:47:97:d3:59:c7:30:b2:
9f:25:2d:17:62:65:1a:21:f0:7c:5d:68:38:19:09:5b:2a:7a:
7b:0d:6c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:35 2023 by rpki-client on console-fra.rpki-client.org