Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/SPFTiIW2FXBS1t8tEBrQ3BFsv0w.roa
File: SPFTiIW2FXBS1t8tEBrQ3BFsv0w.roa (raw, json)
Hash identifier: zLpsbMM3bDdBNyk0oOTsVpPo93DnxzJXJQavOYAQXL4=
Subject key identifier: 48:F1:53:88:85:B6:15:70:52:D6:DF:2D:10:1A:D0:DC:11:6C:BF:4C
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 1766AF03
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/SPFTiIW2FXBS1t8tEBrQ3BFsv0w.roa
Signing time: Sat 01 Jan 2022 09:54:06 +0000
ROA not before: Sat 01 Jan 2022 09:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202117
IP address blocks: 62.228.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392605443 (0x1766af03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 1 09:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48f1538885b6157052d6df2d101ad0dc116cbf4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c6:41:b0:ae:57:fc:af:7b:f8:79:1c:2e:56:
0f:ad:ed:84:7e:74:37:0c:f2:bf:10:17:f7:5c:f3:
e7:3f:7b:50:df:42:e3:89:fb:24:d2:29:84:ae:06:
49:13:f3:0a:69:78:fe:03:5d:ce:f0:53:f1:a8:ba:
1b:8e:e2:06:1e:de:94:5d:94:b0:07:f5:a5:50:32:
cd:c3:cf:13:ec:a9:b0:9a:53:b1:4c:5a:e9:86:46:
67:61:9f:7f:15:53:3b:cc:3f:ee:2f:97:b8:cc:07:
80:43:f0:ac:0d:ea:23:05:2f:66:bf:b1:38:b2:38:
a2:e8:aa:1c:e6:e5:a5:ff:30:db:dd:7d:20:a6:01:
62:7f:4d:87:99:04:1b:b9:1a:e1:05:c4:ac:19:4b:
e8:ce:c5:7b:fd:a5:d9:ab:86:59:80:4e:ec:50:06:
1d:2d:42:65:e5:ed:ee:f7:53:47:7b:12:8b:57:88:
a0:3d:1e:8b:5f:ad:1e:b2:56:e0:dd:54:9c:da:2d:
d8:88:57:48:49:b7:a5:ad:78:87:43:20:13:07:d0:
01:6e:fc:c6:11:d1:75:86:88:fa:6e:1a:6e:b5:a7:
84:38:06:4d:e6:57:01:33:40:61:88:e6:4a:be:31:
dc:e4:b8:61:72:7f:4c:23:ed:e1:ec:5f:e5:d0:5c:
69:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F1:53:88:85:B6:15:70:52:D6:DF:2D:10:1A:D0:DC:11:6C:BF:4C
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/SPFTiIW2FXBS1t8tEBrQ3BFsv0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.249.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:15:e3:43:d0:70:a2:16:87:28:d1:53:21:f2:ff:d0:49:01:
83:22:ce:af:47:87:38:c3:03:25:86:17:01:5c:08:93:56:ef:
db:c9:d5:8d:9b:6c:3a:5c:9c:12:8d:e2:2f:40:3d:01:4b:73:
e1:9b:62:a1:06:47:47:49:cc:04:16:61:a8:04:cb:04:ef:d1:
0c:aa:cf:26:df:0c:86:b2:fa:2f:ac:69:60:69:c1:ac:e0:ed:
e4:eb:03:1f:e6:56:7d:a6:b3:30:3b:ff:fe:e0:0b:93:e7:41:
1e:50:f2:3a:81:27:6e:e2:b0:13:db:87:07:82:6a:48:38:c3:
d0:bc:8e:17:20:8e:85:c6:74:19:37:fc:e3:13:2c:fc:b7:f4:
48:c9:e6:c7:1e:83:ec:ca:c9:ac:ad:5d:f6:dd:69:3c:70:b1:
1a:0e:cc:ef:39:3e:9d:b9:19:bf:a8:d5:95:fb:21:b5:cc:d3:
5c:96:ea:7a:d2:58:dc:3d:34:02:1e:29:66:bc:5b:a5:f6:55:
15:f3:7e:53:04:2c:98:26:a8:bc:b4:b2:ea:9c:37:34:98:57:
cd:bf:36:88:52:22:e2:53:dd:ee:37:a3:58:23:89:27:f5:fd:
99:af:17:61:ec:e5:f5:2a:80:a3:c6:5a:08:f7:21:50:2e:0f:
37:2d:b0:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:35 2023 by rpki-client on console-fra.rpki-client.org