Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/qVUu8fZTw5POVvRWFhsFeFAFO8c.roa
File: qVUu8fZTw5POVvRWFhsFeFAFO8c.roa (raw, json)
Hash identifier: mLx/KeiSmjVc6HxM4yBtpWVkjNzc7iuJZoq7OpbqyaA=
Subject key identifier: A9:55:2E:F1:F6:53:C3:93:CE:56:F4:56:16:1B:05:78:50:05:3B:C7
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 176367D2
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/qVUu8fZTw5POVvRWFhsFeFAFO8c.roa
Signing time: Sat 01 Jan 2022 09:54:03 +0000
ROA not before: Sat 01 Jan 2022 09:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51228
IP address blocks: 62.228.255.0/24 maxlen: 24
62.228.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392390610 (0x176367d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 1 09:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9552ef1f653c393ce56f456161b057850053bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:f5:2d:4b:a2:cd:07:d1:ba:4c:8a:d8:70:
bb:65:97:96:bf:a7:ad:fc:0a:2b:65:a4:55:c0:8e:
68:66:1f:cc:35:5d:c6:b5:4b:47:bf:c7:dc:0e:b9:
c7:c8:89:08:dc:92:99:9e:a4:65:46:a5:97:98:cd:
2b:84:fa:44:54:fd:aa:cf:4f:37:eb:86:a6:86:d6:
2d:0b:75:31:ed:04:f2:c9:44:b7:5f:da:6f:64:5c:
a5:c5:6c:19:ba:2e:f0:87:62:13:b5:3f:33:6f:06:
52:a8:4e:39:85:e2:83:57:1f:a7:f5:87:79:6f:d4:
6f:e4:d2:1e:ed:87:97:28:2c:e8:6e:99:0c:3f:fa:
fe:a1:b8:30:74:e1:dc:d4:0f:cd:d6:05:42:9a:6b:
81:04:76:5e:f3:bc:38:2a:a5:ee:22:1d:d3:a0:c3:
5d:bd:ef:fa:6a:b6:a4:16:c2:30:97:99:8f:6b:f6:
54:1d:8c:91:16:8a:a7:cd:1b:9e:d6:54:64:a1:c7:
6a:0d:fd:9d:fc:e7:47:65:25:9a:cd:4e:cc:4f:39:
e1:8e:ea:15:c3:ae:40:4a:c5:5a:e3:62:5f:a5:2a:
aa:90:91:14:1c:59:80:28:79:cb:a5:c4:a7:35:be:
9e:e7:be:ce:8c:91:8f:81:fc:ec:d5:ea:b7:f3:62:
7f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:55:2E:F1:F6:53:C3:93:CE:56:F4:56:16:1B:05:78:50:05:3B:C7
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/qVUu8fZTw5POVvRWFhsFeFAFO8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.254.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:63:31:79:b2:76:fc:2c:ad:de:dc:85:2e:7f:5e:d2:ab:fc:
15:e0:6d:9c:71:1b:5e:eb:ba:42:c6:66:64:95:a8:2f:11:68:
3b:85:95:51:b7:07:1b:ac:26:fa:46:7d:3c:9f:45:92:f7:e0:
5c:db:32:46:d2:f6:52:b6:ca:2b:41:62:20:63:54:48:a6:ed:
16:7e:7c:ec:5e:17:f7:d5:de:15:8c:d5:4d:ab:63:9e:b5:44:
fe:e8:d1:64:d6:f5:ed:38:0f:53:f6:12:28:1e:d3:13:f3:7a:
f3:2f:cd:a7:64:8f:84:81:59:f5:38:8f:23:27:67:0e:2e:04:
07:56:5f:1c:96:12:7c:fe:57:19:3d:c3:51:49:eb:24:2c:0d:
56:e9:33:23:5f:af:f6:29:b9:df:d1:fc:e5:f9:32:a2:18:30:
01:b0:3d:99:1a:a3:73:43:96:56:73:6d:5b:ec:d2:04:c9:10:
38:3f:d9:75:8a:e9:c7:84:46:6a:68:a4:ce:98:7d:bf:f2:f7:
eb:3e:dd:d5:11:53:53:cc:d9:2f:ed:a8:5c:29:b5:d2:85:c5:
25:f4:0a:fb:e8:56:01:13:9b:2c:de:7c:48:14:ae:84:ce:60:
b1:27:2c:1f:d8:16:cd:5f:4a:1c:3b:12:c6:22:8f:58:84:46:
94:09:2d:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:35 2023 by rpki-client on console-fra.rpki-client.org