Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/890ae6-4bd7-4853-b1c3-0f232ca17246/1/jAk6nE8UcxR_H_XtMYfEu0Stq3Q.roa
File: jAk6nE8UcxR_H_XtMYfEu0Stq3Q.roa (raw, json)
Hash identifier: mLcd+jROnJnmgJPCXBG4/h0uE6d/AQONiqSADzpcH7g=
Subject key identifier: 8C:09:3A:9C:4F:14:73:14:7F:1F:F5:ED:31:87:C4:BB:44:AD:AB:74
Certificate issuer: /CN=59a377bc67718312649ee75715a865f603fc69c3
Certificate serial: 0183224F4441C405DC61309F59E9038AE0BE
Authority key identifier: 59:A3:77:BC:67:71:83:12:64:9E:E7:57:15:A8:65:F6:03:FC:69:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WaN3vGdxgxJknudXFahl9gP8acM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/890ae6-4bd7-4853-b1c3-0f232ca17246/1/jAk6nE8UcxR_H_XtMYfEu0Stq3Q.roa
Signing time: Fri 09 Sep 2022 12:52:43 +0000
ROA not before: Fri 09 Sep 2022 12:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42423
IP address blocks: 62.68.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:4f:44:41:c4:05:dc:61:30:9f:59:e9:03:8a:e0:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59a377bc67718312649ee75715a865f603fc69c3
Validity
Not Before: Sep 9 12:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c093a9c4f1473147f1ff5ed3187c4bb44adab74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bf:52:de:8e:1e:cd:30:1e:79:d2:1c:06:5f:
ec:16:c6:f2:2d:4f:ed:88:da:67:5f:b8:e7:53:b2:
ee:0b:fb:96:dd:5c:fd:6d:0d:41:e2:ba:30:21:47:
11:c2:7f:02:cc:e3:4e:a4:a9:ba:a3:24:3f:06:25:
bb:11:24:23:e2:be:d4:e8:3c:7f:1b:00:5e:89:18:
0d:7c:51:7e:0b:93:7c:46:7c:3a:26:ff:a6:ad:4b:
1b:07:7b:99:ee:9f:8f:b9:33:c3:9f:1d:21:4d:17:
4b:cf:c7:6f:57:a7:82:f7:0a:59:dd:2b:2b:75:d6:
38:56:c8:78:6b:6a:88:ba:e7:67:f4:b5:9e:ab:96:
d0:78:ff:a1:ab:8d:f8:1c:a6:04:19:16:42:ac:c5:
fa:fb:7c:ee:eb:d0:9c:16:0b:da:38:cc:f2:aa:e7:
a2:6b:2d:2a:48:f6:f8:9e:33:5d:3a:2e:6c:a9:81:
17:d6:fd:fe:4d:96:2b:60:54:40:c4:d6:14:61:82:
2b:37:82:01:71:92:ce:c1:4a:c4:af:8c:b1:25:c2:
30:cb:78:64:36:b6:e4:8a:d0:98:d0:7f:d5:d0:03:
24:39:c6:60:d1:6b:6b:8c:1d:87:84:73:26:ec:a1:
59:87:a2:06:ee:06:5f:4e:a4:d3:99:3a:91:c6:d8:
a1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:09:3A:9C:4F:14:73:14:7F:1F:F5:ED:31:87:C4:BB:44:AD:AB:74
X509v3 Authority Key Identifier:
keyid:59:A3:77:BC:67:71:83:12:64:9E:E7:57:15:A8:65:F6:03:FC:69:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WaN3vGdxgxJknudXFahl9gP8acM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/890ae6-4bd7-4853-b1c3-0f232ca17246/1/jAk6nE8UcxR_H_XtMYfEu0Stq3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/890ae6-4bd7-4853-b1c3-0f232ca17246/1/WaN3vGdxgxJknudXFahl9gP8acM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.93.0/24
Signature Algorithm: sha256WithRSAEncryption
20:68:e5:65:73:aa:75:73:17:61:87:99:6d:25:0a:64:5a:9d:
f9:5d:ff:0d:39:de:9a:32:c1:7e:0b:bf:88:91:6b:4c:ea:a4:
8a:05:93:fd:ec:f0:bd:b9:00:48:28:88:28:90:9c:23:22:af:
6e:4f:b7:1e:9c:f5:65:b4:86:42:44:8c:d9:6d:0e:6d:97:30:
48:32:79:c1:b3:c5:34:23:91:fd:ad:d4:2a:e0:48:53:aa:c9:
f7:ce:23:d3:23:98:31:76:ac:52:f3:1e:e9:ed:e0:45:b9:d4:
d8:20:54:f3:0c:fe:78:69:fa:6b:d1:bf:d3:c5:aa:d4:fd:d5:
04:d9:08:6f:83:62:9e:69:0e:e2:b6:11:cb:47:27:dd:78:3b:
2a:d7:ff:4b:c1:9e:71:8f:f2:08:ff:50:09:62:48:47:57:35:
1f:93:a5:64:56:21:d5:af:37:da:99:b7:02:f7:fa:a7:e0:4c:
de:65:48:ca:ff:b1:50:75:ee:75:6b:73:59:39:90:3c:7b:9d:
36:7f:be:e5:50:98:b9:a9:a1:d9:13:03:82:23:fe:80:b5:cf:
0e:87:43:f7:13:7e:7f:6e:84:fe:4c:98:ff:e1:80:ce:01:fb:
47:3e:9c:6c:54:5a:52:19:60:47:2a:fb:da:7a:97:25:a5:36:
04:c4:52:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-ams.rpki-client.org