Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/1-8TzAfsjiqWF24RcHD8Mz7F4hV8.roa
File: 1-8TzAfsjiqWF24RcHD8Mz7F4hV8.roa (raw, json)
Hash identifier: vFfgUUFDJlF5YWNC9rzd0czZeuwta7GKtV9713db36Y=
Subject key identifier: FB:C4:F3:01:FB:23:8A:A5:85:DB:84:5C:1C:3F:0C:CF:B1:78:85:5F
Certificate issuer: /CN=af203900017653cc4e0dc1b13bea177a0653fb2d
Certificate serial: D31390
Authority key identifier: AF:20:39:00:01:76:53:CC:4E:0D:C1:B1:3B:EA:17:7A:06:53:FB:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryA5AAF2U8xODcGxO-oXegZT-y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/1-8TzAfsjiqWF24RcHD8Mz7F4hV8.roa
Signing time: Sat 01 Jan 2022 09:01:12 +0000
ROA not before: Sat 01 Jan 2022 09:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 62.106.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13833104 (0xd31390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af203900017653cc4e0dc1b13bea177a0653fb2d
Validity
Not Before: Jan 1 09:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbc4f301fb238aa585db845c1c3f0ccfb178855f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bb:db:ab:3a:57:2f:9d:6c:15:ff:54:88:14:
7d:16:5d:4a:17:15:72:d8:c7:a9:f1:5f:4e:d1:8c:
27:bf:24:35:19:be:88:85:3f:d6:6b:b8:91:71:bd:
e7:98:1b:87:c6:c9:94:19:4f:2f:b7:66:37:86:ba:
7d:48:ef:23:8d:6b:c4:61:64:8f:fc:f0:7a:09:af:
86:4d:c9:6b:ff:76:21:d8:9b:2e:cf:e4:6f:89:2f:
e3:19:c3:90:3f:1c:74:ad:25:81:a2:79:5f:78:27:
3f:de:81:0c:df:b3:e8:48:b3:61:09:98:41:b4:87:
ea:2c:38:67:c6:d2:be:c5:e3:ad:03:a1:6b:88:79:
a9:74:d9:bf:a0:f7:e2:c0:3c:c3:ed:76:03:01:08:
aa:cb:7f:7b:c3:81:2c:ce:48:64:3d:fd:62:18:16:
94:aa:b8:79:a8:09:14:85:06:a8:be:c6:41:a7:fd:
3b:63:56:33:da:91:76:e8:fd:ec:bd:61:83:33:23:
e6:ba:de:8b:41:15:f3:4e:ae:d3:58:50:f1:25:29:
09:b9:25:85:38:f9:0f:8e:f7:2d:08:42:a8:7d:f9:
09:39:57:96:be:13:3e:8c:f7:6b:54:cf:db:08:43:
e8:98:15:76:06:4d:e0:ff:e7:af:54:b2:b5:5b:32:
b3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C4:F3:01:FB:23:8A:A5:85:DB:84:5C:1C:3F:0C:CF:B1:78:85:5F
X509v3 Authority Key Identifier:
keyid:AF:20:39:00:01:76:53:CC:4E:0D:C1:B1:3B:EA:17:7A:06:53:FB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryA5AAF2U8xODcGxO-oXegZT-y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/1-8TzAfsjiqWF24RcHD8Mz7F4hV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/ryA5AAF2U8xODcGxO-oXegZT-y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.69.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:23:29:24:25:74:21:ed:57:ed:be:0f:a0:52:00:b4:a5:7e:
a5:ea:85:d5:20:49:88:7e:16:47:89:69:77:82:07:a9:6e:c0:
2f:ee:3e:b3:b4:bf:56:1b:ef:80:db:2f:93:99:28:fc:c8:98:
48:75:0f:b7:6c:7c:a6:65:c6:df:ee:84:3c:1a:be:a9:aa:22:
4d:aa:d4:13:73:13:12:f7:4d:d6:bc:5c:80:e1:a1:96:53:7e:
2e:6c:ac:e0:2f:d1:60:82:13:29:ba:2e:0b:3a:a1:0e:b7:f1:
0b:bc:a8:69:53:7a:61:18:bb:9a:cf:c9:4b:1f:e5:06:cd:4c:
5a:92:b5:57:f1:32:d9:4e:d6:f8:e8:91:ff:1c:64:f5:a2:fe:
5a:3f:40:cb:9f:ad:43:5e:32:09:0b:16:91:44:05:84:66:54:
a7:a3:cd:3e:83:95:2c:6d:f1:37:be:6a:ab:c6:f4:af:a0:85:
10:2d:64:77:86:38:f9:9c:b0:89:bc:97:8e:d3:4c:88:59:0a:
2d:cb:6f:17:e0:41:62:ce:80:ca:75:57:80:37:98:97:17:d5:
c4:7b:a5:6d:b5:8a:d6:fd:9e:69:9f:42:25:63:77:e6:d6:b7:
08:72:b5:aa:27:9c:b1:cf:f7:af:cb:00:e3:f5:28:8e:e8:27:
e5:fb:1a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:01 2023 by rpki-client on console-fra.rpki-client.org