Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/h8yoCrVdyaGy1tb_iFBF4vWGmlk.roa
File: h8yoCrVdyaGy1tb_iFBF4vWGmlk.roa (raw, json)
Hash identifier: I6RA4mkFX99AGVsQq7t0Mk/x6p3bNR32Su9MonwoJx8=
Subject key identifier: 87:CC:A8:0A:B5:5D:C9:A1:B2:D6:D6:FF:88:50:45:E2:F5:86:9A:59
Certificate issuer: /CN=af203900017653cc4e0dc1b13bea177a0653fb2d
Certificate serial: 0234D532
Authority key identifier: AF:20:39:00:01:76:53:CC:4E:0D:C1:B1:3B:EA:17:7A:06:53:FB:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryA5AAF2U8xODcGxO-oXegZT-y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/h8yoCrVdyaGy1tb_iFBF4vWGmlk.roa
Signing time: Mon 06 Jun 2022 17:53:20 +0000
ROA not before: Mon 06 Jun 2022 17:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 62.106.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37016882 (0x234d532)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af203900017653cc4e0dc1b13bea177a0653fb2d
Validity
Not Before: Jun 6 17:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87cca80ab55dc9a1b2d6d6ff885045e2f5869a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0d:03:27:e7:c4:d6:16:b7:77:2e:5c:85:6f:
16:6f:b6:78:b4:29:8d:93:e6:59:d5:9d:c6:1d:33:
a8:c5:9c:8c:28:c6:04:ee:28:9e:6f:7c:b7:1f:27:
96:1c:2b:d9:c9:db:0b:75:38:a0:db:9a:b7:73:3b:
25:cd:ba:64:14:4d:55:fb:a6:6a:c9:68:ba:00:11:
56:3b:35:62:4c:bd:8b:3f:70:83:7f:8a:da:08:68:
fa:34:f3:43:25:6d:94:38:95:44:44:73:d8:3c:4d:
df:60:dd:9a:c0:aa:c9:90:be:56:47:05:08:d1:ff:
ff:02:4f:33:95:dd:95:30:6d:2f:65:2a:94:e4:c5:
33:f5:b1:4a:af:ef:ca:03:74:39:30:b7:20:0f:db:
b9:4f:2c:f6:93:53:34:83:90:cc:e6:ed:6e:3f:63:
ca:fb:fb:db:4e:ca:3e:30:d6:9a:4f:da:3b:86:95:
39:a5:e2:c3:a6:ab:4d:26:47:d1:ad:c2:55:e5:d3:
dd:e5:e7:46:d5:f8:db:34:01:a5:dc:cf:78:78:cb:
f1:c2:e1:62:1a:62:6f:1f:90:7c:45:ba:b9:16:ba:
40:2b:17:ea:a9:6b:bf:b9:9c:50:23:6b:dc:3c:8d:
e7:fc:ae:bf:84:95:fa:d2:4b:5a:83:32:d3:f7:5d:
e7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CC:A8:0A:B5:5D:C9:A1:B2:D6:D6:FF:88:50:45:E2:F5:86:9A:59
X509v3 Authority Key Identifier:
keyid:AF:20:39:00:01:76:53:CC:4E:0D:C1:B1:3B:EA:17:7A:06:53:FB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryA5AAF2U8xODcGxO-oXegZT-y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/h8yoCrVdyaGy1tb_iFBF4vWGmlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/ryA5AAF2U8xODcGxO-oXegZT-y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.69.0/24
Signature Algorithm: sha256WithRSAEncryption
07:d5:93:37:16:da:ca:f6:c0:5d:90:86:6d:e3:4d:9d:b5:b8:
ee:33:35:29:ba:b3:d0:4e:ca:bc:ef:00:5c:e8:de:b9:24:4b:
84:13:a0:48:d1:20:5b:7e:18:73:93:1d:3e:42:39:c6:ad:c7:
bf:c6:45:0e:fe:64:a3:92:3f:e5:45:73:05:7f:86:5c:8b:ea:
f8:be:3f:cc:31:e8:dd:21:a3:7e:55:91:76:d4:02:34:ef:1f:
e7:8c:f7:c4:82:71:8a:7e:c6:60:c1:f9:fe:7f:2e:a9:ad:70:
8b:54:9f:eb:00:8a:26:6e:49:2a:e5:73:e8:72:93:b1:c8:b8:
25:19:65:b9:97:48:f3:9e:db:de:3f:b0:a0:29:b4:ae:d7:2d:
21:f0:71:fb:75:0d:02:66:56:06:0d:d6:6f:77:c8:eb:ac:f7:
06:06:5b:6f:f0:b6:46:91:30:1f:04:c6:75:dd:43:4f:75:31:
37:e8:65:6c:39:58:88:21:e6:cf:19:d4:00:a0:48:1e:97:a7:
4c:8c:02:db:e0:d1:2c:49:85:94:55:d3:3d:60:d3:34:76:17:
5a:77:3a:15:e3:b0:b6:41:dd:d4:84:1a:f5:e0:38:86:3b:6b:
fa:99:b9:3b:99:2c:3c:d8:0e:9f:ee:47:cc:c9:1b:e3:77:93:
0e:9c:df:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:48 2023 by rpki-client on console-ams.rpki-client.org