Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/94960a-1821-4db3-8f48-d15fc98424f0/1/C8X6oJwgtxZWXY2yaqCISw0Cgvk.roa
File: C8X6oJwgtxZWXY2yaqCISw0Cgvk.roa (raw, json)
Hash identifier: s7nycTYczurnQcfzL1XsOdqkllsXxL+9vPDV40UjmvU=
Subject key identifier: 0B:C5:FA:A0:9C:20:B7:16:56:5D:8D:B2:6A:A0:88:4B:0D:02:82:F9
Certificate issuer: /CN=1c50a2289e1bf87121ae73ca7116d53f5fd5c4d5
Certificate serial: 018326EC50BA242087B1B7B69994E8885734
Authority key identifier: 1C:50:A2:28:9E:1B:F8:71:21:AE:73:CA:71:16:D5:3F:5F:D5:C4:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFCiKJ4b-HEhrnPKcRbVP1_VxNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/94960a-1821-4db3-8f48-d15fc98424f0/1/C8X6oJwgtxZWXY2yaqCISw0Cgvk.roa
Signing time: Sat 10 Sep 2022 10:22:44 +0000
ROA not before: Sat 10 Sep 2022 10:22:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 62.68.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:ec:50:ba:24:20:87:b1:b7:b6:99:94:e8:88:57:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c50a2289e1bf87121ae73ca7116d53f5fd5c4d5
Validity
Not Before: Sep 10 10:22:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bc5faa09c20b716565d8db26aa0884b0d0282f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ff:08:c5:4f:25:0a:db:58:3a:15:ed:c9:2c:
ee:37:f5:2f:20:50:6f:0c:3d:69:be:bc:f7:90:0e:
77:ad:a9:06:6e:ca:8e:0d:ba:a9:65:9c:5a:2f:d4:
51:fd:f7:84:73:f0:93:35:34:c6:f4:1c:3e:47:11:
f2:b3:45:6e:17:42:db:42:9e:c2:e7:aa:6c:b9:3b:
72:6b:43:00:61:a6:0a:a2:a6:55:46:0f:98:8c:55:
f4:b1:32:0e:e4:06:bf:f2:c1:e0:56:76:49:44:8d:
16:77:e7:49:28:1a:71:88:8a:7b:c7:5b:ec:3d:9d:
6c:5c:d1:aa:11:d5:c2:55:dc:26:5f:40:4c:c7:a7:
ff:36:f4:ac:3f:71:74:8c:53:3e:40:8a:17:7b:7a:
0f:f2:cd:3b:c8:54:b3:42:26:01:c4:c3:13:b1:ac:
97:5c:1a:4b:80:72:e5:e4:21:a3:d5:11:54:e2:5d:
2e:14:5a:6e:6f:c3:58:9a:07:1f:53:55:4d:c5:f0:
38:50:08:c9:fb:d6:21:e8:2c:bb:57:19:da:bf:23:
a9:69:6c:85:8b:e4:d3:cc:c9:2f:71:6d:9c:ec:85:
65:69:be:eb:ac:50:e2:72:63:c2:5e:90:e1:9f:3d:
4c:2b:e3:9b:73:25:c8:75:3f:66:db:60:ab:12:0b:
94:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C5:FA:A0:9C:20:B7:16:56:5D:8D:B2:6A:A0:88:4B:0D:02:82:F9
X509v3 Authority Key Identifier:
keyid:1C:50:A2:28:9E:1B:F8:71:21:AE:73:CA:71:16:D5:3F:5F:D5:C4:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFCiKJ4b-HEhrnPKcRbVP1_VxNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/94960a-1821-4db3-8f48-d15fc98424f0/1/C8X6oJwgtxZWXY2yaqCISw0Cgvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/94960a-1821-4db3-8f48-d15fc98424f0/1/HFCiKJ4b-HEhrnPKcRbVP1_VxNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.92.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:9a:90:d8:5c:5f:a1:3e:01:a8:a3:b9:c5:66:01:85:31:78:
e7:a7:4d:52:c0:eb:bc:e9:8c:10:ae:7e:e3:91:19:be:46:1d:
62:53:fa:e2:27:52:fe:5d:d0:dd:6b:1e:f0:13:03:7e:5f:51:
53:55:69:56:73:3c:2a:5d:03:40:57:7d:3f:99:88:b4:0f:7e:
f3:8d:5f:31:c6:89:e6:bb:22:84:15:6a:03:e4:29:a0:b3:cc:
ab:9a:b5:d6:d8:cd:27:d5:57:3f:e7:aa:f6:8e:ef:c7:f5:44:
54:3c:bc:f1:27:8a:2f:98:9f:58:24:d4:05:96:43:19:2a:2f:
7e:ad:38:c6:68:d4:97:00:1d:17:f7:8b:fc:e8:60:c8:60:b6:
68:87:d5:33:6f:6d:e0:56:e3:51:c4:4c:d8:c4:b6:d6:2c:84:
7c:46:8c:05:90:bb:d4:48:00:fd:33:5a:75:3b:ae:d5:5f:18:
66:ad:34:20:59:ae:5d:c2:4b:b0:9f:09:f3:bf:63:ef:a4:06:
90:fa:84:c6:b7:1c:60:3a:32:51:f6:79:51:ee:f2:9a:4e:d2:
d9:df:d8:4c:0d:a9:e2:70:6c:51:30:99:56:49:1b:13:e4:9b:
6d:ef:19:29:60:4c:f6:cd:a7:f8:b2:21:de:70:47:bd:41:18:
c2:9a:5d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:55 2023 by rpki-client on console-ams.rpki-client.org