Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1gfY5z0RuDDhuJarW8P7BOrv1dE.roa
File: 1gfY5z0RuDDhuJarW8P7BOrv1dE.roa (raw, json)
Hash identifier: BXifbWOA6ei3cKmGVQIxyo7SRW3L5OkVqM17KzJR7dE=
Subject key identifier: D6:07:D8:E7:3D:11:B8:30:E1:B8:96:AB:5B:C3:FB:04:EA:EF:D5:D1
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F8534C3
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1gfY5z0RuDDhuJarW8P7BOrv1dE.roa
Signing time: Sat 01 Jan 2022 08:05:05 +0000
ROA not before: Sat 01 Jan 2022 08:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60699
IP address blocks: 62.76.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260388035 (0xf8534c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d607d8e73d11b830e1b896ab5bc3fb04eaefd5d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6b:8b:b3:f4:8b:29:a7:af:a4:64:6e:b2:d3:
fe:3a:98:87:c1:d5:83:3d:fe:8d:c2:cb:0e:45:f5:
0f:74:35:94:24:68:27:6b:54:6c:86:a9:64:ef:c2:
56:f0:8c:eb:3b:5c:58:8d:ef:c3:43:ba:42:ea:0f:
9a:45:98:75:b7:c0:eb:32:53:31:86:ae:c0:1f:fd:
e8:80:f1:eb:92:5d:24:d0:8a:d7:97:39:51:34:2b:
5f:d1:33:43:c9:ef:5e:8e:a2:67:c8:c4:51:2a:aa:
f7:5e:50:4d:31:c4:30:24:9b:eb:9e:e4:ca:d5:8d:
dd:28:d0:63:5c:b0:f4:44:b8:0e:60:f3:5b:b5:ba:
17:a0:84:7d:3f:39:08:a3:87:ee:52:49:ec:ce:68:
36:14:cd:1b:8f:b9:f8:d9:ba:c5:71:72:21:13:ba:
ff:26:97:1b:ef:bb:c3:5c:03:89:8d:89:40:d5:c1:
8f:4d:0d:91:39:81:0e:cc:39:18:29:82:b1:92:dd:
2f:c3:ce:c3:d3:1a:d2:1f:26:58:cf:85:f5:34:1a:
dc:62:0b:c1:70:e2:63:89:96:65:8a:b3:22:b2:b7:
31:5a:cb:a6:29:88:48:78:15:32:c1:0b:f6:f1:87:
ca:c2:6a:d2:65:86:15:ca:2d:27:9b:50:42:7f:a8:
df:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:07:D8:E7:3D:11:B8:30:E1:B8:96:AB:5B:C3:FB:04:EA:EF:D5:D1
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1gfY5z0RuDDhuJarW8P7BOrv1dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.164.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:82:91:57:0a:6b:24:2b:df:f6:09:61:d6:50:eb:e8:ed:e4:
a7:f8:bc:18:3c:8b:53:d4:91:21:04:78:ce:71:80:e9:92:83:
f2:fe:b9:3d:be:9a:f8:1b:61:64:4d:52:1b:32:4f:1d:6e:6e:
b6:4e:b4:84:b8:78:8a:51:15:03:97:70:37:9d:9f:f1:b8:bc:
fe:95:e0:c5:c8:dc:c8:29:af:1c:e4:41:22:b7:8c:7e:36:80:
cf:5b:4d:57:9e:2c:2c:31:7e:e1:2e:7c:82:6f:2d:cc:49:d1:
f6:f4:c4:a0:ed:cf:44:a1:cb:9d:7a:33:0c:7c:71:0e:17:63:
2a:26:4b:63:97:be:90:65:ae:1a:cc:2d:00:a2:34:01:5e:b4:
22:da:30:e7:ec:77:74:0d:c2:fd:08:57:92:3b:d1:02:1b:5f:
65:82:d0:d6:0d:2b:ad:b0:e5:18:5f:59:a6:aa:ab:07:a9:c7:
bf:ec:ee:33:4a:2d:2b:a6:7d:dc:92:87:e5:c3:f1:b5:a2:de:
f1:e7:62:ed:98:58:6b:e4:94:19:a9:d3:88:fd:b0:5a:ce:20:
a4:e7:7f:86:b6:6a:a1:b3:f3:54:0c:b7:e6:34:37:dd:66:5e:
ac:50:24:63:c0:47:6f:2d:be:dc:80:6c:41:fb:ca:ce:98:97:
06:e9:b9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org