Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/EHEQUg_YpSFNQ50u_33qudYoPnk.roa
File: EHEQUg_YpSFNQ50u_33qudYoPnk.roa (raw, json)
Hash identifier: 8f28zJUZ1gCseZLMLEvtyjsU+2I7cfz28UvBuvbMYVo=
Subject key identifier: 10:71:10:52:0F:D8:A5:21:4D:43:9D:2E:FF:7D:EA:B9:D6:28:3E:79
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13615FB1
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/EHEQUg_YpSFNQ50u_33qudYoPnk.roa
Signing time: Sat 01 Jan 2022 05:58:18 +0000
ROA not before: Sat 01 Jan 2022 05:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8520
IP address blocks: 62.93.212.0/23 maxlen: 23
62.93.246.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325148593 (0x13615fb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=107110520fd8a5214d439d2eff7deab9d6283e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:23:84:c2:0c:48:51:06:30:3a:b8:6d:de:
14:10:d9:a7:11:39:1f:a3:9a:e0:08:7f:7c:95:10:
45:c4:e6:45:5f:2f:ed:74:c0:d8:fd:8e:19:d3:a5:
20:3f:67:aa:6a:18:03:5f:14:c1:cb:39:f6:d3:65:
0d:e1:20:17:49:b4:8f:27:a9:43:c8:7f:53:d9:b1:
9e:6c:24:76:a1:fc:19:2f:02:39:f0:24:62:9e:24:
1d:d3:4c:21:e8:ff:f6:20:a7:50:34:48:0a:5c:81:
c3:5a:6c:57:fa:f7:dc:b5:9f:a8:d5:21:82:2b:f8:
50:cf:a6:be:f5:49:ec:97:8e:ed:7c:ac:42:a9:97:
f5:9d:c0:41:e6:84:fa:6f:12:9a:9f:32:ff:8e:b2:
72:58:9b:92:d1:67:2a:15:8c:14:fd:dc:5f:70:9e:
e5:68:4b:57:1c:a3:c2:4c:0f:25:12:b4:bd:ea:72:
2c:2e:42:e4:a1:95:73:c3:fd:e2:a3:09:ea:d4:f2:
d6:aa:9e:fc:7f:9f:1e:ab:e1:e2:49:26:d1:22:e9:
77:20:da:e3:1b:dd:8a:77:63:a4:1a:17:ce:ea:82:
5c:93:71:d0:06:2c:59:4c:db:9f:22:a2:87:af:5e:
40:80:ec:a4:ac:4b:ce:be:2c:d7:41:be:c5:f0:5b:
35:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:71:10:52:0F:D8:A5:21:4D:43:9D:2E:FF:7D:EA:B9:D6:28:3E:79
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/EHEQUg_YpSFNQ50u_33qudYoPnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.93.212.0/23
62.93.246.0/23
Signature Algorithm: sha256WithRSAEncryption
92:aa:e6:b5:81:70:24:e1:ba:39:37:4d:bd:6e:3e:c4:e2:4d:
b9:fc:e0:57:13:9e:5b:36:08:0d:82:36:0b:ff:6d:f2:1e:26:
13:d1:f2:aa:79:66:23:fe:ea:8e:95:67:b5:74:1c:2b:a6:b8:
67:0d:09:48:ca:63:ad:2a:a1:46:92:fd:52:d9:cc:bc:a3:5b:
eb:38:16:c7:26:6a:87:d0:9a:61:b0:1f:eb:ef:ab:be:a1:f8:
e1:18:89:aa:2a:e9:c0:71:49:91:e5:65:8e:d1:b7:f2:a4:9f:
41:3f:56:42:28:f8:ee:4d:c2:28:9f:59:67:bc:35:84:6d:87:
cc:f7:9c:11:02:45:36:75:6c:85:ca:40:92:4f:0e:d0:c4:80:
fb:19:e1:ef:9e:13:ef:ee:68:0b:c0:65:2d:ba:4b:b8:f2:32:
0a:93:23:c5:8c:8c:3d:a4:77:55:48:bd:2a:93:b2:ed:d3:17:
dd:2a:80:0f:6b:1e:c2:1f:31:a4:ee:5d:35:4a:11:7c:f5:cb:
e6:5b:f2:31:54:19:d5:85:04:e6:0d:04:a8:49:56:bf:98:25:
b2:e5:53:c5:d3:14:75:21:c7:35:f1:3e:28:55:d6:c4:ee:cd:
4c:a1:09:51:25:ca:b0:46:69:93:fe:fc:69:2d:b5:8d:57:41:
c2:93:89:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:10 2024 by rpki-client on console-ams.rpki-client.org