Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/2x7eOjBYtpYROAlfJddDenVURx4.roa
File: 2x7eOjBYtpYROAlfJddDenVURx4.roa (raw, json)
Hash identifier: meMINBiFHvnh4A9QilDOwlR01rDXSnj6byg3c3jkY8U=
Subject key identifier: DB:1E:DE:3A:30:58:B6:96:11:38:09:5F:25:D7:43:7A:75:54:47:1E
Certificate issuer: /CN=8aaf2268d47e7cd5459d7a006ebc51d3eb9458c9
Certificate serial: 01424B
Authority key identifier: 8A:AF:22:68:D4:7E:7C:D5:45:9D:7A:00:6E:BC:51:D3:EB:94:58:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq8iaNR-fNVFnXoAbrxR0-uUWMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/2x7eOjBYtpYROAlfJddDenVURx4.roa
Signing time: Sun 06 Mar 2022 07:56:47 +0000
ROA not before: Sun 06 Mar 2022 07:56:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 62.3.24.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82507 (0x1424b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaf2268d47e7cd5459d7a006ebc51d3eb9458c9
Validity
Not Before: Mar 6 07:56:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db1ede3a3058b6961138095f25d7437a7554471e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f7:e0:1e:30:cb:71:f0:3b:5f:5b:6e:cc:96:
9e:c0:e0:9d:66:ad:f9:f0:06:bf:af:69:4e:bf:3e:
83:d7:f9:14:47:06:5d:ba:8f:b3:69:9a:58:83:8e:
99:5a:6e:4a:40:27:90:8a:02:56:1a:27:59:70:2e:
fd:52:6f:7b:97:0c:7f:02:6a:33:c5:d0:91:04:ed:
08:4d:4e:04:c8:9f:81:bc:70:65:bf:2f:8f:17:81:
1f:8a:31:92:ca:20:95:39:05:bf:3c:21:91:db:ca:
c5:a0:8c:f3:88:9e:0e:33:55:3e:2f:b2:a5:23:a0:
6f:54:ab:67:a2:10:69:27:0a:22:14:7b:64:6d:c7:
6b:ca:87:e9:33:cd:8b:9a:dd:a9:c5:29:47:3e:b8:
23:86:84:f4:9e:94:a4:78:f9:06:18:ae:a7:2f:60:
76:20:64:b3:a4:97:0c:38:7b:9d:c4:c4:37:f4:43:
62:03:7f:c0:2b:d4:b9:5b:3c:4e:7b:96:f3:ba:63:
a2:a5:45:78:08:06:80:cd:44:86:f7:32:0e:9a:be:
e2:a1:41:ab:39:b7:c1:be:b6:3e:eb:a9:18:0d:b0:
19:93:47:21:5b:02:e6:1d:23:bf:2f:05:47:60:e6:
0e:30:ff:b9:97:35:56:56:f0:59:53:c4:20:e8:bd:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1E:DE:3A:30:58:B6:96:11:38:09:5F:25:D7:43:7A:75:54:47:1E
X509v3 Authority Key Identifier:
keyid:8A:AF:22:68:D4:7E:7C:D5:45:9D:7A:00:6E:BC:51:D3:EB:94:58:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq8iaNR-fNVFnXoAbrxR0-uUWMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/2x7eOjBYtpYROAlfJddDenVURx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/iq8iaNR-fNVFnXoAbrxR0-uUWMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.24.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:a1:96:2d:8a:af:7c:ec:42:aa:9d:18:e0:77:41:8b:be:7a:
8d:6c:4b:cd:15:38:d1:f2:d9:a2:a2:c7:46:72:64:0d:88:e8:
3d:24:d5:1a:2f:96:b2:46:cd:fb:51:fd:28:cd:51:74:9f:7d:
e8:d2:ef:0e:db:0c:7b:f4:af:f5:c2:af:0a:94:0e:6e:3b:12:
7e:3a:c6:f1:f5:2e:4d:97:b7:59:7a:62:01:75:4a:a1:f2:a4:
f3:86:ba:aa:29:a1:80:47:3f:60:80:1b:56:37:ae:f8:e4:52:
56:c3:32:fe:f3:19:44:be:14:42:25:1f:9e:3c:47:90:f6:ba:
b7:f8:9f:f6:06:8b:71:29:79:3e:47:b0:be:fc:b0:00:9c:33:
7b:1d:54:2d:4e:44:fa:c6:ca:aa:bc:38:1a:5f:f3:15:12:d3:
16:79:98:da:88:d0:a2:23:a5:1b:98:8f:05:55:6d:51:c4:3e:
1f:89:03:c8:61:5f:8c:e3:26:d5:75:95:18:af:c3:74:4a:91:
66:9f:9d:33:41:dc:73:33:c2:56:de:8a:d0:0c:6f:45:e1:43:
12:1d:34:6e:ec:ee:c5:7d:7b:58:57:af:50:00:cb:ac:f0:d0:
13:63:3b:88:9c:86:c1:57:33:2a:45:74:ee:ba:df:4a:96:7b:
2d:8b:55:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:04 2023 by rpki-client on console-fra.rpki-client.org