Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/PXvQxfulpNgb_tkfkd2o6uvV0ZE.roa
File: PXvQxfulpNgb_tkfkd2o6uvV0ZE.roa (raw, json)
Hash identifier: YWwam0yA6xLqffSOKuD6b4dYHMEgkQEDIO3KSz4CxFE=
Subject key identifier: 3D:7B:D0:C5:FB:A5:A4:D8:1B:FE:D9:1F:91:DD:A8:EA:EB:D5:D1:91
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FC0DEE3
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/PXvQxfulpNgb_tkfkd2o6uvV0ZE.roa
Signing time: Sat 01 Jan 2022 10:04:54 +0000
ROA not before: Sat 01 Jan 2022 10:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59599
IP address blocks: 62.132.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 801169123 (0x2fc0dee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d7bd0c5fba5a4d81bfed91f91dda8eaebd5d191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:92:73:a5:50:df:aa:a0:7b:e9:c5:84:f8:0d:
b4:41:be:e7:71:89:86:31:c6:45:c6:eb:3c:23:13:
22:46:ee:ed:28:9d:5f:ab:42:07:a9:19:a0:43:0d:
e9:b9:8d:0a:b5:3b:91:a3:09:11:bc:a7:07:3d:10:
0f:10:3e:52:81:8b:58:cd:7e:cd:be:2c:c6:ba:de:
8f:32:90:43:3b:cd:3e:3f:cb:9f:70:e9:b5:9b:8e:
50:32:7d:48:0a:94:d7:95:8c:c6:47:f4:03:ed:1c:
2a:1f:a3:3a:09:19:41:73:dc:6e:72:1e:b5:27:85:
fc:c8:87:8d:b9:0d:38:b0:c8:05:6d:59:3d:79:19:
c0:8f:de:87:2f:92:e6:0d:ee:2e:20:29:48:d0:51:
3d:53:ac:e2:70:17:65:41:d5:57:26:f9:36:b7:6e:
b7:11:7e:84:0e:92:84:45:3e:9c:2a:05:c7:c5:a5:
3f:70:27:f0:fe:f4:e1:04:d5:aa:4f:b2:e9:f9:f6:
c8:c3:62:7a:57:43:06:a4:a2:68:9e:79:84:a8:0a:
a1:c0:e2:96:47:18:71:d4:f1:1c:ac:47:01:58:20:
dd:00:bf:d2:78:f1:11:cc:64:92:8f:30:93:31:14:
49:b9:32:78:b3:47:0f:4a:3d:cd:58:56:cf:60:68:
8a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:7B:D0:C5:FB:A5:A4:D8:1B:FE:D9:1F:91:DD:A8:EA:EB:D5:D1:91
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/PXvQxfulpNgb_tkfkd2o6uvV0ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.132.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:54:8f:9e:71:8a:9a:cd:3c:9f:dc:d4:57:37:35:c0:ea:fc:
4d:ee:ff:39:a0:b3:e3:32:d9:f0:36:92:25:97:a2:79:4c:56:
90:cd:80:51:8d:79:44:18:2d:0f:da:57:7b:b9:39:d6:7b:90:
a4:c5:5b:5b:22:4f:35:2c:e7:5c:3f:38:73:df:a2:3e:51:b0:
c4:05:b9:86:d3:14:d6:ce:e6:cb:a4:4a:0f:57:e6:43:55:82:
23:28:7e:b8:53:99:8a:b4:33:37:1c:cd:c6:24:01:23:26:be:
e2:c7:63:d4:31:bb:a8:26:0c:c0:53:d9:94:fe:7a:95:27:d7:
9e:e6:aa:ed:be:dd:70:5e:62:da:f9:3c:11:cc:a3:be:5c:8f:
32:5f:e3:27:b7:4b:46:e1:5c:dd:d0:4a:35:a8:87:19:7e:81:
d8:b1:e5:a7:d9:97:e1:93:51:4c:b5:d6:fe:00:61:bd:09:0c:
39:6c:5f:6a:92:41:10:7f:43:c3:95:96:08:d9:b9:39:46:50:
56:43:09:ff:b7:23:81:0f:1a:a5:54:29:2f:62:b3:5a:2c:b6:
28:b0:6b:8f:05:ac:ca:90:31:ff:b5:91:3e:a3:4b:28:55:5d:
ea:d8:f0:03:ca:6f:0c:22:08:5b:54:37:80:da:d3:e2:4f:da:
ed:d2:30:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org