Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/KX6yJ0cQQjx74s-LP1gu04fTGxY.roa
File: KX6yJ0cQQjx74s-LP1gu04fTGxY.roa (raw, json)
Hash identifier: 4btdBqutbDPJLEPzARLYN+yS87OFYc3qDXgii+0rZPA=
Subject key identifier: 29:7E:B2:27:47:10:42:3C:7B:E2:CF:8B:3F:58:2E:D3:87:D3:1B:16
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17FD5294
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/KX6yJ0cQQjx74s-LP1gu04fTGxY.roa
Signing time: Sat 01 Jan 2022 04:00:28 +0000
ROA not before: Sat 01 Jan 2022 04:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60168
IP address blocks: 62.73.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402477716 (0x17fd5294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=297eb2274710423c7be2cf8b3f582ed387d31b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1a:f6:6d:c8:13:cd:86:99:ca:b0:46:f0:7b:
1d:64:b9:cb:7b:13:ec:33:aa:08:27:5e:17:db:e1:
3b:d8:d7:0a:5b:39:ba:21:e3:f3:4f:10:e3:20:5b:
58:f7:1f:4b:e8:64:bf:d3:76:79:b8:eb:67:bc:87:
2a:54:5a:07:0e:bd:cf:0d:17:16:d6:57:ca:ca:5a:
36:d9:db:58:df:b7:4a:89:c9:ec:11:a2:5b:6e:9e:
1a:c2:94:22:b0:4d:55:5d:c8:fa:ff:e6:32:17:6d:
4b:2b:27:b5:4a:48:d6:c5:71:5f:30:ca:75:68:e9:
25:11:15:de:19:4e:8f:49:69:ba:9c:52:73:1b:df:
9d:77:af:84:b9:b6:7e:98:0f:0f:13:d6:fc:e8:92:
28:39:09:0f:34:fa:92:ca:8d:3b:76:17:f4:a6:39:
aa:4b:57:8e:35:d4:77:c8:5d:72:1e:d0:8e:03:56:
5e:55:87:37:7a:e7:0d:47:9f:a5:5b:e1:d1:70:61:
62:ac:5a:da:98:f4:1f:2d:c3:77:bd:34:f2:61:50:
96:06:f8:47:fb:27:33:2d:f9:2e:96:92:a2:a6:ce:
83:d3:3d:e0:22:0f:bc:73:3b:9d:49:64:fd:5f:a6:
d3:91:ff:d1:c6:5a:f6:e2:40:12:f2:41:93:1b:0f:
43:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7E:B2:27:47:10:42:3C:7B:E2:CF:8B:3F:58:2E:D3:87:D3:1B:16
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/KX6yJ0cQQjx74s-LP1gu04fTGxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.72.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d1:47:0a:a1:69:9e:1e:08:e7:eb:3b:cf:b6:40:0e:62:87:
57:e0:60:e4:c0:a1:f5:b4:67:42:91:ec:52:e7:45:b8:6f:28:
64:31:02:39:b4:3c:09:e6:66:d8:68:ec:43:ce:23:d8:5a:70:
a7:fd:81:8b:b0:d3:0e:0d:02:60:f1:0e:f7:65:b3:61:ea:df:
94:37:50:db:42:68:3c:12:e3:1b:8a:c8:3c:5e:be:08:25:82:
28:56:87:95:13:e0:aa:ca:da:f2:2e:b4:96:e6:92:1d:6e:ef:
15:4f:9c:c5:6d:73:b1:79:cf:28:41:6b:08:a9:20:e7:4d:c0:
94:6e:ba:59:5a:4e:f5:ab:01:c8:28:65:e7:52:3c:34:62:7e:
3c:b5:6c:70:89:3c:ce:aa:8f:de:58:f0:74:54:4a:43:bc:5f:
e1:97:19:80:87:7c:c6:0d:48:5b:40:e4:3d:3b:1d:2d:14:5f:
2e:9a:82:3a:80:53:9c:96:99:c5:50:2a:5b:dd:c8:7d:10:f9:
bf:c8:35:67:8f:4f:a3:cb:2f:59:16:18:4e:34:5c:f7:eb:78:
c9:c5:5a:5f:70:30:60:96:9b:a7:29:1b:1b:ba:0c:c1:af:0d:
b4:45:a0:2b:a1:e0:ba:b8:5d:57:52:67:1a:c5:ae:bb:26:14:
16:26:30:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org