Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/g-il3l_HxAgF2QiJtwEsPJs8rFk.roa
File: g-il3l_HxAgF2QiJtwEsPJs8rFk.roa (raw, json)
Hash identifier: rlKt1NRtc0w7MiSpTC/yR0lZpKSZbDEufEDxj264DqA=
Subject key identifier: 83:E8:A5:DE:5F:C7:C4:08:05:D9:08:89:B7:01:2C:3C:9B:3C:AC:59
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 180D626E
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/g-il3l_HxAgF2QiJtwEsPJs8rFk.roa
Signing time: Sat 01 Jan 2022 04:00:38 +0000
ROA not before: Sat 01 Jan 2022 04:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203484
IP address blocks: 62.73.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403530350 (0x180d626e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83e8a5de5fc7c40805d90889b7012c3c9b3cac59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:03:61:6e:b4:31:a3:4a:21:6c:0f:58:57:6e:
8a:a4:c7:29:10:d7:9b:11:c8:0b:91:1c:67:52:f4:
c2:54:75:b9:e7:ca:4d:28:21:4a:d9:c2:8c:b5:55:
d4:36:c9:5e:ee:f3:20:9d:a2:27:2b:f8:f2:f0:d4:
ff:af:73:95:53:b9:d6:42:35:27:2c:49:71:8a:05:
b9:81:45:44:37:60:a5:d9:e1:25:f9:91:3f:8a:1e:
d2:38:e1:7c:b5:a2:0d:0e:cd:91:32:c7:66:02:d7:
cd:84:d6:6d:bc:5c:31:cd:39:2c:c1:97:c0:37:54:
7f:36:58:54:0c:30:0b:3d:d7:c5:c9:fb:7d:fa:33:
ea:8a:73:e7:61:26:74:de:fb:11:ce:2d:d5:04:31:
93:62:5b:8c:bc:af:f5:98:a9:ed:5d:27:66:a8:a3:
32:a0:5c:b4:18:f9:b5:e4:ef:5d:84:58:cc:03:00:
70:64:d2:ae:c6:96:09:c9:c1:6d:f7:a4:08:c7:d2:
68:f3:0d:aa:17:7f:9e:36:1c:0c:8c:75:91:b9:36:
c7:2f:de:50:21:4a:1a:04:eb:90:1f:af:c4:ee:27:
58:ef:37:6e:5c:47:57:e7:59:ea:64:63:f1:f4:c5:
8c:78:33:2b:4e:8f:a2:49:8e:e3:9c:6a:8b:ce:19:
6d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E8:A5:DE:5F:C7:C4:08:05:D9:08:89:B7:01:2C:3C:9B:3C:AC:59
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/g-il3l_HxAgF2QiJtwEsPJs8rFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.114.0/24
Signature Algorithm: sha256WithRSAEncryption
32:72:b9:05:3b:2f:e5:22:ae:b9:68:22:5c:0a:ff:9b:46:37:
a5:f7:1d:95:63:d9:fc:36:d8:e6:f3:e9:19:d9:83:82:6e:49:
8f:bf:ab:e2:98:e3:7c:dc:ae:6d:3b:11:a2:94:9f:ae:c1:84:
fa:cc:6d:86:eb:97:16:73:5b:44:86:4d:7d:de:a0:28:bf:b3:
13:68:a4:49:2c:3d:96:ab:e3:c3:6f:75:d7:3b:41:0a:60:57:
60:12:fe:82:70:c2:7e:97:a4:25:e0:13:b6:f9:14:d3:3e:18:
74:e7:79:61:45:0e:76:c9:62:77:ea:1c:2c:7b:65:9c:9f:fd:
44:ad:c5:e2:29:39:46:e9:3c:4c:63:79:0e:b5:92:f9:75:cb:
5c:27:cf:67:7b:31:cb:ee:22:ea:3d:a3:0f:a0:7f:1a:37:2b:
d0:c3:e3:54:9a:50:a0:1a:f1:9c:b2:da:ad:90:94:68:9b:86:
56:3d:d0:fb:62:b1:99:04:82:12:24:c7:0c:a2:6a:0b:d4:ef:
24:25:ca:63:c8:d5:d6:1b:be:85:28:c7:3f:27:f1:89:87:df:
86:dd:a7:98:93:12:60:5e:60:26:77:7c:33:f1:49:03:4a:41:
50:f8:a5:f6:2a:52:4d:fc:9c:54:a1:45:5c:f2:88:a3:c3:5a:
d6:11:97:fa
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGA1ibjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGIyZjRmYTUxNjNhZjk2MTY4ZTg4ZmJmOWNiNGVkMWVkOGZiNGM0MB4XDTIyMDEw
MTA0MDAzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODNlOGE1ZGU1ZmM3
YzQwODA1ZDkwODg5YjcwMTJjM2M5YjNjYWM1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIDYW60MaNKIWwPWFduiqTHKRDXmxHIC5EcZ1L0wlR1uefK
TSghStnCjLVV1DbJXu7zIJ2iJyv48vDU/69zlVO51kI1JyxJcYoFuYFFRDdgpdnh
JfmRP4oe0jjhfLWiDQ7NkTLHZgLXzYTWbbxcMc05LMGXwDdUfzZYVAwwCz3Xxcn7
ffoz6opz52EmdN77Ec4t1QQxk2JbjLyv9Zip7V0nZqijMqBctBj5teTvXYRYzAMA
cGTSrsaWCcnBbfekCMfSaPMNqhd/njYcDIx1kbk2xy/eUCFKGgTrkB+vxO4nWO83
blxHV+dZ6mRj8fTFjHgzK06PokmO45xqi84ZbdMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSD6KXeX8fECAXZCIm3ASw8mzysWTAfBgNVHSMEGDAWgBSEsvT6UWOvlhaO
iPv5y07R7Y+0xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMTDAtbEZqcjVZV2pvajctY3RPMGUyUHRNUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8x
L2ctaWwzbF9IeEFnRjJRaUp0d0VzUEpzOHJGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8xL2hMTDAtbEZqcjVZ
V2pvajctY3RPMGUyUHRNUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD5JcjANBgkqhkiG9w0BAQsFAAOC
AQEAMnK5BTsv5SKuuWgiXAr/m0Y3pfcdlWPZ/DbY5vPpGdmDgm5Jj7+r4pjjfNyu
bTsRopSfrsGE+sxthuuXFnNbRIZNfd6gKL+zE2ikSSw9lqvjw2911ztBCmBXYBL+
gnDCfpekJeATtvkU0z4YdOd5YUUOdslid+ocLHtlnJ/9RK3F4ik5Ruk8TGN5DrWS
+XXLXCfPZ3sxy+4i6j2jD6B/Gjcr0MPjVJpQoBrxnLLarZCUaJuGVj3Q+2KxmQSC
EiTHDKJqC9TvJCXKY8jV1hu+hSjHPyfxiYffht2nmJMSYF5gJnd8M/FJA0pBUPil
9ipSTfycVKFFXPKIo8Na1hGX+g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org