Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/kT-WUwP9nb5Ct5W4PnaqbdvyApI.roa
File: kT-WUwP9nb5Ct5W4PnaqbdvyApI.roa (raw, json)
Hash identifier: VBA9J+wKTe/zKuNZKDB9+iC3Yt4hVNWLs9Ggggdbos8=
Subject key identifier: 91:3F:96:53:03:FD:9D:BE:42:B7:95:B8:3E:76:AA:6D:DB:F2:02:92
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F93514
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/kT-WUwP9nb5Ct5W4PnaqbdvyApI.roa
Signing time: Sat 01 Jan 2022 04:00:25 +0000
ROA not before: Sat 01 Jan 2022 04:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51987
IP address blocks: 62.73.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402208020 (0x17f93514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=913f965303fd9dbe42b795b83e76aa6ddbf20292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7d:11:02:73:10:1b:32:9c:2b:4a:fd:b1:74:
d7:bf:66:cb:00:b4:5d:55:3b:d3:b2:22:e6:8c:fb:
03:ae:10:82:99:d4:2a:ed:37:30:c5:4a:2e:4f:b1:
f8:16:e3:ad:bf:08:86:5b:9b:92:b8:3a:17:ff:72:
e0:20:0e:9d:d1:de:dd:d5:5d:70:cb:7e:63:c2:74:
b1:a2:6a:e4:44:b3:63:bc:81:0c:00:6d:a4:3a:61:
0b:66:c7:a6:60:b4:38:85:f9:8f:e6:98:d9:97:ec:
52:08:08:40:48:cd:4e:4f:d8:e4:ac:fe:09:2e:2e:
e9:d2:fd:49:a7:24:ac:9a:5b:d9:30:aa:c5:41:39:
1b:47:ed:8b:d6:78:c7:8c:45:77:f0:1e:b2:4f:c2:
5e:57:f1:a1:4d:b6:5f:52:ce:59:bc:a3:49:f4:7f:
fa:a3:56:d4:0b:07:62:1d:3f:03:da:79:88:66:08:
70:cf:3c:4b:87:d5:4f:39:61:c3:b8:bc:f6:9d:da:
dc:c8:28:25:64:89:c1:5a:b7:98:56:b8:74:38:8e:
8c:cb:43:52:f8:15:bb:28:63:1c:56:66:42:2f:30:
1c:0d:f0:19:37:eb:09:b1:ab:0a:06:35:5a:51:d6:
94:e7:aa:a2:b1:7d:88:65:70:05:0b:0f:3a:4d:e0:
c4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3F:96:53:03:FD:9D:BE:42:B7:95:B8:3E:76:AA:6D:DB:F2:02:92
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/kT-WUwP9nb5Ct5W4PnaqbdvyApI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:ba:4a:84:a1:d7:a3:4d:f7:27:ff:34:f6:d1:62:33:63:30:
23:53:33:22:fd:c5:62:42:7b:85:39:93:68:f9:11:f5:9a:50:
cc:f4:63:da:4c:8b:c0:ca:d0:31:b0:47:61:5c:b1:35:3c:80:
d8:d4:4c:46:42:19:1e:a2:ad:0c:1f:db:0e:dd:6c:9d:e7:75:
79:9a:f7:f8:4e:18:0c:fd:5e:0e:83:da:1a:6d:16:39:3c:29:
66:f4:cd:79:da:db:48:56:12:ff:bc:23:49:85:93:4d:43:d6:
3e:99:4c:12:27:3b:14:53:76:8c:25:c0:66:d0:7b:ad:e1:1c:
4c:91:5c:f9:c0:21:bc:f4:b4:2f:30:5a:95:39:e6:da:68:de:
ee:b7:ab:65:bc:d9:3f:4d:4d:b4:9a:75:de:d6:75:ae:7f:0f:
a3:99:18:6c:3c:60:71:c5:8a:03:31:c5:45:72:31:9f:83:63:
fa:67:cf:c9:1e:b0:b3:f7:5c:37:4a:9d:8f:32:a9:8c:7e:31:
ca:ed:d1:10:d3:d6:f4:55:03:97:e8:cd:10:d8:d3:3e:8a:b4:
36:d7:13:dc:aa:ae:9b:68:51:21:d0:54:3a:42:b8:c1:61:d6:
3d:99:84:94:f3:5a:56:f6:8e:46:71:71:69:a9:7c:fb:48:77:
5c:fb:77:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org