Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/RLUsc-IvJ_1nSREnwKKhLGUQVP8.roa
File: RLUsc-IvJ_1nSREnwKKhLGUQVP8.roa (raw, json)
Hash identifier: K2SaBDXZMnH40mSqhFUOfVyQfEViJP4islN2h0LFWtE=
Subject key identifier: 44:B5:2C:73:E2:2F:27:FD:67:49:11:27:C0:A2:A1:2C:65:10:54:FF
Certificate issuer: /CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
Certificate serial: B237B8
Authority key identifier: 41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/RLUsc-IvJ_1nSREnwKKhLGUQVP8.roa
Signing time: Sat 01 Jan 2022 06:54:48 +0000
ROA not before: Sat 01 Jan 2022 06:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 62.106.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11679672 (0xb237b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
Validity
Not Before: Jan 1 06:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44b52c73e22f27fd67491127c0a2a12c651054ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7d:49:11:e5:e8:00:11:7e:e1:af:0a:ef:fc:
c1:8d:88:7f:c2:70:f7:ed:13:8d:56:37:c6:32:48:
59:ea:47:87:02:b8:31:ee:7a:71:ee:68:25:9c:fd:
19:93:ad:3f:40:ee:9e:ea:6d:56:9e:b7:e0:5f:b5:
04:69:8f:a4:f1:e2:be:5b:42:43:ca:0c:72:c2:7f:
5e:b7:f4:0d:69:b6:cb:0f:6a:5b:41:55:c7:18:28:
31:56:bc:7d:1c:23:ed:bf:8b:18:15:6e:a6:9d:fb:
17:1d:f3:4d:a6:18:bb:94:1c:e1:c6:1a:05:94:89:
1f:0c:86:77:ff:3f:16:2e:2f:d9:ba:d5:a2:95:5a:
37:b2:35:d8:a3:f4:6c:4c:84:8b:62:1d:b2:5c:55:
49:34:c5:8c:aa:8e:b4:3c:8e:19:9b:ef:fd:07:d5:
6a:fc:84:f4:f3:a8:44:4a:b7:e6:76:7b:1d:27:e5:
d6:4e:28:76:37:b4:b2:ee:a2:62:18:cc:6c:8c:4b:
95:60:cd:39:90:51:a0:cc:5b:9d:b8:d2:bc:97:26:
83:d4:fe:65:28:6e:cb:2b:22:e8:4d:6d:08:95:4d:
13:0b:2f:12:04:a5:a4:75:25:7e:83:7d:d1:34:35:
a0:95:79:37:8f:11:04:dd:87:d0:b1:b1:90:02:7c:
a0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B5:2C:73:E2:2F:27:FD:67:49:11:27:C0:A2:A1:2C:65:10:54:FF
X509v3 Authority Key Identifier:
keyid:41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/RLUsc-IvJ_1nSREnwKKhLGUQVP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/QTHR3bajVdk8zt4-LBo42UnRaD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.66.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:45:ba:c7:8d:86:dc:ca:29:e5:aa:3e:b1:15:fc:ef:3f:18:
54:3c:9a:f9:1d:a7:9b:ff:80:7c:61:11:f7:c4:82:23:74:97:
13:f6:62:5d:45:99:48:3d:9c:30:35:ae:cc:dd:ac:a8:f4:7c:
c1:bd:d5:d5:f5:38:d9:d8:ed:fe:97:5c:4e:e0:05:51:5f:bb:
bf:4e:a6:49:31:87:eb:cf:62:a5:c8:4b:08:37:df:02:30:25:
ce:7a:ad:e6:28:6b:45:ab:f2:e7:4e:ff:c8:2d:75:90:dd:c4:
39:48:18:03:5a:08:dc:aa:3b:6a:cb:9b:ae:db:56:6b:2d:7d:
88:2e:a9:c6:1a:d2:e7:0a:0c:d7:70:e2:36:41:4e:56:e9:b0:
34:78:4d:be:05:14:67:ff:ab:db:ee:08:1f:e5:94:c4:09:89:
5e:98:b4:27:96:e8:98:6c:f7:d8:c3:2f:c9:ae:1b:fc:98:8e:
14:4a:4a:6a:31:10:2c:97:bf:2b:00:84:cc:c2:54:18:f2:94:
ec:46:83:5b:03:e1:9b:8e:c2:7e:32:5a:1e:59:90:eb:b3:95:
75:f3:44:f7:4c:5f:d6:d0:c1:e4:7d:bc:c8:ce:0b:9d:91:9f:
cd:25:cf:7a:d3:7f:f5:e1:26:e0:ed:f7:07:22:db:46:1a:75:
17:bf:e4:29
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALI3uDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTMxZDFkZGI2YTM1NWQ5M2NjZWRlM2UyYzFhMzhkOTQ5ZDE2ODNlMB4XDTIyMDEw
MTA2NTQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDRiNTJjNzNlMjJm
MjdmZDY3NDkxMTI3YzBhMmExMmM2NTEwNTRmZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALx9SRHl6AARfuGvCu/8wY2If8Jw9+0TjVY3xjJIWepHhwK4
Me56ce5oJZz9GZOtP0DunuptVp634F+1BGmPpPHivltCQ8oMcsJ/Xrf0DWm2yw9q
W0FVxxgoMVa8fRwj7b+LGBVupp37Fx3zTaYYu5Qc4cYaBZSJHwyGd/8/Fi4v2brV
opVaN7I12KP0bEyEi2IdslxVSTTFjKqOtDyOGZvv/QfVavyE9POoREq35nZ7HSfl
1k4odje0su6iYhjMbIxLlWDNOZBRoMxbnbjSvJcmg9T+ZShuyysi6E1tCJVNEwsv
EgSlpHUlfoN90TQ1oJV5N48RBN2H0LGxkAJ8oGUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREtSxz4i8n/WdJESfAoqEsZRBU/zAfBgNVHSMEGDAWgBRBMdHdtqNV2TzO
3j4sGjjZSdFoPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FUSFIzYmFqVmRrOHp0NC1MQm80MlVuUmFENC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzEvNzAwZGYzLWU5YTAtNDUzYi1iZjhhLTJmYjY4YWM1NGUwMS8x
L1JMVXNjLUl2Sl8xblNSRW53S0toTEdVUVZQOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEv
NzAwZGYzLWU5YTAtNDUzYi1iZjhhLTJmYjY4YWM1NGUwMS8xL1FUSFIzYmFqVmRr
OHp0NC1MQm80MlVuUmFENC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD5qQjANBgkqhkiG9w0BAQsFAAOC
AQEALUW6x42G3Mop5ao+sRX87z8YVDya+R2nm/+AfGER98SCI3SXE/ZiXUWZSD2c
MDWuzN2sqPR8wb3V1fU42djt/pdcTuAFUV+7v06mSTGH689ipchLCDffAjAlznqt
5ihrRavy507/yC11kN3EOUgYA1oI3Ko7asubrttWay19iC6pxhrS5woM13DiNkFO
VumwNHhNvgUUZ/+r2+4IH+WUxAmJXpi0J5bomGz32MMvya4b/JiOFEpKajEQLJe/
KwCEzMJUGPKU7EaDWwPhm47CfjJaHlmQ67OVdfNE90xf1tDB5H28yM4LnZGfzSXP
etN/9eEm4O33ByLbRhp1F7/kKQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-fra.rpki-client.org