Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/RmvwxucujdpxhpBNJCsTrumrw84.roa
File: RmvwxucujdpxhpBNJCsTrumrw84.roa (raw, json)
Hash identifier: ng8IM5TD280hcHHsBAkSw4HGwQxjtzsdETP42KHNypU=
Subject key identifier: 46:6B:F0:C6:E7:2E:8D:DA:71:86:90:4D:24:2B:13:AE:E9:AB:C3:CE
Certificate issuer: /CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
Certificate serial: 01841A8BF72388620E123DFC030B2F00E68B
Authority key identifier: 41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/RmvwxucujdpxhpBNJCsTrumrw84.roa
Signing time: Thu 27 Oct 2022 17:44:51 +0000
ROA not before: Thu 27 Oct 2022 17:44:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57271
IP address blocks: 62.106.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1a:8b:f7:23:88:62:0e:12:3d:fc:03:0b:2f:00:e6:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
Validity
Not Before: Oct 27 17:44:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=466bf0c6e72e8dda7186904d242b13aee9abc3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d9:3e:80:bf:37:8e:fd:49:d0:2a:9a:a2:cc:
fa:a1:3a:f9:ec:c3:be:3c:d0:58:54:73:98:ad:7d:
45:e4:e8:69:02:ca:38:ae:a5:4d:f4:44:39:c4:ad:
6b:91:42:fc:9c:b7:a9:8a:a8:a7:7e:86:94:fe:82:
13:c2:76:ad:7c:28:a5:e6:05:c2:09:44:64:80:25:
87:07:10:2c:6e:5a:ae:ab:e0:0f:4e:47:79:7b:c5:
2a:70:98:9e:d2:12:a0:61:f2:42:f3:1e:64:2c:b0:
d2:cb:e9:e6:58:75:37:ea:85:ce:48:43:2a:d4:00:
36:4b:cc:c7:4d:4e:23:63:71:63:29:0a:0a:8e:dd:
69:06:63:4a:b1:c8:92:ba:58:fb:0e:d4:78:7b:03:
3e:67:57:09:9c:b3:fc:37:b4:38:18:d0:79:ff:d4:
28:ba:4e:00:06:0d:a3:8e:51:70:bb:5b:23:2a:72:
71:28:8c:21:d5:29:70:23:4e:33:19:a4:f0:7f:fe:
c2:43:cd:f9:f1:bd:19:e8:7d:33:8c:71:ff:b9:dd:
ac:0d:92:e8:a7:f2:78:0b:c6:63:ec:d7:6f:87:c5:
9d:72:6f:b9:24:2d:8c:ee:13:50:ae:c1:74:50:11:
00:3d:f0:6a:4b:81:93:3b:13:ef:8c:1b:df:51:4e:
c6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:6B:F0:C6:E7:2E:8D:DA:71:86:90:4D:24:2B:13:AE:E9:AB:C3:CE
X509v3 Authority Key Identifier:
keyid:41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/RmvwxucujdpxhpBNJCsTrumrw84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/QTHR3bajVdk8zt4-LBo42UnRaD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.66.0/24
Signature Algorithm: sha256WithRSAEncryption
05:19:a5:86:da:71:5e:36:6f:8c:db:ad:02:26:57:76:10:50:
12:ed:25:9d:4d:f7:55:fa:ae:f8:2a:07:7c:2f:8a:e5:88:39:
bf:27:37:e1:7e:d1:f8:80:6f:96:49:7d:f3:55:b5:e1:3b:5b:
5f:ba:6c:b4:1c:69:67:e0:e6:3f:76:43:0c:44:cd:89:47:40:
ca:3f:ef:78:87:67:61:26:fc:75:cf:b6:1f:81:7e:d8:6d:9c:
cf:10:71:89:c9:a7:5b:d7:d1:db:00:f8:a3:c4:aa:d4:35:64:
d6:8a:48:6d:6e:6a:38:c0:c8:43:b0:0f:fb:fb:ff:80:67:dc:
7c:d2:2b:f8:70:fd:e6:18:cc:90:65:bd:60:84:02:50:0e:fb:
65:97:62:ab:35:01:b3:24:d7:57:61:86:3b:3b:84:e1:b8:e8:
cd:0d:97:d6:c6:b3:60:cc:7b:79:5e:a5:e1:da:a7:03:a5:b4:
3c:2f:de:7c:02:5b:4e:14:a3:08:88:4c:94:f8:9b:4b:46:e6:
da:fe:f0:a4:26:26:6a:33:8a:3a:cd:fc:43:d2:eb:d2:88:e9:
c5:2f:60:a0:1c:6d:71:37:9e:08:91:e1:78:2b:a2:40:bd:6f:
65:1f:37:d5:98:f8:5e:72:d7:59:9e:46:ea:06:09:f5:d0:af:
2d:f2:32:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-fra.rpki-client.org