Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/UxXreAnbQEq5iShkHM_LitrNa_c.roa
File: UxXreAnbQEq5iShkHM_LitrNa_c.roa (raw, json)
Hash identifier: Q3hjgXLCF8O/AXiv4pUrKLbCT218sptJzhXV6hPu4Bo=
Subject key identifier: 53:15:EB:78:09:DB:40:4A:B9:89:28:64:1C:CF:CB:8A:DA:CD:6B:F7
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0D581140
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/UxXreAnbQEq5iShkHM_LitrNa_c.roa
Signing time: Sat 01 Jan 2022 05:55:23 +0000
ROA not before: Sat 01 Jan 2022 05:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208142
IP address blocks: 62.140.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223875392 (0xd581140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 05:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5315eb7809db404ab98928641ccfcb8adacd6bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d3:5b:53:47:41:25:c6:97:69:4a:e6:90:f3:
d6:55:0c:16:7c:ea:c3:9d:8e:26:04:34:b6:bd:c4:
cd:ae:60:2a:e3:98:30:16:ab:79:df:d0:30:b9:2b:
9b:dc:d7:b3:3f:eb:c2:04:30:f3:8e:30:30:dd:b2:
3f:35:73:51:ec:b9:30:cc:97:1e:48:f7:dc:ed:17:
22:0c:34:71:4f:7f:8b:da:9b:75:c2:fa:44:62:d2:
79:9c:31:48:4e:f4:44:76:7c:13:68:76:a8:15:7f:
b0:06:65:b9:95:ba:da:56:3a:d1:86:ec:45:cf:fb:
97:29:6c:58:07:05:88:56:91:17:91:ed:d4:26:da:
00:ec:57:98:18:19:5f:fc:5a:29:29:7f:f6:70:77:
c4:42:1b:ad:47:13:17:fa:07:bc:f2:a2:3b:76:44:
77:1b:63:a0:d2:3c:8f:7c:18:3b:f6:f3:c4:6d:db:
43:5d:ec:2f:0f:cf:65:35:29:91:fe:07:3f:3c:ad:
5f:93:b2:8d:00:4e:19:02:00:0b:78:c0:3b:ba:0d:
f1:9c:19:a1:d8:b2:57:de:18:0c:62:41:c3:0c:90:
ae:5c:a9:74:45:4d:80:a7:0e:f2:0a:61:bf:0e:42:
c7:02:54:14:c8:16:8f:01:3e:a4:aa:40:21:81:7d:
43:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:15:EB:78:09:DB:40:4A:B9:89:28:64:1C:CF:CB:8A:DA:CD:6B:F7
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/UxXreAnbQEq5iShkHM_LitrNa_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.140.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:01:97:c9:b3:67:d1:bb:08:6c:f7:b9:93:e4:f2:36:0b:2f:
07:72:a1:69:70:6d:31:73:84:61:9d:bf:08:5e:19:33:1f:9b:
2c:cb:28:78:da:46:23:05:bc:4b:df:79:3a:f8:17:3d:91:b7:
ed:ec:32:3d:f1:3a:fd:67:7f:3e:6e:1b:fd:6b:b9:a7:2a:54:
2f:5c:04:f5:0f:84:18:31:f3:7f:f4:53:36:e1:1c:02:53:5e:
cd:22:bc:87:3c:77:4f:f0:24:a7:e3:ea:3e:6b:b4:f6:c1:ce:
32:e0:c1:8a:70:10:44:5a:a0:38:d2:a3:e8:be:c3:f8:bd:16:
f2:dd:df:53:66:5d:35:80:0d:eb:49:e8:2f:cb:43:bc:74:7b:
b2:b9:42:e5:a4:13:02:8b:51:db:08:95:aa:60:85:99:fa:19:
05:3f:61:de:f1:77:1a:6b:49:9c:5b:14:07:84:1c:f7:12:52:
26:3f:ba:ea:ef:86:da:02:54:6e:95:67:f7:b1:80:42:c3:46:
cc:61:a8:43:61:7e:ce:41:4c:41:c2:d3:9c:72:7d:88:78:6a:
50:76:c1:85:74:64:4e:76:1f:78:af:7a:41:97:12:1e:6c:bf:
c6:31:ea:15:11:9c:f9:99:1a:61:78:92:4f:e1:20:27:c9:c9:
58:b0:db:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:57 2024 by rpki-client on console-fra.rpki-client.org