Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/qJylmTs3sOdlDLnYVjnVhxmks-M.roa
File: qJylmTs3sOdlDLnYVjnVhxmks-M.roa (raw, json)
Hash identifier: /Ww/EZslzVio+hWvuy8cL+dWcTjKgWkaSjnet6SVmKg=
Subject key identifier: A8:9C:A5:99:3B:37:B0:E7:65:0C:B9:D8:56:39:D5:87:19:A4:B3:E3
Certificate issuer: /CN=c0520cecba251cd37cdf3c4d5ab03625522bbaac
Certificate serial: 0F6C6FAD
Authority key identifier: C0:52:0C:EC:BA:25:1C:D3:7C:DF:3C:4D:5A:B0:36:25:52:2B:BA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFIM7LolHNN83zxNWrA2JVIruqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/qJylmTs3sOdlDLnYVjnVhxmks-M.roa
Signing time: Sat 01 Jan 2022 05:52:34 +0000
ROA not before: Sat 01 Jan 2022 05:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48744
IP address blocks: 62.122.9.0/24 maxlen: 24
62.122.11.0/24 maxlen: 24
62.122.10.0/24 maxlen: 24
62.122.8.0/24 maxlen: 24
62.122.8.0/22 maxlen: 22
62.122.13.0/24 maxlen: 24
62.122.12.0/22 maxlen: 22
62.122.12.0/24 maxlen: 24
62.122.15.0/24 maxlen: 24
62.122.14.0/24 maxlen: 24
185.240.125.0/24 maxlen: 24
185.240.124.0/24 maxlen: 24
185.240.124.0/23 maxlen: 23
185.240.127.0/24 maxlen: 24
185.240.126.0/23 maxlen: 23
185.240.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258764717 (0xf6c6fad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0520cecba251cd37cdf3c4d5ab03625522bbaac
Validity
Not Before: Jan 1 05:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a89ca5993b37b0e7650cb9d85639d58719a4b3e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:29:ff:59:ba:cb:5c:fb:9e:ef:08:1a:db:35:
5f:f2:2a:bd:4f:b4:f7:ae:c5:5c:9c:02:7d:9e:39:
45:a9:98:3f:0e:77:01:23:05:d3:b6:de:83:8a:7e:
17:3e:e6:49:25:b0:cd:c1:63:97:1b:95:5a:9c:b5:
84:fc:c5:5a:ed:3c:cf:c6:dd:08:ce:69:25:87:6f:
a6:8f:1b:a6:4f:2e:a5:d9:b7:28:91:f3:b9:02:42:
94:26:51:82:dc:58:48:ee:34:11:ac:c4:44:ef:d3:
fc:3e:91:c4:4b:da:e4:24:7e:38:ac:9b:9b:63:c5:
63:30:c7:4d:6a:a9:f2:6d:4a:94:f7:8c:c0:3e:0e:
5c:57:c5:15:9e:ae:b9:b3:4f:f0:3a:80:3e:57:a0:
a2:53:84:a2:07:c4:a0:e5:84:d0:a6:2c:c3:06:ed:
d6:43:a9:2d:fd:f7:6f:97:c9:11:96:e0:c3:58:b5:
5c:c7:41:bf:0e:16:65:bc:55:06:c5:38:d7:6e:95:
50:f3:d4:27:3c:60:8d:bc:28:43:2e:1b:f7:1f:ba:
2a:26:75:06:4d:0f:ee:75:1a:7b:b1:30:ef:89:1a:
c1:9d:f5:bd:84:69:4f:96:0d:2a:3e:c2:7e:7f:c6:
6b:47:4d:d0:fe:0c:55:4d:a2:9f:f6:f3:a3:7d:2f:
a6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9C:A5:99:3B:37:B0:E7:65:0C:B9:D8:56:39:D5:87:19:A4:B3:E3
X509v3 Authority Key Identifier:
keyid:C0:52:0C:EC:BA:25:1C:D3:7C:DF:3C:4D:5A:B0:36:25:52:2B:BA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFIM7LolHNN83zxNWrA2JVIruqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/qJylmTs3sOdlDLnYVjnVhxmks-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/361bae-ab14-4aab-bb8f-7418b92aa209/1/wFIM7LolHNN83zxNWrA2JVIruqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.8.0/21
185.240.124.0/22
Signature Algorithm: sha256WithRSAEncryption
66:15:49:bb:e5:43:b2:f2:d4:53:88:a2:a1:40:4c:ae:92:5a:
74:0e:6f:29:34:53:8b:17:69:9a:e0:7c:98:29:4a:0b:a7:2c:
f3:1e:3a:4d:ad:67:56:10:60:9d:18:36:07:b9:58:2b:ef:7a:
73:cf:64:6a:d3:de:7f:8f:de:f7:5f:17:69:43:56:c0:15:22:
1f:8b:a6:2d:a8:5d:6b:34:4b:5a:59:f8:6b:35:c0:ef:63:07:
1d:7a:51:1f:8f:55:ba:c6:d4:83:ee:ab:c2:e5:3e:7c:e0:99:
9e:42:8f:2f:a4:57:7f:85:5a:10:ad:1c:3e:3b:1d:1d:8c:2e:
db:61:f7:5a:26:5d:0a:40:34:5b:14:b5:63:d4:9b:ae:ff:a2:
e6:c4:b1:f2:c3:a1:c7:f4:d0:c5:8a:0e:76:25:c0:17:a2:b3:
6b:00:ee:12:f8:2a:fe:0a:0a:f7:f2:e7:83:24:d4:68:0e:15:
3c:a5:b6:5c:ca:d7:9f:c6:b6:f3:56:6f:ef:2f:7c:1d:7e:d7:
3c:31:fd:7a:5e:22:e2:bc:7a:bd:41:62:4d:5f:09:83:c4:a0:
db:be:06:72:90:72:5b:23:9e:61:7a:60:3a:86:e6:63:5e:80:
7a:dd:1b:7e:60:a7:09:48:08:c5:2e:f0:a0:f1:b6:2d:96:f3:
1f:87:2b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:05 2024 by rpki-client on console-ams.rpki-client.org