Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/7IZZ42jbg0nWN3gUWIa2dyMSMZo.roa
File: 7IZZ42jbg0nWN3gUWIa2dyMSMZo.roa (raw, json)
Hash identifier: S4FS3pm6lRDSZg9AeVirjAgHzl7HZXPaAZL/DWgENCk=
Subject key identifier: EC:86:59:E3:68:DB:83:49:D6:37:78:14:58:86:B6:77:23:12:31:9A
Certificate issuer: /CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Certificate serial: 0463A0
Authority key identifier: 11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/7IZZ42jbg0nWN3gUWIa2dyMSMZo.roa
Signing time: Wed 26 Jan 2022 14:04:42 +0000
ROA not before: Wed 26 Jan 2022 14:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209438
IP address blocks: 62.68.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287648 (0x463a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Validity
Not Before: Jan 26 14:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec8659e368db8349d63778145886b6772312319a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:45:5d:cb:71:57:84:7a:39:1b:e3:63:dd:47:
75:7a:fb:65:3b:99:24:cb:25:0f:29:79:e5:b0:4e:
1d:d5:c8:27:22:64:8c:7e:f1:ab:e4:89:40:b1:1c:
5b:6e:57:6b:75:eb:5a:89:5a:22:4a:2b:55:6b:41:
78:5f:4a:46:ad:4c:17:a4:cb:6c:bb:9a:fc:80:e6:
79:2d:37:cf:f9:6d:9b:4d:e3:1f:09:7c:99:12:b7:
df:c8:3e:15:7a:33:d9:db:fc:f2:e6:98:1d:3a:d1:
1a:35:77:7b:0a:25:47:10:08:b8:e4:47:5e:28:19:
27:61:bf:d6:42:5d:a0:c4:2b:56:af:ef:3e:de:e5:
49:d1:14:80:f2:de:5a:98:4c:d6:33:b3:b3:f7:7b:
e8:fb:7a:fa:7b:57:5f:28:5e:4b:2b:38:8d:6c:07:
b7:4c:49:3d:18:d6:f3:e2:a3:6e:0d:52:4f:c3:30:
f0:95:a2:fd:31:6e:26:5e:f0:bc:3f:76:47:0a:51:
ba:4b:a7:b6:b0:83:37:4f:4c:6f:93:be:ef:48:bd:
c7:9b:a1:4c:41:25:b5:64:17:bf:12:02:1f:64:d2:
c6:cc:6e:9f:23:a5:81:cc:8e:28:b3:2e:71:23:46:
86:3b:1a:03:47:58:7f:39:fa:86:ca:fa:3d:ec:f1:
60:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:86:59:E3:68:DB:83:49:D6:37:78:14:58:86:B6:77:23:12:31:9A
X509v3 Authority Key Identifier:
keyid:11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/7IZZ42jbg0nWN3gUWIa2dyMSMZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.88.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:13:18:81:78:c2:31:a3:28:fa:3c:56:f5:af:ec:ac:3b:38:
de:20:5c:35:f6:69:43:51:d2:da:e1:c1:9b:68:c9:46:9c:2d:
4b:56:3b:48:d6:b9:cb:c1:49:aa:3f:a5:02:bd:65:80:cf:19:
96:e1:eb:be:94:9b:57:a2:22:1c:a4:0a:bf:dd:aa:b6:28:7f:
d3:f5:6d:27:e8:7d:1c:9f:ae:f2:e9:31:7a:85:a3:f4:7d:b1:
9f:30:34:e2:f3:29:6a:d7:9b:4f:ed:c0:60:99:89:dd:27:f4:
f5:c4:a0:b8:e2:e6:ae:30:25:a3:e8:58:41:47:b1:48:9e:ae:
58:f6:72:85:aa:7e:b7:40:f0:4a:ca:82:0a:60:50:9b:d9:9b:
d0:1b:08:e5:42:6c:95:ab:e0:46:17:6c:3a:07:3a:d3:67:64:
f5:52:ae:0a:39:72:ba:31:df:ae:07:fd:90:f5:c4:b3:1f:71:
4c:e0:1c:31:26:ae:c3:a0:e8:a4:7d:a7:43:e7:3d:05:1e:9f:
6f:2d:a9:5d:d7:73:d4:de:f7:d6:c6:f3:ca:99:94:50:6c:42:
b5:1b:92:56:d9:4f:ee:d7:06:41:7b:d2:79:18:21:ae:7d:d8:
5d:08:2b:2b:7c:27:57:3f:65:ad:cf:e2:7f:ff:0e:94:df:c8:
32:0a:66:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org