Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/1dWlcwySQbKL7WQSyplZ7PTQq5U.roa
File: 1dWlcwySQbKL7WQSyplZ7PTQq5U.roa (raw, json)
Hash identifier: YteZ/QPu0eOogPaxf7fZTnJbCL2jCBpkywbokZffyeQ=
Subject key identifier: D5:D5:A5:73:0C:92:41:B2:8B:ED:64:12:CA:99:59:EC:F4:D0:AB:95
Certificate issuer: /CN=4ea5b2f37524c3d38dc80a71d8f001ed2c45e89c
Certificate serial: 042F0B45
Authority key identifier: 4E:A5:B2:F3:75:24:C3:D3:8D:C8:0A:71:D8:F0:01:ED:2C:45:E8:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/1dWlcwySQbKL7WQSyplZ7PTQq5U.roa
Signing time: Sat 01 Jan 2022 14:02:25 +0000
ROA not before: Sat 01 Jan 2022 14:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208432
IP address blocks: 62.122.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70191941 (0x42f0b45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ea5b2f37524c3d38dc80a71d8f001ed2c45e89c
Validity
Not Before: Jan 1 14:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5d5a5730c9241b28bed6412ca9959ecf4d0ab95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:86:59:15:43:f3:e6:b6:0a:c0:4f:40:6c:bb:
04:c9:68:62:b9:84:d0:57:60:76:e1:25:6c:3c:da:
98:c5:75:cc:5b:99:b4:35:85:4b:0c:e8:63:0d:97:
61:d2:8d:58:35:e8:95:98:07:c8:df:18:48:ab:53:
b2:bd:33:ac:ab:24:7c:b0:b4:1e:de:d4:59:43:71:
b2:df:5f:71:25:df:b6:a7:f9:65:cc:0a:64:cc:5a:
19:f1:c9:2c:a3:56:cd:5d:93:a7:03:cf:6d:5a:5c:
f7:d5:c8:4b:85:5a:ad:fd:b6:c1:2a:19:c9:39:d0:
21:18:14:72:f3:94:20:bc:77:c7:38:be:6c:18:7d:
4a:37:ae:7e:0d:b5:0b:ea:40:59:7a:5b:87:5e:11:
04:68:84:a5:5b:54:cb:01:58:f8:12:17:04:78:5b:
6c:8a:a6:74:18:54:30:cd:16:3e:a2:91:fb:52:72:
c2:43:1a:5f:10:60:47:2f:a1:e7:dc:55:68:93:a0:
a5:56:af:f1:53:0d:48:3d:f5:61:8b:06:df:92:0d:
79:d6:3a:20:90:ef:26:8c:08:fd:d9:ff:10:0b:d3:
63:f3:7e:d5:b0:dc:2d:0a:9e:02:fb:e7:17:21:b7:
9b:97:9f:97:cf:8d:e9:82:d4:12:ed:26:6a:3b:e8:
52:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D5:A5:73:0C:92:41:B2:8B:ED:64:12:CA:99:59:EC:F4:D0:AB:95
X509v3 Authority Key Identifier:
keyid:4E:A5:B2:F3:75:24:C3:D3:8D:C8:0A:71:D8:F0:01:ED:2C:45:E8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/1dWlcwySQbKL7WQSyplZ7PTQq5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.72.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:86:b1:0b:e3:a3:1e:53:50:1e:03:42:1f:fb:92:e2:e0:43:
f0:69:62:b7:7d:1d:bb:50:c3:8c:cc:c3:3c:54:7d:69:52:47:
b8:94:4c:ac:a1:6c:8d:a7:36:1c:b9:66:d0:53:00:42:d3:5e:
4d:6b:59:43:ce:21:d5:dc:b4:23:4c:a8:e9:6a:aa:2c:3f:2d:
f5:77:11:21:6c:33:22:a6:50:3b:91:d0:f4:9a:90:87:22:30:
8d:35:62:ec:d4:20:5c:f4:32:ff:5d:5a:fe:69:83:3f:43:46:
4c:fb:6c:8c:06:aa:bb:a7:b0:ad:c3:c9:64:a2:51:bf:a9:89:
1c:66:a6:18:bc:0d:33:ea:18:f0:91:0e:34:b9:4a:b5:b9:00:
c8:45:a2:15:ef:e4:fc:9b:c9:17:3a:ce:3a:58:c1:3e:6f:2f:
d6:e8:6d:ba:c2:39:7b:fc:60:58:59:20:d9:2b:01:bd:9c:4c:
4e:ef:00:64:36:24:81:ae:91:96:a2:a0:db:74:4f:b5:40:3d:
26:fa:52:81:7f:12:98:94:97:b0:f8:1b:53:1d:cf:f0:9d:b8:
a6:85:4b:42:ab:3f:2a:e9:d5:aa:97:4a:e6:3e:f8:dc:40:bb:
60:15:39:f3:93:54:b8:58:ba:1b:4b:c5:2d:3e:41:b0:b0:8e:
ad:b1:79:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:27 2024 by rpki-client on console-fra.rpki-client.org