Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d1350b-1b5d-420e-9c61-050cb256367a/1/RxLRExW3K30nWenVYeovktV8vQY.roa
File: RxLRExW3K30nWenVYeovktV8vQY.roa (raw, json)
Hash identifier: aYN6WNsNJbucEpQ4l/v0WBVfBWXNwcqjqB9j9mZheMw=
Subject key identifier: 47:12:D1:13:15:B7:2B:7D:27:59:E9:D5:61:EA:2F:92:D5:7C:BD:06
Certificate issuer: /CN=1250c17ee23ef7f35ca4c79d1d7adc87c7810869
Certificate serial: 0146E5
Authority key identifier: 12:50:C1:7E:E2:3E:F7:F3:5C:A4:C7:9D:1D:7A:DC:87:C7:81:08:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ElDBfuI-9_NcpMedHXrch8eBCGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d1350b-1b5d-420e-9c61-050cb256367a/1/RxLRExW3K30nWenVYeovktV8vQY.roa
Signing time: Sun 06 Mar 2022 07:52:37 +0000
ROA not before: Sun 06 Mar 2022 07:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 62.204.54.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83685 (0x146e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1250c17ee23ef7f35ca4c79d1d7adc87c7810869
Validity
Not Before: Mar 6 07:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4712d11315b72b7d2759e9d561ea2f92d57cbd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dd:c1:45:bd:2f:fd:cf:2f:d1:e0:13:60:0f:
a2:3b:d5:3a:27:29:1c:8f:73:ff:dc:1d:dc:e7:2f:
4b:03:e0:36:9a:ee:61:6d:cd:2c:21:46:83:ca:a6:
15:67:ab:6b:38:a6:05:3e:c0:00:41:e9:d2:84:88:
e7:c0:80:bb:37:06:5c:59:7a:9e:8d:3c:1a:ce:99:
ad:a5:a9:a7:1a:57:d0:0a:b5:7b:04:28:c0:67:13:
21:3f:a5:b9:63:b5:8f:26:55:ab:4b:45:f3:13:28:
3b:d0:da:f1:cf:78:db:91:10:c4:38:d8:e9:16:a2:
a7:9e:7f:ae:cb:82:3d:9e:e9:db:73:40:4a:a3:39:
8f:93:dc:a7:63:12:16:34:ca:5d:ed:34:d6:6a:a1:
4e:88:c2:e0:58:6d:08:99:92:a4:8a:d7:31:8a:7c:
8d:a2:c0:87:5a:97:d0:fe:d5:ac:2c:c7:bb:e9:29:
97:af:d4:0c:c6:83:d2:fd:35:82:45:5d:0d:20:18:
77:bb:cd:67:f0:b1:46:2b:1c:7a:52:a7:a9:fa:f1:
1a:2f:51:7f:c2:d1:cb:91:6c:f0:41:8b:3c:7c:3e:
85:97:69:5e:18:f2:c4:3c:b5:c2:c6:9e:83:97:21:
80:b8:4d:89:5e:a4:2c:ef:0f:90:ad:c0:4d:92:d6:
3e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:12:D1:13:15:B7:2B:7D:27:59:E9:D5:61:EA:2F:92:D5:7C:BD:06
X509v3 Authority Key Identifier:
keyid:12:50:C1:7E:E2:3E:F7:F3:5C:A4:C7:9D:1D:7A:DC:87:C7:81:08:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ElDBfuI-9_NcpMedHXrch8eBCGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d1350b-1b5d-420e-9c61-050cb256367a/1/RxLRExW3K30nWenVYeovktV8vQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d1350b-1b5d-420e-9c61-050cb256367a/1/ElDBfuI-9_NcpMedHXrch8eBCGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.54.0/24
Signature Algorithm: sha256WithRSAEncryption
43:74:9f:91:65:e1:a5:e1:25:30:13:fc:76:2a:7a:5f:b6:1f:
49:dc:87:d9:75:30:ec:40:c1:d2:f4:50:b9:76:a8:a3:6b:88:
99:91:81:c7:08:cf:08:5e:ef:4d:f1:b1:d3:b0:e7:2a:fd:eb:
f9:4e:9e:b1:94:25:40:25:14:5a:6c:13:99:82:78:a8:79:0c:
2a:55:35:87:fd:e2:44:19:2a:3c:46:85:0a:a5:82:45:c1:cd:
bc:c3:c9:ee:37:bf:08:a1:ba:69:04:b8:60:c0:bc:2a:e8:22:
5d:d0:0d:b8:97:d6:1d:98:9f:1c:6f:b5:21:6b:1d:04:57:cc:
4c:30:84:1f:68:37:1b:0e:e5:db:f1:e1:9f:cd:0b:89:ea:54:
51:bc:31:00:7b:00:66:57:36:37:a0:bb:a9:ed:cf:59:98:9d:
48:94:31:b3:63:3e:a6:3a:26:c7:41:74:b3:45:df:dd:61:e8:
08:ba:e0:7a:f2:d5:74:69:4c:f5:81:5b:34:1c:0b:c5:b1:d1:
77:e2:11:2d:de:53:1e:0d:2c:7a:77:83:e2:11:69:cb:3b:be:
38:4a:fa:7e:de:b7:33:46:c7:32:cf:c7:2a:1e:76:3e:75:c8:
df:09:57:42:15:90:ac:37:71:9c:83:27:dd:e4:da:52:e9:ac:
3d:f2:4a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:39 2023 by rpki-client on console-ams.rpki-client.org