Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/3mIKjHPsTf_AOtWH9vtwnEVYDIA.roa
File: 3mIKjHPsTf_AOtWH9vtwnEVYDIA.roa (raw, json)
Hash identifier: YQ8SulDwhHybGn7M/+hXLON2h+ajaPMFi3NcDH4HDPU=
Subject key identifier: DE:62:0A:8C:73:EC:4D:FF:C0:3A:D5:87:F6:FB:70:9C:45:58:0C:80
Certificate issuer: /CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Certificate serial: 01039112
Authority key identifier: DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/3mIKjHPsTf_AOtWH9vtwnEVYDIA.roa
Signing time: Mon 07 Feb 2022 00:56:24 +0000
ROA not before: Mon 07 Feb 2022 00:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58343
IP address blocks: 62.201.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17010962 (0x1039112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Validity
Not Before: Feb 7 00:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de620a8c73ec4dffc03ad587f6fb709c45580c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:df:a6:6c:55:c2:49:90:e1:90:f7:9c:f5:36:
00:1d:04:b3:da:81:e0:c2:bb:d4:10:80:46:83:11:
dc:08:83:5e:fb:cc:63:b1:75:ea:79:58:6f:be:d9:
d5:a2:00:9e:67:7a:0f:14:e2:86:18:f0:ac:38:71:
58:a2:43:2e:e1:71:fb:39:15:94:1e:bd:25:9d:96:
2d:df:a9:7a:ae:92:51:cb:96:ce:39:4c:8c:cb:cf:
37:20:3a:26:ff:91:fa:c7:49:cd:89:af:16:f7:77:
fd:89:a7:8d:3d:3c:fc:79:5f:2c:cf:6c:44:f0:71:
f8:f2:36:04:55:75:8e:b1:59:86:1f:fe:bf:26:2e:
43:b5:63:72:61:46:13:ad:68:58:70:ab:99:52:41:
db:b2:b5:09:76:7c:8a:14:07:23:b6:aa:40:eb:fe:
15:6e:10:3c:eb:0d:66:c5:1d:a7:6e:72:4d:97:7a:
19:3e:86:2c:47:b1:47:ef:75:9d:e7:fd:28:c2:ae:
97:ed:d4:94:f5:78:2c:b3:e7:c0:a6:19:a2:12:13:
a5:af:9c:76:6e:ae:29:46:78:ef:c5:1c:87:38:66:
b4:e0:b5:f0:b6:46:4d:51:7e:aa:28:f7:d6:fc:6c:
f4:79:a8:04:3b:be:ad:d3:c2:f0:5f:ec:23:0c:ba:
0b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:62:0A:8C:73:EC:4D:FF:C0:3A:D5:87:F6:FB:70:9C:45:58:0C:80
X509v3 Authority Key Identifier:
keyid:DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/3mIKjHPsTf_AOtWH9vtwnEVYDIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/35xk4XC38lXXyjADXWUyyJV-sWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.42.0/24
Signature Algorithm: sha256WithRSAEncryption
85:b6:41:b1:d0:f9:0a:8f:b9:67:eb:f7:e5:8f:27:ab:40:c0:
2b:43:a8:de:7c:79:d5:89:c4:cb:41:4e:c1:22:bf:78:fe:df:
df:a2:e6:65:a5:7a:44:88:61:07:7f:ef:30:90:73:ea:74:9d:
0c:5b:e9:ae:8b:c1:d1:2a:84:f6:96:f3:64:48:8a:a4:22:bf:
66:63:6a:52:b6:cd:a5:19:92:5b:6f:7c:66:ff:0a:30:11:ff:
c9:f8:e1:5c:e7:f3:3c:be:a0:5a:eb:46:20:4c:39:73:63:12:
12:ba:ba:d0:39:79:0d:2b:e6:87:20:73:00:f1:64:2a:3b:39:
d4:e2:e2:af:cc:86:44:41:c0:30:49:46:b6:68:84:3c:d2:4b:
d6:43:38:33:91:42:a3:1e:9c:96:89:81:5e:4e:9a:69:10:6e:
dd:e4:54:a8:29:6a:6d:f7:81:14:76:f1:24:d5:14:0f:10:bc:
c7:61:6b:73:12:15:ae:f9:b1:88:e1:9b:6d:63:f2:0f:64:af:
2e:de:07:1f:b3:52:5a:e1:8e:e7:2c:be:01:d9:05:ba:1c:71:
6d:12:67:7f:6d:0e:2d:74:bf:eb:38:f9:c7:a6:48:58:d0:e7:
b8:75:07:6e:69:ad:cb:f7:2f:52:6a:98:d3:7d:11:bd:d1:27:
a5:d7:37:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:02 2023 by rpki-client on console-fra.rpki-client.org