Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/v0De8TxJtE3rkY8-eSel2QaFB-Q.roa
File: v0De8TxJtE3rkY8-eSel2QaFB-Q.roa (raw, json)
Hash identifier: cyRi3iEe1Ccwth9uOnlgDxK17qxdfc6TxggpYaRD7CA=
Subject key identifier: BF:40:DE:F1:3C:49:B4:4D:EB:91:8F:3E:79:27:A5:D9:06:85:07:E4
Certificate issuer: /CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Certificate serial: 010F3982
Authority key identifier: DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/v0De8TxJtE3rkY8-eSel2QaFB-Q.roa
Signing time: Tue 08 Feb 2022 16:52:22 +0000
ROA not before: Tue 08 Feb 2022 16:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 62.201.43.0/24 maxlen: 24
62.201.44.0/22 maxlen: 22
62.201.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17774978 (0x10f3982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Validity
Not Before: Feb 8 16:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf40def13c49b44deb918f3e7927a5d9068507e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:07:9d:b2:ac:a7:3a:3a:a6:06:33:56:9a:ff:
72:a3:e9:e7:d9:88:fc:6d:ae:ea:b8:04:b6:a8:e5:
21:4b:73:a2:b7:1f:ba:c7:ce:5c:42:2c:c1:1f:7d:
26:76:0f:45:ec:57:0f:f1:93:b1:fe:25:a2:b2:56:
fb:f3:8d:5f:7a:3f:0d:d0:8b:cc:77:ab:c4:e5:70:
60:22:5c:2b:72:90:68:b9:60:c6:49:8b:76:d9:e1:
1a:e0:9f:75:1c:1e:e4:ca:b0:52:c8:e7:4d:c7:8b:
b7:ec:3d:b6:04:b2:66:1f:54:e5:e0:f3:38:52:c3:
87:1f:39:d6:31:a8:80:ab:d1:9f:96:1e:2c:f4:ee:
8c:1e:b8:45:a8:f4:34:5d:c2:4a:51:65:3d:e0:52:
b7:e7:2e:86:ce:ff:10:5c:f8:d1:f2:b8:d8:f4:8d:
5b:c2:1c:2c:42:36:a8:a7:54:19:21:9d:37:4c:22:
be:57:27:ec:b0:56:d8:b1:5d:f6:2b:a7:1e:ca:77:
17:35:0a:c8:08:08:86:1d:5d:4e:8c:8a:ac:13:c7:
f0:ff:54:2a:ce:e5:23:4c:65:69:58:57:b4:d8:d8:
d8:c2:c9:77:87:89:c5:49:78:f5:bc:db:d9:bf:fd:
da:c1:ec:d9:ea:18:10:00:45:a3:5a:79:d9:c0:39:
7f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:40:DE:F1:3C:49:B4:4D:EB:91:8F:3E:79:27:A5:D9:06:85:07:E4
X509v3 Authority Key Identifier:
keyid:DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/v0De8TxJtE3rkY8-eSel2QaFB-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/35xk4XC38lXXyjADXWUyyJV-sWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.43.0-62.201.63.255
Signature Algorithm: sha256WithRSAEncryption
26:81:24:41:49:10:76:83:a6:7f:06:bc:ad:bf:88:57:56:d7:
2c:7d:5a:6a:fd:db:12:f6:4e:94:42:5d:e0:90:b5:68:7c:3d:
e6:be:b3:38:be:27:2f:f2:df:b7:ef:aa:a9:fc:1c:65:00:59:
bf:03:be:92:d0:75:ba:63:51:b4:ff:4a:26:c0:1a:44:8c:61:
5e:ad:76:75:19:82:20:30:1e:d8:68:2e:b1:df:ba:29:0c:b1:
3d:f9:8f:9a:61:1b:b9:3d:38:c4:2f:7f:57:88:0b:93:4c:7b:
34:b6:7f:47:b7:27:39:84:8e:a0:7b:10:c1:81:b8:36:da:41:
9f:2c:94:34:57:03:e6:71:6c:6e:e0:a1:7f:99:4b:b5:87:03:
a7:c4:75:82:7c:d4:22:c5:6d:09:72:7e:3e:6b:e4:83:29:50:
2b:e2:b7:1a:a1:d2:10:6c:30:91:ad:20:ea:2b:30:23:8e:c6:
a4:50:a3:27:b6:e7:46:5b:a1:54:dd:e4:94:78:dd:f2:1a:00:
9e:2d:34:d7:57:37:64:ad:83:3b:6b:ae:2b:92:57:38:44:7d:
29:c6:2d:a3:99:ef:80:87:e6:c2:a2:41:2b:a4:2c:06:fc:0d:
ac:23:21:ae:e5:91:0c:78:b3:4b:7a:0b:07:2a:16:ac:ea:36:
d1:4a:32:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:53 2023 by rpki-client on console-ams.rpki-client.org