Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/IlMrmpJDkE7WybyyvjAfKPq0ENU.roa
File: IlMrmpJDkE7WybyyvjAfKPq0ENU.roa (raw, json)
Hash identifier: FhrDL3fIVZ//9eis8Jq1cX/gKFzy6JV9QGCS49VC3DE=
Subject key identifier: 22:53:2B:9A:92:43:90:4E:D6:C9:BC:B2:BE:30:1F:28:FA:B4:10:D5
Certificate issuer: /CN=167ba56cdc8c97662c1b57d901a1f86588adf2ae
Certificate serial: CE627C
Authority key identifier: 16:7B:A5:6C:DC:8C:97:66:2C:1B:57:D9:01:A1:F8:65:88:AD:F2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnulbNyMl2YsG1fZAaH4ZYit8q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/IlMrmpJDkE7WybyyvjAfKPq0ENU.roa
Signing time: Tue 08 Feb 2022 08:48:50 +0000
ROA not before: Tue 08 Feb 2022 08:48:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 62.3.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13525628 (0xce627c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=167ba56cdc8c97662c1b57d901a1f86588adf2ae
Validity
Not Before: Feb 8 08:48:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22532b9a9243904ed6c9bcb2be301f28fab410d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3a:da:8c:b1:c3:34:09:89:c2:fa:3a:af:d2:
9d:4d:40:e8:75:0f:83:78:68:22:a8:08:01:ad:b9:
94:54:8d:12:99:b8:8c:85:5d:b5:41:83:30:63:b4:
46:4d:2a:7f:2d:9b:c0:ef:39:7e:b1:30:73:81:ff:
c0:ad:56:0b:a5:ec:15:c2:8a:57:b7:e0:99:cc:57:
6b:66:c3:79:55:d2:8a:e2:d4:a1:22:be:33:3c:28:
52:48:c4:9b:e8:17:b3:67:d6:b2:a4:e9:e8:77:b3:
51:da:0b:4e:c9:48:19:74:f6:a3:c5:69:a6:77:11:
c1:de:18:46:7b:71:28:6d:bf:65:76:3f:a1:cb:eb:
44:3c:1a:60:32:22:a3:91:fd:ad:a3:6f:85:2f:1f:
d5:f6:49:89:1b:56:fd:5c:17:0d:f5:22:df:5a:5e:
31:9b:2e:77:8e:e3:96:60:83:b8:38:78:d2:10:1f:
3a:b0:97:28:1a:5a:3e:1d:22:15:99:61:85:40:64:
58:67:55:82:6d:7e:fb:12:69:f1:ad:d4:66:0c:7a:
c1:05:dc:66:a6:24:a2:9d:02:f9:fd:e5:1e:cd:99:
34:5f:5d:a8:35:ec:d2:59:3a:67:28:ba:7f:a0:a7:
7b:a2:fa:20:64:af:83:47:8a:9a:df:f8:b5:4a:9c:
53:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:53:2B:9A:92:43:90:4E:D6:C9:BC:B2:BE:30:1F:28:FA:B4:10:D5
X509v3 Authority Key Identifier:
keyid:16:7B:A5:6C:DC:8C:97:66:2C:1B:57:D9:01:A1:F8:65:88:AD:F2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnulbNyMl2YsG1fZAaH4ZYit8q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/IlMrmpJDkE7WybyyvjAfKPq0ENU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/FnulbNyMl2YsG1fZAaH4ZYit8q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e6:25:4c:4c:d8:f3:4f:03:36:9c:e5:26:e8:ba:be:a0:1f:
8c:a0:9e:0d:61:56:24:c5:d7:d4:b7:53:06:04:62:82:d2:1c:
1d:4b:b6:a5:3c:ef:fb:4c:78:5e:e3:f0:3c:79:6c:7a:c9:33:
15:70:2d:22:9b:22:d6:0d:90:84:bd:33:0f:45:04:53:f5:3c:
94:34:a8:88:ae:e9:97:c6:40:ae:7d:5e:42:f2:bd:25:0a:ea:
e5:55:d9:3c:c1:45:9b:5b:05:d8:ea:13:2d:dd:0e:57:cc:10:
9a:04:fe:c9:7e:28:a7:77:0d:be:85:bc:33:0f:b7:58:54:a7:
d8:97:66:36:6b:0b:40:cd:d0:19:5f:af:4a:6b:77:2f:0a:c4:
1b:e1:a4:3e:78:44:84:2a:13:ac:94:ac:c7:00:da:c6:b1:6f:
6e:68:58:8f:38:c9:8d:a1:ab:55:d0:5e:5a:41:7a:d0:05:66:
7b:22:35:37:5b:12:9a:b2:22:0e:ac:bb:14:7c:2c:45:60:ec:
e1:a5:e6:e9:67:2c:a4:3a:ae:54:2d:f8:d3:a4:ba:b1:5b:d1:
ee:94:f5:6e:86:00:75:a9:68:d3:0c:f5:50:3c:aa:ab:8d:85:
cb:97:b9:c2:9d:e2:89:a5:79:0c:95:23:55:81:40:bd:5a:78:
b3:74:f1:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:06 2023 by rpki-client on console-fra.rpki-client.org