Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/JeWLpTm_X2wMfkcBZt9pkDbS8iM.roa
File: JeWLpTm_X2wMfkcBZt9pkDbS8iM.roa (raw, json)
Hash identifier: uI49KGNGVC0hYBitl0xthDYqAMYz6XjgWTxfBeI7zIE=
Subject key identifier: 25:E5:8B:A5:39:BF:5F:6C:0C:7E:47:01:66:DF:69:90:36:D2:F2:23
Certificate issuer: /CN=167ba56cdc8c97662c1b57d901a1f86588adf2ae
Certificate serial: D3A7EA
Authority key identifier: 16:7B:A5:6C:DC:8C:97:66:2C:1B:57:D9:01:A1:F8:65:88:AD:F2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnulbNyMl2YsG1fZAaH4ZYit8q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/JeWLpTm_X2wMfkcBZt9pkDbS8iM.roa
Signing time: Thu 10 Feb 2022 05:36:02 +0000
ROA not before: Thu 10 Feb 2022 05:36:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 62.3.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13871082 (0xd3a7ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=167ba56cdc8c97662c1b57d901a1f86588adf2ae
Validity
Not Before: Feb 10 05:36:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25e58ba539bf5f6c0c7e470166df699036d2f223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0e:56:2e:b0:a6:9f:76:df:91:18:00:35:02:
a6:49:c1:74:a6:9d:84:e4:ab:1b:30:e9:73:77:a4:
81:aa:83:3d:75:ae:82:2d:1d:05:fc:56:a9:be:a5:
33:8a:a0:ed:00:ff:c8:6e:ef:f1:a2:1d:1d:25:4e:
f9:47:67:06:58:08:fd:76:c7:4f:82:8d:11:d5:91:
1b:ae:f6:13:1a:0a:45:f2:e2:cb:77:f9:ab:b5:8b:
76:98:3f:1f:ac:1c:0f:fc:c9:77:54:ba:76:49:20:
84:6b:5a:1f:e6:c8:18:d5:26:99:ca:a2:48:82:c0:
3f:5b:4a:a3:20:c8:b1:a4:5d:97:97:ec:fc:37:e2:
c5:e8:4e:e5:89:6a:68:7e:d1:1a:42:72:87:ca:ff:
02:80:87:ba:54:61:aa:76:04:64:43:7d:9f:3e:84:
c1:11:53:e3:e3:24:eb:8b:df:5d:c6:d2:16:04:2f:
34:c3:25:9f:c2:1d:2e:9d:46:76:4a:cc:37:6d:60:
11:08:b6:45:82:b0:6b:2e:7c:d4:c1:e6:45:73:c8:
bb:19:84:01:33:89:0a:03:f0:8e:30:b4:05:47:ff:
b8:70:6e:c4:6b:15:c1:ca:90:89:6c:c3:6e:09:b2:
33:b1:66:03:ea:cd:e5:03:ae:c2:20:89:6f:be:77:
f5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E5:8B:A5:39:BF:5F:6C:0C:7E:47:01:66:DF:69:90:36:D2:F2:23
X509v3 Authority Key Identifier:
keyid:16:7B:A5:6C:DC:8C:97:66:2C:1B:57:D9:01:A1:F8:65:88:AD:F2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnulbNyMl2YsG1fZAaH4ZYit8q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/JeWLpTm_X2wMfkcBZt9pkDbS8iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5a1292-d0ae-4a4b-87bd-e4bb63636cba/1/FnulbNyMl2YsG1fZAaH4ZYit8q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.0.0/24
Signature Algorithm: sha256WithRSAEncryption
06:38:ce:57:c3:1f:f6:ea:1e:ae:43:23:e8:16:5c:0f:a0:4d:
09:2c:9f:0b:2f:00:da:1c:21:34:02:b9:83:af:ea:0b:be:70:
28:62:1e:39:48:70:bb:e3:85:c1:65:f0:b4:f7:c1:8f:80:72:
f8:fe:6f:01:11:d9:fc:cf:7b:55:61:23:7f:dd:d3:77:c6:23:
43:6f:f3:b1:d7:9d:95:4e:7c:80:c8:37:bd:b8:91:9d:49:a1:
97:9d:1a:ef:b5:06:ec:cf:cd:0d:e9:38:16:28:93:46:9b:4f:
9f:94:99:cd:44:f8:72:3b:34:c9:21:9b:7f:12:07:86:2a:26:
5e:e6:93:fa:4b:41:7c:f7:5d:9a:dc:a6:b2:3d:90:41:81:fb:
37:93:4c:05:0b:f0:9b:be:e1:d1:59:e2:26:2c:7d:21:65:58:
49:ab:00:aa:e7:7e:ed:34:09:f6:fd:d5:48:3c:ae:d7:3f:1e:
b7:d1:6b:a1:dc:72:a0:7e:30:58:08:32:aa:1b:b2:e1:d7:75:
15:1f:37:9d:a5:fc:38:41:6d:e5:fe:8f:1c:8c:a0:6a:97:76:
c8:90:e3:64:c2:8e:7f:51:52:ce:ab:97:96:63:b8:80:2f:19:
3c:4d:76:47:bb:d9:0a:86:48:d6:ee:a9:2a:6c:53:5c:b0:56:
a3:71:d8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:06 2023 by rpki-client on console-fra.rpki-client.org