Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/7Oqb7nsC2hxMPGEjU_RbG3xenB8.roa
File: 7Oqb7nsC2hxMPGEjU_RbG3xenB8.roa (raw, json)
Hash identifier: JcW7EiOb40uHPcF2LwCBqoKwxeonVN/VIaLnEitD/YY=
Subject key identifier: EC:EA:9B:EE:7B:02:DA:1C:4C:3C:61:23:53:F4:5B:1B:7C:5E:9C:1F
Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892
Certificate serial: 3808B996
Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/7Oqb7nsC2hxMPGEjU_RbG3xenB8.roa
Signing time: Sat 01 Jan 2022 05:53:23 +0000
ROA not before: Sat 01 Jan 2022 05:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 62.240.232.0/24 maxlen: 24
2001:a70:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940095894 (0x3808b996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892
Validity
Not Before: Jan 1 05:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecea9bee7b02da1c4c3c612353f45b1b7c5e9c1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4f:a7:f1:12:6d:a5:07:d9:64:50:47:fd:f8:
31:25:e5:75:37:ff:e6:c6:5b:69:23:30:33:93:43:
10:74:f8:6b:e4:6b:81:a8:7d:28:b4:68:b8:28:2d:
07:0e:77:bc:cf:a0:57:b6:e4:59:2e:25:06:87:37:
ac:ef:f1:a4:39:68:c0:76:6e:d1:78:81:f9:c6:b7:
34:4a:17:25:d7:8d:9f:2c:4c:3e:f5:bc:65:5e:20:
45:4a:3d:b2:ad:1f:32:87:f3:27:a3:2e:f7:8c:67:
fb:b3:87:a0:d5:0b:1c:ad:e4:0f:28:6f:b6:33:31:
e0:ac:3a:de:95:33:c9:f7:fc:07:fd:db:b6:ad:f3:
0a:c0:ab:18:b1:f8:4d:c0:2d:24:e2:b3:c5:d6:4f:
1c:85:56:7e:ec:93:23:ab:3d:ee:84:19:32:06:5d:
ab:a1:1b:2a:04:8c:54:97:1a:dc:06:a9:5b:de:1e:
13:3c:ae:8e:6b:93:93:73:22:ba:cd:c5:5e:15:ae:
56:d9:38:dc:c3:dc:25:86:be:dd:96:d4:ee:ff:bf:
d2:f2:bb:f9:b8:fe:95:5b:64:95:2b:3f:b3:60:03:
72:b3:93:4a:33:62:ca:a0:7d:b7:06:ff:95:60:70:
e0:35:72:be:64:18:48:39:8a:3c:55:e2:f7:6b:6c:
b6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EA:9B:EE:7B:02:DA:1C:4C:3C:61:23:53:F4:5B:1B:7C:5E:9C:1F
X509v3 Authority Key Identifier:
keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/7Oqb7nsC2hxMPGEjU_RbG3xenB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.240.232.0/24
IPv6:
2001:a70:100::/48
Signature Algorithm: sha256WithRSAEncryption
9a:10:3d:34:58:26:da:14:1c:9a:62:89:f2:da:c6:ef:dc:4d:
17:95:88:06:8e:34:33:14:89:fd:4e:a1:26:e0:59:2c:50:a1:
f9:fc:6a:ff:50:3a:bb:e1:1a:78:f9:98:18:fb:5f:4e:1b:84:
73:56:0e:c3:5f:ee:d9:67:3f:9c:1a:34:0d:ed:3b:d5:65:a8:
a0:77:15:d2:93:eb:49:14:c8:97:1e:6a:44:10:87:aa:c6:6d:
ff:ea:7f:18:fe:49:13:d4:30:14:19:a5:50:f3:db:cb:1e:d8:
1c:09:38:74:44:96:44:36:9d:09:4b:ab:ce:e8:87:9a:6c:8b:
d9:a6:bc:ac:cb:dd:1b:fd:b6:ff:be:7f:c6:50:fd:00:ff:bb:
58:e7:a0:0a:1b:c9:e8:d8:4d:40:1a:10:65:e9:7f:fc:1a:a6:
97:3c:68:5b:19:03:43:40:3e:d5:1b:8c:7f:34:10:28:ea:e5:
28:dc:7b:bb:cd:53:cc:1d:51:9e:42:6c:18:b8:0b:b7:ff:8c:
80:2f:53:a6:10:2f:c8:fe:03:3e:2f:f9:74:25:03:2c:83:06:
a7:cf:06:07:98:2c:ff:71:ea:98:44:d0:dd:e7:c9:5b:9e:23:
10:82:8f:36:80:e2:52:2e:8a:c3:84:37:68:22:ac:8d:49:c4:
47:0b:bd:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:11 2023 by rpki-client on console-fra.rpki-client.org