Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/0ZcwQCwQ15tnFOdQ5lzsHP_rNmg.roa
File: 0ZcwQCwQ15tnFOdQ5lzsHP_rNmg.roa (raw, json)
Hash identifier: +WXUzxPvuHAOjEGXMTitzbMkB/9wRy9kkwW7HMbk4Po=
Subject key identifier: D1:97:30:40:2C:10:D7:9B:67:14:E7:50:E6:5C:EC:1C:FF:EB:36:68
Certificate issuer: /CN=3e0be8e48dba07df21711745b869e3911ce98e20
Certificate serial: 024527
Authority key identifier: 3E:0B:E8:E4:8D:BA:07:DF:21:71:17:45:B8:69:E3:91:1C:E9:8E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pgvo5I26B98hcRdFuGnjkRzpjiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/0ZcwQCwQ15tnFOdQ5lzsHP_rNmg.roa
Signing time: Tue 01 Mar 2022 03:50:34 +0000
ROA not before: Tue 01 Mar 2022 03:50:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12912
IP address blocks: 62.29.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148775 (0x24527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e0be8e48dba07df21711745b869e3911ce98e20
Validity
Not Before: Mar 1 03:50:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d19730402c10d79b6714e750e65cec1cffeb3668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7f:c3:82:c1:d2:7e:8c:d2:29:54:26:45:dd:
98:d2:97:89:cc:b6:56:c8:87:dc:23:be:09:dc:a2:
86:ad:69:a4:ac:14:c2:de:60:29:21:c2:2a:39:26:
24:e1:f9:2a:79:97:4d:f3:03:3a:89:b7:d3:71:b9:
6f:9a:ca:08:b3:cc:de:9f:a9:ee:d7:c8:24:99:3b:
6d:06:99:a9:5f:7c:37:f1:ab:1d:7a:ca:85:80:3d:
75:c6:c3:ee:62:b8:db:50:5d:f5:90:89:86:b4:32:
1d:71:54:ba:e1:72:7c:46:88:0e:c6:07:03:a2:7a:
25:e6:3f:0d:8c:57:2c:e5:2c:a8:24:eb:f2:1b:18:
82:c6:00:6b:91:25:aa:bb:0c:3a:81:ea:48:91:d7:
a0:fa:51:de:3c:4f:61:ef:55:18:65:69:dd:fa:73:
59:56:7d:06:db:fa:3e:99:dd:6f:0d:42:f3:cf:ce:
53:a3:43:e6:cc:52:d1:55:52:f6:ee:38:71:93:00:
73:43:8e:51:9d:b9:f6:da:85:ad:9f:93:d6:cd:fd:
2f:ed:49:4b:9a:75:80:25:d6:db:cd:92:11:2d:25:
a8:fc:0d:4c:da:b8:99:01:65:30:3a:35:6b:c1:6d:
4f:cb:a7:6b:dc:0b:f8:34:d2:38:f0:f1:53:6e:01:
39:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:97:30:40:2C:10:D7:9B:67:14:E7:50:E6:5C:EC:1C:FF:EB:36:68
X509v3 Authority Key Identifier:
keyid:3E:0B:E8:E4:8D:BA:07:DF:21:71:17:45:B8:69:E3:91:1C:E9:8E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgvo5I26B98hcRdFuGnjkRzpjiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/0ZcwQCwQ15tnFOdQ5lzsHP_rNmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/Pgvo5I26B98hcRdFuGnjkRzpjiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.29.128.0/17
Signature Algorithm: sha256WithRSAEncryption
77:b2:59:3b:10:56:07:5d:04:48:66:03:23:82:5a:1b:3f:2e:
79:2e:80:e4:ba:ff:07:3b:91:ca:2e:18:fb:c3:5c:be:30:78:
8c:88:a4:a5:48:81:d7:88:d5:65:31:2d:36:bb:e2:e6:e8:37:
a5:58:d2:c7:51:20:38:93:7f:d4:72:a8:bd:b8:05:5b:3d:71:
78:96:a7:90:3e:36:4f:ce:dd:6d:80:4c:8b:cf:52:34:64:d9:
f6:e1:4c:ac:35:70:b7:ed:df:57:d8:67:53:b4:2e:d2:a4:55:
55:9f:4e:7c:63:0d:13:61:eb:1c:df:3a:74:ee:8d:21:56:91:
d8:99:40:36:c4:e1:46:32:c9:12:95:92:c1:d2:9b:4e:e4:85:
b1:2d:87:c3:95:2c:d7:72:83:21:e3:f6:a6:4d:3c:9e:e0:b4:
f3:18:4d:ac:cc:af:d1:84:04:75:db:4b:9c:b8:1b:a9:24:1b:
de:ad:5f:30:dd:7a:45:a9:b5:f8:39:36:c5:1a:32:13:dc:c7:
40:ed:35:c9:fe:56:14:f9:13:17:36:54:35:b0:9c:4c:84:c6:
90:97:0c:10:4f:fa:2e:e7:f9:cb:4d:c8:5a:f3:98:67:5b:3d:
57:ee:1a:bc:c9:71:f0:0d:43:37:12:a9:e6:1d:7f:4e:72:85:
18:bb:4e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:18 2024 by rpki-client on console-ams.rpki-client.org