Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/_LT_LRb4IuBmujPKv3QTH72ejGk.roa
File: _LT_LRb4IuBmujPKv3QTH72ejGk.roa (raw, json)
Hash identifier: 6KFyzQszzWhdpxrQz9XCEASjmcXA+Lmsev3eA35Em3Y=
Subject key identifier: FC:B4:FF:2D:16:F8:22:E0:66:BA:33:CA:BF:74:13:1F:BD:9E:8C:69
Certificate issuer: /CN=3e0be8e48dba07df21711745b869e3911ce98e20
Certificate serial: 0174AB
Authority key identifier: 3E:0B:E8:E4:8D:BA:07:DF:21:71:17:45:B8:69:E3:91:1C:E9:8E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pgvo5I26B98hcRdFuGnjkRzpjiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/_LT_LRb4IuBmujPKv3QTH72ejGk.roa
Signing time: Tue 01 Mar 2022 03:50:34 +0000
ROA not before: Tue 01 Mar 2022 03:50:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5588
IP address blocks: 62.29.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95403 (0x174ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e0be8e48dba07df21711745b869e3911ce98e20
Validity
Not Before: Mar 1 03:50:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcb4ff2d16f822e066ba33cabf74131fbd9e8c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b2:81:58:e3:cb:65:e3:28:00:2b:81:31:f9:
ba:b1:14:e3:16:87:be:e6:c8:74:a9:86:90:82:36:
d3:9d:d7:5e:de:d1:4b:d6:d8:b1:7e:78:47:3a:e5:
ea:54:31:d2:a0:5a:6a:4b:7b:19:1e:e6:bd:1f:e2:
59:75:30:d9:2d:a0:45:54:af:d5:6e:1d:66:41:8e:
ac:8d:af:44:4e:91:db:29:c4:d6:2d:0b:d5:72:b2:
05:a3:36:25:ac:19:3e:7f:04:61:45:9a:d1:2b:c3:
f3:dc:4c:fa:d8:56:61:8a:95:d4:1b:7b:ac:b4:8a:
13:d3:82:e0:ca:f4:9a:f5:df:91:c7:f6:ed:36:a1:
28:be:ec:f3:98:de:ea:6a:28:51:28:8c:7b:5b:d6:
48:4f:5f:53:d4:e4:97:f2:6c:01:c7:7c:0e:c4:bc:
44:1c:9b:2b:c7:e8:08:5d:ff:a7:2f:50:35:d1:f5:
0d:b9:82:b1:e4:03:0f:3f:5b:d2:59:d1:6b:f0:b5:
31:86:9f:67:b7:33:10:12:b9:59:50:2d:e2:39:38:
8f:32:51:4d:bb:9e:8d:dc:83:21:0b:98:a8:04:5c:
db:bf:ca:75:84:15:31:07:73:29:bb:4d:12:a7:fa:
a2:f4:f9:7e:ba:88:27:4e:c8:b7:8a:30:08:19:e9:
1a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B4:FF:2D:16:F8:22:E0:66:BA:33:CA:BF:74:13:1F:BD:9E:8C:69
X509v3 Authority Key Identifier:
keyid:3E:0B:E8:E4:8D:BA:07:DF:21:71:17:45:B8:69:E3:91:1C:E9:8E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgvo5I26B98hcRdFuGnjkRzpjiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/_LT_LRb4IuBmujPKv3QTH72ejGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/95bce9-1e8e-41c1-89f8-20f9f0dbf458/1/Pgvo5I26B98hcRdFuGnjkRzpjiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.29.128.0/17
Signature Algorithm: sha256WithRSAEncryption
83:17:b8:33:09:eb:05:72:b1:fe:7a:73:cb:48:cd:af:9e:90:
22:b3:1c:14:b2:31:c7:03:86:fa:5b:84:77:12:ec:a9:8a:36:
20:19:ec:01:ce:b8:e8:67:27:8b:d4:e7:01:28:cd:30:74:45:
4f:e0:e0:b4:1b:2d:a0:bd:b3:5f:1d:80:32:d8:b0:09:a0:eb:
81:67:19:92:b0:6e:ef:1d:d6:e6:a7:71:a3:71:16:f5:61:7a:
36:3d:f7:07:5e:e8:27:34:6f:ef:cf:37:99:01:ce:0d:ee:f7:
95:b6:5f:62:64:ad:13:3f:ab:8b:57:bb:cd:21:63:f5:74:57:
18:cf:fa:22:e5:8a:c7:ba:3a:05:4a:c0:de:c2:f5:5a:84:67:
65:6a:9a:5d:6e:08:42:c6:88:09:e1:49:b5:f8:1b:0d:bc:0a:
97:f4:3e:c4:d1:a3:a8:b6:db:be:ec:df:21:41:fc:86:17:c1:
e5:08:94:d8:a8:a4:02:23:36:62:71:7a:bb:71:7b:11:26:9a:
ff:8d:b2:53:8d:95:36:e2:d2:48:f8:ba:d4:b6:29:0a:08:67:
73:3f:c4:50:08:37:23:2f:a7:f2:e9:92:a7:e8:22:86:58:af:
e2:e4:ed:41:69:b3:e0:54:78:c3:f0:e6:12:0d:d2:80:89:da:
e0:5b:b4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:18 2024 by rpki-client on console-ams.rpki-client.org