Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/jCZ3tYG_uukUFCRmAnpyCFQss2k.roa
File: jCZ3tYG_uukUFCRmAnpyCFQss2k.roa (raw, json)
Hash identifier: Oa2DrFtjwJbRabmybzL/Dqlom/ejdbU3MDNA8tsxPMU=
Subject key identifier: 8C:26:77:B5:81:BF:BA:E9:14:14:24:66:02:7A:72:08:54:2C:B3:69
Certificate issuer: /CN=0c5be6056eb0c3650b8fe21e2d726c1b83ec82b3
Certificate serial: 383BE5E5
Authority key identifier: 0C:5B:E6:05:6E:B0:C3:65:0B:8F:E2:1E:2D:72:6C:1B:83:EC:82:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFvmBW6ww2ULj-IeLXJsG4PsgrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/jCZ3tYG_uukUFCRmAnpyCFQss2k.roa
Signing time: Sat 01 Jan 2022 06:03:25 +0000
ROA not before: Sat 01 Jan 2022 06:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8495
IP address blocks: 62.116.152.0/23 maxlen: 24
62.116.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943449573 (0x383be5e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5be6056eb0c3650b8fe21e2d726c1b83ec82b3
Validity
Not Before: Jan 1 06:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c2677b581bfbae914142466027a7208542cb369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:e6:9f:ad:35:58:d1:d6:d2:c7:ca:5d:a9:
85:06:5b:66:bb:e6:d0:e8:88:ee:3e:6c:13:d7:51:
5e:53:04:50:45:d3:7e:e7:e8:eb:6a:5d:66:51:22:
0c:c9:e6:9f:d9:e2:20:a9:8f:e0:52:b7:75:03:66:
98:ed:c3:b0:d5:55:18:e8:f6:19:f4:57:04:5a:b4:
68:ae:00:1b:da:7c:5c:b2:94:9c:3f:83:b0:98:d8:
0f:61:a8:59:10:f5:64:da:09:a1:4d:1e:61:cc:da:
6c:37:ae:ac:fe:75:bf:1d:b2:38:ff:fc:e9:64:70:
ad:c9:98:15:f2:12:5d:2b:ff:f8:cc:46:12:65:ec:
47:ed:b7:01:5a:4d:22:f9:f7:4e:1b:95:8c:4b:e8:
e2:7e:c9:37:e2:c2:d4:f7:30:f3:7d:8e:aa:65:fe:
d0:18:3e:30:cb:10:60:db:b6:cc:1b:9a:fa:95:5c:
25:d5:c6:f6:2f:f7:45:88:cd:e1:5a:6a:84:aa:13:
e0:f5:65:18:d4:73:27:df:c3:9e:30:2a:15:d0:b1:
f1:30:0a:5b:55:30:a9:2a:fc:fb:4c:2d:c0:69:7f:
39:e1:02:72:41:aa:59:d3:51:6c:dd:3f:67:61:c2:
d6:01:d9:3f:fc:5b:d8:00:1d:8f:73:f6:d2:c4:8e:
17:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:26:77:B5:81:BF:BA:E9:14:14:24:66:02:7A:72:08:54:2C:B3:69
X509v3 Authority Key Identifier:
keyid:0C:5B:E6:05:6E:B0:C3:65:0B:8F:E2:1E:2D:72:6C:1B:83:EC:82:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFvmBW6ww2ULj-IeLXJsG4PsgrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/jCZ3tYG_uukUFCRmAnpyCFQss2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/DFvmBW6ww2ULj-IeLXJsG4PsgrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.116.150.0-62.116.153.255
Signature Algorithm: sha256WithRSAEncryption
9d:84:6b:6c:7b:e7:39:58:cc:d7:c0:3f:21:26:6e:7f:32:e7:
91:b6:8c:52:2d:45:89:b4:03:19:cb:07:0a:c6:4c:f3:ae:96:
bc:42:b1:3a:f3:42:5d:8f:64:fb:5f:b6:b0:6b:f5:36:40:a1:
97:f8:3b:4c:d2:fa:35:07:84:d0:d8:a9:01:fc:01:82:b8:23:
e8:67:74:b7:82:36:32:c7:fc:6a:4e:e3:f7:fd:9f:03:0f:7e:
81:d8:f0:7f:92:2f:15:2f:5d:70:15:ae:84:4c:98:54:fa:cf:
80:76:e1:24:ad:f2:67:c0:34:67:d4:b9:77:9b:55:6d:61:bb:
1b:d4:06:2d:c5:93:f0:e8:8a:bf:90:39:d8:c2:d6:c3:f9:b1:
52:f4:3f:6e:4e:52:6e:60:fc:51:4e:4f:ca:ce:44:55:7c:86:
32:d3:1b:fa:60:45:52:9b:9c:db:d8:28:d0:0c:c4:67:7c:9a:
6e:2f:3d:5a:bd:17:84:d9:dc:4f:55:13:05:33:68:e9:5d:38:
42:f4:5b:13:1b:f2:be:b6:3d:56:8d:f6:be:0e:ae:4d:04:b4:
83:df:fb:39:24:c6:3b:3e:77:45:a0:e6:3b:5d:a5:cd:7f:33:
d4:ec:ed:b0:b7:8e:42:3a:25:4e:21:a8:cc:86:60:52:c5:7b:
c0:0f:95:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:51 2024 by rpki-client on console-ams.rpki-client.org