Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/ckSoGk2lwATqDe80FTYhXwduG6c.roa
File: ckSoGk2lwATqDe80FTYhXwduG6c.roa (raw, json)
Hash identifier: BxO4ZCIa5xqtxUhNT9/MPySt1ZawIqOa8oCRxR6NeIk=
Subject key identifier: 72:44:A8:1A:4D:A5:C0:04:EA:0D:EF:34:15:36:21:5F:07:6E:1B:A7
Certificate issuer: /CN=642794c2d2cfa054638ba950a5f668e87601412d
Certificate serial: 10840F9A
Authority key identifier: 64:27:94:C2:D2:CF:A0:54:63:8B:A9:50:A5:F6:68:E8:76:01:41:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCeUwtLPoFRji6lQpfZo6HYBQS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/ckSoGk2lwATqDe80FTYhXwduG6c.roa
Signing time: Sat 01 Jan 2022 16:02:34 +0000
ROA not before: Sat 01 Jan 2022 16:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51815
IP address blocks: 62.102.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277090202 (0x10840f9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=642794c2d2cfa054638ba950a5f668e87601412d
Validity
Not Before: Jan 1 16:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7244a81a4da5c004ea0def341536215f076e1ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:84:b4:f6:d9:cf:89:b2:04:fe:f5:bd:b3:
1b:29:21:f0:76:d3:fa:23:cf:1d:39:c0:02:8d:c2:
55:f0:89:18:c3:a2:0a:14:2f:51:66:bb:17:97:79:
a7:8f:bb:5b:d3:6d:eb:9e:27:63:5a:01:cd:9b:87:
db:9b:11:36:6b:26:aa:b1:b3:69:07:bb:b5:72:63:
57:bb:a7:37:cb:ab:ef:b4:72:9e:c4:f4:85:67:36:
9c:74:59:e9:86:e7:97:da:a3:09:f8:29:40:49:f2:
03:24:39:07:3c:62:7a:a3:e4:99:2c:eb:44:4f:d6:
08:59:b6:63:b4:a8:83:80:2c:e7:0a:1e:dd:9f:de:
43:0b:a3:d3:b8:06:16:05:04:8d:f7:5d:c7:08:14:
6b:a9:54:ce:6f:f2:e4:e3:7e:1f:86:61:32:7c:8b:
d7:00:12:0b:b7:7f:cf:f9:e5:09:ff:39:11:af:3d:
28:3b:47:0d:52:22:6e:0c:55:6f:be:42:6f:8c:9c:
a3:7b:aa:cd:fa:b9:da:b9:11:2d:c9:3b:73:ce:37:
84:f1:c6:e4:24:9d:b2:58:7c:f0:2f:5b:47:8e:72:
2a:1f:01:7b:4a:82:7b:55:90:ac:bc:e2:e6:85:79:
fb:51:60:ee:23:9e:fe:88:62:89:af:e6:d0:2a:a5:
6f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:44:A8:1A:4D:A5:C0:04:EA:0D:EF:34:15:36:21:5F:07:6E:1B:A7
X509v3 Authority Key Identifier:
keyid:64:27:94:C2:D2:CF:A0:54:63:8B:A9:50:A5:F6:68:E8:76:01:41:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCeUwtLPoFRji6lQpfZo6HYBQS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/ckSoGk2lwATqDe80FTYhXwduG6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f70a9c-1528-4e66-b7a6-061639812c74/1/ZCeUwtLPoFRji6lQpfZo6HYBQS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.102.151.0/24
Signature Algorithm: sha256WithRSAEncryption
38:07:80:76:6a:41:1c:09:78:73:cc:f0:25:d1:0b:3e:95:84:
42:4b:69:4e:51:cd:fe:ab:3b:38:05:08:4e:67:88:cb:ca:5e:
4e:5c:8f:66:a1:7b:69:2e:69:32:2c:00:f5:15:b0:c7:c8:8c:
20:c2:0c:38:38:a5:ce:80:2a:16:77:f1:2d:b9:51:68:c7:f0:
53:77:fa:e3:c0:f4:d0:c5:0d:1d:48:1a:44:5f:bd:8d:ed:c5:
22:35:b9:bd:34:1f:c6:2b:3c:4a:80:32:08:71:9a:cf:0c:e2:
1e:e1:db:48:d4:d8:6d:ec:d6:5c:57:66:47:c6:7c:c6:2d:fd:
16:1d:ed:36:e7:42:89:96:88:e0:fd:6d:c8:d5:4f:a5:bb:ce:
e9:f1:ca:c3:b4:c1:8e:26:ba:ba:91:17:cf:21:59:e0:c4:11:
47:72:89:b7:77:24:06:a6:33:96:9e:47:d1:df:2b:0e:15:19:
b2:6e:43:4a:dc:33:5a:82:a5:65:c8:6e:20:f2:fa:51:66:72:
b0:97:1f:ff:7a:6d:b3:0e:c8:69:56:bd:d1:c4:48:b5:4f:56:
48:b5:d0:d2:08:5f:7d:37:31:9f:98:e6:9a:2f:d4:7a:ed:c3:
2f:d7:e9:d0:5a:be:63:ec:65:21:38:d9:12:cd:a2:72:22:ab:
7a:67:39:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:01 2024 by rpki-client on console-ams.rpki-client.org