Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/2LMKx4FLSst76DezY5ahBIoxxFc.roa
File: 2LMKx4FLSst76DezY5ahBIoxxFc.roa (raw, json)
Hash identifier: 9me+1VrdKD1ttGVcxaPr3Oc74sNve8jEGn2/vaDlRpM=
Subject key identifier: D8:B3:0A:C7:81:4B:4A:CB:7B:E8:37:B3:63:96:A1:04:8A:31:C4:57
Certificate issuer: /CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Certificate serial: 6D2B0F
Authority key identifier: 64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/2LMKx4FLSst76DezY5ahBIoxxFc.roa
Signing time: Sat 01 Jan 2022 01:52:47 +0000
ROA not before: Sat 01 Jan 2022 01:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39757
IP address blocks: 62.3.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7154447 (0x6d2b0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Validity
Not Before: Jan 1 01:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8b30ac7814b4acb7be837b36396a1048a31c457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:79:cf:53:6c:2a:e5:9d:61:6a:f9:cc:6b:
fc:74:e3:19:68:85:e8:c5:8c:a3:98:0f:9a:b2:22:
ef:5b:26:7b:8f:ec:03:f6:39:43:20:3d:89:54:27:
27:ee:da:bd:6d:15:3a:b6:17:b9:10:fe:6d:f3:58:
cd:71:d5:14:c3:4f:a8:11:04:d1:7d:0f:3e:f9:b6:
c3:f4:9e:61:41:b5:2a:39:7a:f9:36:21:6e:7c:56:
ab:67:ec:d7:9b:9d:8a:cb:31:6e:be:bf:df:60:d7:
01:10:73:a4:4f:75:7c:4f:9b:3d:63:15:6a:46:f7:
4f:a3:4e:59:cc:0b:98:db:10:e9:57:25:63:73:d6:
e5:bd:06:89:24:76:0c:e4:50:6d:d6:25:5e:41:1e:
24:89:c6:61:1d:f2:ca:ed:ea:3b:58:29:bd:17:55:
0b:82:52:1d:aa:81:6a:e1:fa:70:cb:f0:7c:8b:c3:
62:f6:b9:5e:a1:ce:0a:6d:81:f8:f0:39:a9:5f:e8:
5c:9b:bd:3d:68:c3:0f:5c:41:97:17:30:28:7f:70:
81:b0:ea:c6:46:99:3f:e5:3d:65:a3:93:72:65:01:
1f:6d:71:c0:09:3a:1b:7f:de:c2:00:0a:43:34:91:
87:9c:c3:12:06:ee:ca:61:4e:f8:d4:a7:7a:d5:2d:
bd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B3:0A:C7:81:4B:4A:CB:7B:E8:37:B3:63:96:A1:04:8A:31:C4:57
X509v3 Authority Key Identifier:
keyid:64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/2LMKx4FLSst76DezY5ahBIoxxFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.61.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:18:35:61:19:37:06:2c:19:9e:21:fd:f8:83:17:6e:53:6a:
22:3f:78:c3:70:ce:ba:f0:3d:3b:f3:29:41:50:11:e6:3b:d0:
f6:1e:90:87:bf:b9:cf:a9:ea:04:a5:0b:e5:24:12:58:85:38:
4f:e5:fb:dc:e7:eb:b2:1d:c3:64:0e:4c:86:29:04:a4:1b:3f:
74:5e:74:25:06:cd:95:80:d7:a0:6e:e5:45:c2:48:cf:09:55:
9d:c8:c5:79:85:28:45:56:29:94:3f:24:5e:44:35:93:07:06:
9f:8b:d6:54:3e:86:57:f2:d5:f2:e9:a0:b2:ab:ee:82:e7:19:
ae:c3:84:0a:91:c5:b3:fd:60:d8:c6:58:8f:bc:3d:9e:8e:a2:
2b:b9:79:01:ea:cc:60:2b:f4:9c:fb:b5:63:e4:f4:ee:38:17:
f7:98:2e:83:e1:81:26:13:55:51:eb:aa:92:6b:d2:c7:88:0b:
29:ff:b4:25:8d:16:89:87:b2:8e:c8:90:1a:5a:c1:a8:3a:fa:
ba:6c:4c:de:2b:36:38:bd:59:c4:52:5f:c4:ff:06:6d:3c:6e:
b1:df:3f:8c:b3:62:0a:e0:6a:51:09:26:98:b7:e1:87:df:11:
9b:ac:06:cb:0a:34:f5:86:29:7c:5e:ae:fa:32:6a:10:40:44:
23:a4:71:2c
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDbSsPMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY0
ZWUwNDg5MTU4ZmU5NWUxOTkxZmQ1Y2U3MjVlYTA2N2UxMWExZmIwHhcNMjIwMTAx
MDE1MjQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkOGIzMGFjNzgxNGI0
YWNiN2JlODM3YjM2Mzk2YTEwNDhhMzFjNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAu115z1NsKuWdYWr5zGv8dOMZaIXoxYyjmA+asiLvWyZ7j+wD
9jlDID2JVCcn7tq9bRU6the5EP5t81jNcdUUw0+oEQTRfQ8++bbD9J5hQbUqOXr5
NiFufFarZ+zXm52KyzFuvr/fYNcBEHOkT3V8T5s9YxVqRvdPo05ZzAuY2xDpVyVj
c9blvQaJJHYM5FBt1iVeQR4kicZhHfLK7eo7WCm9F1ULglIdqoFq4fpwy/B8i8Ni
9rleoc4KbYH48DmpX+hcm709aMMPXEGXFzAof3CBsOrGRpk/5T1lo5NyZQEfbXHA
CTobf97CAApDNJGHnMMSBu7KYU741Kd61S29hQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFNizCseBS0rLe+g3s2OWoQSKMcRXMB8GA1UdIwQYMBaAFGTuBIkVj+leGZH9
XOcl6gZ+EaH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Wk80RWlSV1A2VjRaa2YxYzV5WHFCbjRSb2ZzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mMy8xOGFlMDItZTcyZC00NDMwLTg1ZDgtNDczYzViYTU1MzYyLzEv
MkxNS3g0RkxTc3Q3NkRlelk1YWhCSW94eEZjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8x
OGFlMDItZTcyZC00NDMwLTg1ZDgtNDczYzViYTU1MzYyLzEvWk80RWlSV1A2VjRa
a2YxYzV5WHFCbjRSb2ZzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgM9MA0GCSqGSIb3DQEBCwUAA4IB
AQBMGDVhGTcGLBmeIf34gxduU2oiP3jDcM668D078ylBUBHmO9D2HpCHv7nPqeoE
pQvlJBJYhThP5fvc5+uyHcNkDkyGKQSkGz90XnQlBs2VgNegbuVFwkjPCVWdyMV5
hShFVimUPyReRDWTBwafi9ZUPoZX8tXy6aCyq+6C5xmuw4QKkcWz/WDYxliPvD2e
jqIruXkB6sxgK/Sc+7Vj5PTuOBf3mC6D4YEmE1VR66qSa9LHiAsp/7QljRaJh7KO
yJAaWsGoOvq6bEzeKzY4vVnEUl/E/wZtPG6x3z+Ms2IK4GpRCSaYt+GH3xGbrAbL
CjT1hil8Xq76MmoQQEQjpHEs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:28 2024 by rpki-client on console-fra.rpki-client.org