Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ulApF3vz5-KejDcD3X_XQHTy5og.roa
File: ulApF3vz5-KejDcD3X_XQHTy5og.roa (raw, json)
Hash identifier: ITByOxJDB0Tq0/G54Y0PwIz7FijF1sk7CtMzJfCHenE=
Subject key identifier: BA:50:29:17:7B:F3:E7:E2:9E:8C:37:03:DD:7F:D7:40:74:F2:E6:88
Certificate issuer: /CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Certificate serial: 6CDC41
Authority key identifier: 64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ulApF3vz5-KejDcD3X_XQHTy5og.roa
Signing time: Sat 01 Jan 2022 01:52:46 +0000
ROA not before: Sat 01 Jan 2022 01:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 62.3.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7134273 (0x6cdc41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Validity
Not Before: Jan 1 01:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba5029177bf3e7e29e8c3703dd7fd74074f2e688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:34:fb:e6:72:cc:a5:0a:f5:b0:d1:61:49:8e:
32:38:aa:cb:6c:b4:0d:df:9a:cf:bf:5f:51:11:ca:
b7:85:51:a9:80:d9:87:42:9f:18:17:c2:35:3b:13:
dc:96:c0:13:3d:68:c0:9c:56:74:24:48:61:c8:a5:
79:81:96:81:66:06:22:2e:4c:11:ad:0d:e9:ca:df:
36:9e:c8:2a:f9:da:14:a5:4f:2b:05:ed:c2:e8:80:
9a:9d:fb:36:95:f1:8e:cf:ac:d4:f4:60:1d:80:f6:
d2:d6:63:6a:b1:4a:d2:d1:f1:9f:a8:34:d9:82:fd:
1a:b5:67:a8:93:5b:2e:6d:2f:04:4a:45:88:8d:72:
a3:3a:4d:5b:9b:5a:9a:2b:fc:60:d9:f8:f5:01:08:
8d:85:62:56:87:94:b6:b4:56:6e:d6:c5:b1:13:1a:
8e:b0:74:61:0b:cd:8c:7c:07:f9:14:3a:4e:af:7c:
a9:60:76:4d:cf:9e:7d:9a:0b:1f:5e:1a:5c:ac:e2:
b7:1d:9b:4b:10:c8:2c:16:16:15:a0:50:52:cc:ca:
05:1a:fb:4a:79:c3:a7:cf:f5:e0:09:40:60:33:5a:
13:91:bd:e0:41:e5:6d:4e:bd:8d:40:51:0e:33:71:
e7:9f:89:93:c3:40:ca:b5:c3:50:df:5d:ab:25:81:
80:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:50:29:17:7B:F3:E7:E2:9E:8C:37:03:DD:7F:D7:40:74:F2:E6:88
X509v3 Authority Key Identifier:
keyid:64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ulApF3vz5-KejDcD3X_XQHTy5og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.61.0/24
Signature Algorithm: sha256WithRSAEncryption
31:96:d7:47:24:ec:aa:e3:e6:37:60:7a:e6:0d:37:61:fc:7e:
dc:0e:f9:a9:ca:3f:24:d7:da:9d:85:a0:ec:ae:73:28:95:f4:
0f:55:74:29:c5:d7:4f:a7:0d:72:da:70:bf:18:93:11:44:53:
0c:68:f3:b4:a9:8e:bb:7b:8e:9e:4d:23:51:88:00:0f:38:7b:
39:13:8b:d1:68:ba:c6:af:24:d8:38:4b:cb:1b:be:0f:15:08:
3c:6c:85:11:98:9c:02:41:34:eb:b4:86:fe:7a:15:2a:fd:e6:
1f:38:79:79:86:a9:33:bc:8f:cf:4f:1b:0f:ce:03:2c:33:3e:
39:01:50:0a:f9:9d:b1:6a:9f:3a:ef:94:a1:06:6c:28:ca:8b:
8c:5d:f1:79:55:45:c5:ab:db:3d:bc:ed:14:11:94:b7:30:10:
08:e0:34:84:b8:e2:91:00:b0:60:e7:af:cc:4d:55:ec:66:33:
b6:a2:f1:0e:56:43:4a:cd:36:5f:80:5a:bf:b9:2d:a2:54:ea:
d0:08:34:bf:86:60:08:12:64:b8:4e:98:59:90:f6:05:27:c5:
a4:28:fb:46:14:a0:bd:a9:5b:8a:77:0e:78:2c:4c:2f:82:44:
16:5f:85:4d:11:93:e8:a4:a7:79:73:2d:cb:b7:cb:f7:49:a1:
d1:18:5e:e4
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDbNxBMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY0
ZWUwNDg5MTU4ZmU5NWUxOTkxZmQ1Y2U3MjVlYTA2N2UxMWExZmIwHhcNMjIwMTAx
MDE1MjQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiYTUwMjkxNzdiZjNl
N2UyOWU4YzM3MDNkZDdmZDc0MDc0ZjJlNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwDT75nLMpQr1sNFhSY4yOKrLbLQN35rPv19REcq3hVGpgNmH
Qp8YF8I1OxPclsATPWjAnFZ0JEhhyKV5gZaBZgYiLkwRrQ3pyt82nsgq+doUpU8r
Be3C6ICanfs2lfGOz6zU9GAdgPbS1mNqsUrS0fGfqDTZgv0atWeok1subS8ESkWI
jXKjOk1bm1qaK/xg2fj1AQiNhWJWh5S2tFZu1sWxExqOsHRhC82MfAf5FDpOr3yp
YHZNz559mgsfXhpcrOK3HZtLEMgsFhYVoFBSzMoFGvtKecOnz/XgCUBgM1oTkb3g
QeVtTr2NQFEOM3Hnn4mTw0DKtcNQ312rJYGAxQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLpQKRd78+finow3A91/10B08uaIMB8GA1UdIwQYMBaAFGTuBIkVj+leGZH9
XOcl6gZ+EaH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Wk80RWlSV1A2VjRaa2YxYzV5WHFCbjRSb2ZzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mMy8xOGFlMDItZTcyZC00NDMwLTg1ZDgtNDczYzViYTU1MzYyLzEv
dWxBcEYzdno1LUtlakRjRDNYX1hRSFR5NW9nLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8x
OGFlMDItZTcyZC00NDMwLTg1ZDgtNDczYzViYTU1MzYyLzEvWk80RWlSV1A2VjRa
a2YxYzV5WHFCbjRSb2ZzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgM9MA0GCSqGSIb3DQEBCwUAA4IB
AQAxltdHJOyq4+Y3YHrmDTdh/H7cDvmpyj8k19qdhaDsrnMolfQPVXQpxddPpw1y
2nC/GJMRRFMMaPO0qY67e46eTSNRiAAPOHs5E4vRaLrGryTYOEvLG74PFQg8bIUR
mJwCQTTrtIb+ehUq/eYfOHl5hqkzvI/PTxsPzgMsMz45AVAK+Z2xap8675ShBmwo
youMXfF5VUXFq9s9vO0UEZS3MBAI4DSEuOKRALBg56/MTVXsZjO2ovEOVkNKzTZf
gFq/uS2iVOrQCDS/hmAIEmS4TphZkPYFJ8WkKPtGFKC9qVuKdw54LEwvgkQWX4VN
EZPopKd5cy3Lt8v3SaHRGF7k
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:28 2024 by rpki-client on console-fra.rpki-client.org