Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/6d9bd3-f0d4-4505-96f8-e40ea991404b/1/1-b7gy29kodmdt29hVIrH-RtUNH4.roa
File: 1-b7gy29kodmdt29hVIrH-RtUNH4.roa (raw, json)
Hash identifier: lrp8jchpB8aXYZUGNB/GYSFiYaN3Hdwg+otjaErXLoQ=
Subject key identifier: F9:BE:E0:CB:6F:64:A1:D9:9D:B7:6F:61:54:8A:C7:F9:1B:54:34:7E
Certificate issuer: /CN=330716efa7392a523160c1723b3190b8fca868d2
Certificate serial: 49AE
Authority key identifier: 33:07:16:EF:A7:39:2A:52:31:60:C1:72:3B:31:90:B8:FC:A8:68:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MwcW76c5KlIxYMFyOzGQuPyoaNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/6d9bd3-f0d4-4505-96f8-e40ea991404b/1/1-b7gy29kodmdt29hVIrH-RtUNH4.roa
Signing time: Tue 25 Jan 2022 14:22:55 +0000
ROA not before: Tue 25 Jan 2022 14:22:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209235
IP address blocks: 62.68.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18862 (0x49ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=330716efa7392a523160c1723b3190b8fca868d2
Validity
Not Before: Jan 25 14:22:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9bee0cb6f64a1d99db76f61548ac7f91b54347e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fb:5a:2d:0e:7a:01:c8:33:8c:eb:8b:6d:6c:
6f:fa:76:d0:36:69:99:19:c3:48:50:77:dd:d0:38:
76:43:5f:1f:14:aa:e2:b7:8c:7e:9d:3e:d0:28:19:
43:e3:e4:99:2b:3e:cf:a7:d2:78:77:5c:95:e4:f7:
b9:75:bf:fa:8b:03:54:9d:ca:10:26:16:58:39:74:
28:9a:14:62:47:67:66:e8:1e:c0:0e:03:96:1b:21:
45:5c:01:54:bc:2c:7c:85:0f:ad:94:ec:49:c5:a0:
34:6c:b3:7c:8a:3d:f9:63:e7:b9:a3:1a:5d:76:37:
1e:75:08:a6:28:a9:fd:ce:06:29:14:07:b3:e0:08:
cf:07:1c:7f:40:cc:1f:52:90:48:59:6a:c3:76:aa:
95:c3:f2:3b:9f:40:fe:ae:5b:7a:a4:de:72:d5:d2:
18:db:5f:66:43:75:57:74:08:d8:be:1a:7f:b4:b7:
8d:f5:35:6e:a6:71:cb:5e:5f:b6:6c:ec:17:c6:28:
31:22:16:fd:d6:fe:ee:b0:a6:af:3c:3d:a9:8d:68:
79:ff:82:34:d0:82:5d:27:e5:4a:1e:56:1d:00:cf:
31:cd:54:2f:60:a8:f9:67:fe:78:fc:04:45:79:93:
78:fb:0e:ab:8c:6e:ad:55:ec:91:59:5d:f2:32:25:
f8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BE:E0:CB:6F:64:A1:D9:9D:B7:6F:61:54:8A:C7:F9:1B:54:34:7E
X509v3 Authority Key Identifier:
keyid:33:07:16:EF:A7:39:2A:52:31:60:C1:72:3B:31:90:B8:FC:A8:68:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MwcW76c5KlIxYMFyOzGQuPyoaNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/6d9bd3-f0d4-4505-96f8-e40ea991404b/1/1-b7gy29kodmdt29hVIrH-RtUNH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/6d9bd3-f0d4-4505-96f8-e40ea991404b/1/MwcW76c5KlIxYMFyOzGQuPyoaNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.78.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:26:06:7e:27:55:89:4d:8e:11:ec:69:7c:5f:29:51:b2:28:
90:cb:25:d8:e0:a0:b0:ff:3f:56:97:e7:13:d0:d6:36:94:6b:
9a:30:5c:c1:7a:4e:87:8b:ae:fc:c7:4c:75:73:c1:2a:76:f0:
98:35:2d:60:cc:f7:a8:c2:60:17:51:60:ff:b2:28:76:87:8d:
1e:46:5f:c5:32:a0:df:2a:f5:44:00:e2:20:98:80:83:b3:ce:
11:8e:b4:aa:1b:d0:97:49:f5:e8:62:51:a5:f7:27:4f:7b:39:
62:26:5f:e2:91:53:13:7b:44:ae:ff:9d:7e:04:f9:59:62:26:
7f:c2:b3:2f:45:c7:45:fe:98:d5:e6:08:31:4a:17:83:dd:f0:
ee:c5:7a:26:63:c3:c6:5d:44:d7:7a:af:4c:cd:6f:0b:11:d6:
33:ee:5d:c1:c9:21:79:33:57:b6:a1:b5:c9:59:b4:5a:68:e2:
44:70:6a:9d:7a:33:62:c4:17:5d:f5:72:60:d4:e1:85:3e:26:
0e:05:19:a3:ce:1a:80:1f:98:23:fc:b7:89:bf:a6:9b:37:c5:
f5:ba:cb:6a:31:d2:ab:eb:39:6e:59:d8:ef:7b:b2:59:44:4a:
a5:42:67:ee:ab:89:fc:8f:38:06:b6:7c:ac:0c:9a:9d:76:e2:
9b:a6:fe:c8
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICSa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzMw
NzE2ZWZhNzM5MmE1MjMxNjBjMTcyM2IzMTkwYjhmY2E4NjhkMjAeFw0yMjAxMjUx
NDIyNTVaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGY5YmVlMGNiNmY2NGEx
ZDk5ZGI3NmY2MTU0OGFjN2Y5MWI1NDM0N2UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCR+1otDnoByDOM64ttbG/6dtA2aZkZw0hQd93QOHZDXx8UquK3
jH6dPtAoGUPj5JkrPs+n0nh3XJXk97l1v/qLA1SdyhAmFlg5dCiaFGJHZ2boHsAO
A5YbIUVcAVS8LHyFD62U7EnFoDRss3yKPflj57mjGl12Nx51CKYoqf3OBikUB7Pg
CM8HHH9AzB9SkEhZasN2qpXD8jufQP6uW3qk3nLV0hjbX2ZDdVd0CNi+Gn+0t431
NW6mccteX7Zs7BfGKDEiFv3W/u6wpq88PamNaHn/gjTQgl0n5UoeVh0AzzHNVC9g
qPln/nj8BEV5k3j7DquMbq1V7JFZXfIyJfhhAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQU+b7gy29kodmdt29hVIrH+RtUNH4wHwYDVR0jBBgwFoAUMwcW76c5KlIxYMFy
OzGQuPyoaNIwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9N
d2NXNzZjNUtsSXhZTUZ5T3pHUXVQeW9hTkkuY2VyMIGOBggrBgEFBQcBCwSBgTB/
MH0GCCsGAQUFBzALhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2Y5LzZkOWJkMy1mMGQ0LTQ1MDUtOTZmOC1lNDBlYTk5MTQwNGIvMS8x
LWI3Z3kyOWtvZG1kdDI5aFZJckgtUnRVTkg0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS82
ZDliZDMtZjBkNC00NTA1LTk2ZjgtZTQwZWE5OTE0MDRiLzEvTXdjVzc2YzVLbEl4
WU1GeU96R1F1UHlvYU5JLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPkROMA0GCSqGSIb3DQEBCwUAA4IB
AQAKJgZ+J1WJTY4R7Gl8XylRsiiQyyXY4KCw/z9Wl+cT0NY2lGuaMFzBek6Hi678
x0x1c8EqdvCYNS1gzPeowmAXUWD/sih2h40eRl/FMqDfKvVEAOIgmICDs84RjrSq
G9CXSfXoYlGl9ydPezliJl/ikVMTe0Su/51+BPlZYiZ/wrMvRcdF/pjV5ggxSheD
3fDuxXomY8PGXUTXeq9MzW8LEdYz7l3BySF5M1e2obXJWbRaaOJEcGqdejNixBdd
9XJg1OGFPiYOBRmjzhqAH5gj/LeJv6abN8X1ustqMdKr6zluWdjve7JZREqlQmfu
q4n8jzgGtnysDJqdduKbpv7I
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:20 2024 by rpki-client on console-fra.rpki-client.org