Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/D95UGShoCpySDlYB_77H3Vm8amw.roa
File: D95UGShoCpySDlYB_77H3Vm8amw.roa (raw, json)
Hash identifier: VJN7R1/D0KMMI5yCaYnl1cmVJITbo90h+RK9g0WvbPA=
Subject key identifier: 0F:DE:54:19:28:68:0A:9C:92:0E:56:01:FF:BE:C7:DD:59:BC:6A:6C
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 36AF26E1
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/D95UGShoCpySDlYB_77H3Vm8amw.roa
Signing time: Mon 23 May 2022 07:50:50 +0000
ROA not before: Mon 23 May 2022 07:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207412
IP address blocks: 62.81.242.0/24 maxlen: 24
5.40.77.0/24 maxlen: 24
5.40.224.0/24 maxlen: 24
62.175.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917448417 (0x36af26e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: May 23 07:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fde541928680a9c920e5601ffbec7dd59bc6a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:0c:31:cc:08:35:75:39:14:44:88:5c:aa:
61:da:d2:1c:86:e7:31:06:50:d0:04:be:40:e1:c9:
58:26:20:47:c0:df:a8:39:f8:71:ef:d3:8b:27:a1:
17:96:8d:e5:78:eb:a8:99:92:40:08:ba:61:18:e5:
5c:5c:c2:65:dd:60:b3:7e:09:05:56:b7:76:4c:28:
23:58:92:12:3a:df:60:61:5f:94:04:38:4e:56:72:
8c:41:64:b1:bb:b2:0b:88:5d:9c:0e:07:df:74:22:
55:e3:78:d6:de:43:9b:26:49:e2:9b:c3:75:ad:8e:
91:2e:01:a6:b1:36:b9:e7:97:72:22:89:a5:03:9a:
b3:4c:82:c0:dc:7e:6c:e9:54:dd:2d:06:d0:b1:6c:
4a:a7:a3:d1:b4:82:e3:3e:1d:37:66:56:55:69:d0:
1d:42:01:0f:67:57:5b:53:8c:bd:f1:61:af:52:43:
45:5d:a3:06:6e:09:1c:40:f4:f1:af:7b:28:a4:1d:
a4:e8:a8:a8:5b:51:74:c5:d4:5e:30:f5:7e:91:e0:
39:44:ff:9b:ed:fc:8b:b5:de:16:7a:3a:51:be:58:
b6:a4:c2:bc:a2:47:99:46:82:9e:75:40:b4:28:2d:
38:ac:63:c7:2c:f7:a3:60:5d:16:a3:2a:df:f9:e8:
bf:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DE:54:19:28:68:0A:9C:92:0E:56:01:FF:BE:C7:DD:59:BC:6A:6C
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/D95UGShoCpySDlYB_77H3Vm8amw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.40.77.0/24
5.40.224.0/24
62.81.242.0/24
62.175.180.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:80:49:6d:3e:8a:c7:e5:25:c9:a3:89:47:fc:6f:01:c5:a9:
47:46:68:8b:e1:07:2c:d8:cf:1a:23:5d:1a:11:66:6c:54:24:
4f:b9:a0:cd:24:48:00:d7:03:5c:73:6b:31:0d:63:34:fd:fc:
5b:21:63:75:34:c0:12:08:33:4e:ff:bd:42:74:7a:18:ed:b7:
21:3b:ee:44:4b:e4:d2:a8:0c:93:c1:3f:fc:5c:20:fe:21:64:
60:1b:1d:5b:d1:34:e0:fe:44:51:db:e2:49:0e:19:5d:7f:4e:
e0:5a:65:db:f3:43:55:24:ba:45:1c:4b:b7:de:c8:a2:a5:9b:
6e:0b:27:1f:16:cd:d6:4b:af:90:ff:bc:08:3e:62:9e:f9:6f:
2f:ba:44:10:67:24:24:52:3b:6c:e7:f5:60:0a:47:80:03:ce:
25:2a:b1:0a:ae:4b:c6:33:1f:86:ba:63:2f:a8:03:d4:c3:44:
5a:25:da:6d:6d:bc:f3:3c:f1:a5:c7:c5:94:18:ed:6e:b1:14:
1c:19:0b:d2:7c:b6:cb:27:e0:49:f4:39:55:c4:34:33:2a:a1:
4d:82:47:5c:22:69:e8:61:97:e7:c2:b0:61:0b:a6:71:23:62:
87:4a:ad:d9:9a:6b:4f:7a:d3:b4:1f:77:00:76:fd:8b:1f:0a:
cb:36:13:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org