Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/bcX7I5byTfTeXJvupOO2zqeJihA.roa
File: bcX7I5byTfTeXJvupOO2zqeJihA.roa (raw, json)
Hash identifier: dafXF351MyGVO0GnUs8+JoU+vxj7t4aaZ0vSVlP8Uys=
Subject key identifier: 6D:C5:FB:23:96:F2:4D:F4:DE:5C:9B:EE:A4:E3:B6:CE:A7:89:8A:10
Certificate issuer: /CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Certificate serial: ADE8BB
Authority key identifier: 1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/bcX7I5byTfTeXJvupOO2zqeJihA.roa
Signing time: Sat 01 Jan 2022 00:51:47 +0000
ROA not before: Sat 01 Jan 2022 00:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42334
IP address blocks: 62.84.64.0/24 maxlen: 24
62.84.65.0/24 maxlen: 24
62.84.69.0/24 maxlen: 24
62.84.68.0/24 maxlen: 24
62.84.67.0/24 maxlen: 24
62.84.66.0/24 maxlen: 24
62.84.71.0/24 maxlen: 24
62.84.70.0/24 maxlen: 24
62.84.78.0/24 maxlen: 24
62.84.77.0/24 maxlen: 24
62.84.72.0/24 maxlen: 24
62.84.76.0/24 maxlen: 24
62.84.75.0/24 maxlen: 24
62.84.74.0/24 maxlen: 24
62.84.73.0/24 maxlen: 24
62.84.79.0/24 maxlen: 24
62.84.83.0/24 maxlen: 24
62.84.82.0/24 maxlen: 24
62.84.80.0/24 maxlen: 24
62.84.85.0/24 maxlen: 24
62.84.84.0/24 maxlen: 24
62.84.91.0/24 maxlen: 24
62.84.86.0/24 maxlen: 24
62.84.90.0/24 maxlen: 24
62.84.89.0/24 maxlen: 24
62.84.87.0/24 maxlen: 24
62.84.93.0/24 maxlen: 24
62.84.92.0/24 maxlen: 24
62.84.95.0/24 maxlen: 24
62.84.94.0/24 maxlen: 24
185.114.253.0/24 maxlen: 24
185.114.252.0/24 maxlen: 24
185.114.255.0/24 maxlen: 24
185.114.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11397307 (0xade8bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Validity
Not Before: Jan 1 00:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dc5fb2396f24df4de5c9beea4e3b6cea7898a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:be:7a:e2:0c:9f:35:e9:31:e3:16:c7:e2:84:
4d:05:49:54:1b:a1:c9:26:ad:17:e8:a7:f3:3c:85:
5a:b7:ac:a8:91:11:ea:34:d1:92:c4:e8:53:9b:fb:
43:d8:0c:42:67:c1:aa:68:83:69:28:16:e3:07:1b:
85:de:49:2a:c3:05:20:d1:19:05:86:9b:d6:7c:9a:
fb:fe:0e:2f:9d:72:c5:03:bf:38:93:90:b4:7b:66:
25:e9:e8:1d:3c:22:03:63:fc:d0:b5:04:9a:e6:43:
00:4f:60:f8:37:ba:4b:7b:6a:97:db:7f:b2:3f:95:
e3:7c:7b:e0:cc:65:75:37:fd:ce:bb:d2:52:c9:31:
d7:f3:b4:49:00:52:36:e1:d3:4e:8f:2a:c0:43:50:
3d:41:1b:16:1d:2e:f9:98:01:eb:8d:1b:7b:dd:3a:
09:ae:d9:db:66:7d:20:4a:fb:53:cd:dc:da:99:b9:
d3:e5:7d:9c:4d:fb:61:a5:99:da:e2:39:0f:78:5c:
c0:4a:2b:06:b0:91:f7:f4:55:ce:c9:da:2a:d1:5f:
54:5a:fb:60:5e:1c:ac:98:9f:da:f4:12:98:bc:72:
a6:2a:06:f0:06:58:05:3c:a8:50:63:d5:21:45:b9:
bb:00:33:99:78:ce:92:31:b2:a9:60:b0:53:86:60:
ff:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C5:FB:23:96:F2:4D:F4:DE:5C:9B:EE:A4:E3:B6:CE:A7:89:8A:10
X509v3 Authority Key Identifier:
keyid:1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/bcX7I5byTfTeXJvupOO2zqeJihA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.64.0-62.84.80.255
62.84.82.0-62.84.87.255
62.84.89.0-62.84.95.255
185.114.252.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:ac:a1:d8:11:7f:e3:6b:0b:1b:6c:13:a3:fb:27:c4:a3:73:
32:ef:4c:17:3f:61:e9:59:b5:47:63:94:73:2b:86:b8:54:c2:
5c:e2:93:ee:50:04:b0:38:7c:fe:02:70:a0:3c:86:f8:4b:d6:
94:45:6f:73:e2:b9:a7:b3:e5:db:58:ec:a6:6b:fc:1a:e1:88:
ef:64:44:b3:01:92:3f:9e:c6:1c:ed:46:86:5f:3f:3f:41:9f:
8d:c0:85:5e:a2:4b:5e:75:2d:98:1c:36:bd:ed:fe:cd:30:a6:
01:06:00:5b:62:6d:b2:91:1f:8c:a7:e8:13:1b:e3:df:ff:2d:
39:ee:6f:7e:da:ae:61:35:99:8d:2c:14:d6:62:85:16:46:d4:
fe:89:7c:0f:9e:ee:bb:90:55:6c:19:9c:ca:63:27:56:3e:39:
a7:55:e0:7f:5b:86:d0:6d:cb:57:83:24:9b:9a:69:cb:b8:03:
d4:90:cb:ab:3d:07:05:d4:a7:4e:b8:bc:af:20:5d:1e:df:e1:
bb:a4:cb:d7:d1:f1:af:3a:b0:06:34:17:06:c1:82:69:34:3c:
13:2a:ed:ce:3a:9b:37:22:37:54:96:91:ef:3d:40:b6:bc:b8:
fc:bd:80:50:3e:53:24:6e:0b:70:da:61:53:63:97:13:5a:f4:
4e:53:27:42
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIEAK3ouzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTc1MTA2NzcxYzQyOTVlM2QzZWNmYTA0Y2I5N2Y2MzE2MjNlNWJmMB4XDTIyMDEw
MTAwNTE0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmRjNWZiMjM5NmYy
NGRmNGRlNWM5YmVlYTRlM2I2Y2VhNzg5OGExMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2+euIMnzXpMeMWx+KETQVJVBuhySatF+in8zyFWresqJER
6jTRksToU5v7Q9gMQmfBqmiDaSgW4wcbhd5JKsMFINEZBYab1nya+/4OL51yxQO/
OJOQtHtmJenoHTwiA2P80LUEmuZDAE9g+De6S3tql9t/sj+V43x74MxldTf9zrvS
Uskx1/O0SQBSNuHTTo8qwENQPUEbFh0u+ZgB640be906Ca7Z22Z9IEr7U83c2pm5
0+V9nE37YaWZ2uI5D3hcwEorBrCR9/RVzsnaKtFfVFr7YF4crJif2vQSmLxypioG
8AZYBTyoUGPVIUW5uwAzmXjOkjGyqWCwU4Zg//UCAwEAAaOCAjMwggIvMB0GA1Ud
DgQWBBRtxfsjlvJN9N5cm+6k47bOp4mKEDAfBgNVHSMEGDAWgBQedRBnccQpXj0+
z6BMuX9jFiPlvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0huVVFaM0hFS1Y0OVBzLWdUTGxfWXhZajViOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTQvOTRhMGYyLWM4MDYtNGI1NS1iYmU3LWEyZmRiOTM4Y2EyZC8x
L2JjWDdJNWJ5VGZUZVhKdnVwT08yenFlSmloQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQv
OTRhMGYyLWM4MDYtNGI1NS1iYmU3LWEyZmRiOTM4Y2EyZC8xL0huVVFaM0hFS1Y0
OVBzLWdUTGxfWXhZajViOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBJ
BggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMDAMAwQGPlRAAwQAPlRQMAwDBAE+VFID
BAM+VFAwDAMEAD5UWQMEBT5UQAMEArly/DANBgkqhkiG9w0BAQsFAAOCAQEAPayh
2BF/42sLG2wTo/snxKNzMu9MFz9h6Vm1R2OUcyuGuFTCXOKT7lAEsDh8/gJwoDyG
+EvWlEVvc+K5p7Pl21jspmv8GuGI72REswGSP57GHO1Ghl8/P0GfjcCFXqJLXnUt
mBw2ve3+zTCmAQYAW2JtspEfjKfoExvj3/8tOe5vftquYTWZjSwU1mKFFkbU/ol8
D57uu5BVbBmcymMnVj45p1Xgf1uG0G3LV4Mkm5ppy7gD1JDLqz0HBdSnTri8ryBd
Ht/hu6TL19HxrzqwBjQXBsGCaTQ8EyrtzjqbNyI3VJaR7z1Atry4/L2AUD5TJG4L
cNphU2OXE1r0TlMnQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:26 2024 by rpki-client on console-fra.rpki-client.org