Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1el6vVxnr47_h7Qa7ZJIxtX5PnI.roa
File: 1el6vVxnr47_h7Qa7ZJIxtX5PnI.roa (raw, json)
Hash identifier: fXyUsVl+TLDbIengtnfO65qyZu6lqoMw6AZt1vodSjE=
Subject key identifier: D5:E9:7A:BD:5C:67:AF:8E:FF:87:B4:1A:ED:92:48:C6:D5:F9:3E:72
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 0182013903FAD614AEFB96EA369597356D2A
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1el6vVxnr47_h7Qa7ZJIxtX5PnI.roa
Signing time: Fri 15 Jul 2022 09:38:09 +0000
ROA not before: Fri 15 Jul 2022 09:38:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50266
IP address blocks: 82.172.0.0/17 maxlen: 17
143.178.0.0/17 maxlen: 24
87.210.0.0/16 maxlen: 24
95.98.0.0/15 maxlen: 24
94.157.0.0/16 maxlen: 24
62.250.128.0/17 maxlen: 24
87.208.0.0/16 maxlen: 24
81.59.0.0/17 maxlen: 17
87.209.0.0/16 maxlen: 24
143.177.0.0/16 maxlen: 24
87.212.0.0/16 maxlen: 24
31.20.0.0/16 maxlen: 24
143.178.128.0/17 maxlen: 24
31.21.0.0/16 maxlen: 24
143.179.0.0/16 maxlen: 16
95.99.0.0/16 maxlen: 16
188.88.0.0/14 maxlen: 24
31.187.128.0/17 maxlen: 24
82.174.0.0/16 maxlen: 24
62.166.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:39:03:fa:d6:14:ae:fb:96:ea:36:95:97:35:6d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jul 15 09:38:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5e97abd5c67af8eff87b41aed9248c6d5f93e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1a:b5:3e:ef:44:03:40:81:39:2f:c8:b0:69:
e0:61:65:fb:0f:4d:e0:fd:3e:86:7e:2c:93:f7:43:
b6:10:20:22:a6:a9:8e:77:57:91:4e:20:3c:e8:97:
d0:0d:b1:43:ae:68:a7:af:88:b1:33:a7:0f:2d:19:
90:f9:34:e6:04:60:1f:97:6a:3e:ad:1d:5e:29:be:
d2:a1:8f:77:d7:d7:a7:6e:ce:b2:43:85:a8:d0:85:
20:cf:3a:79:c9:34:03:b7:3f:af:cc:42:f7:25:66:
0c:b9:68:a4:cf:7c:b1:36:ed:b2:00:8f:22:51:de:
3a:51:e7:ef:38:2e:73:ae:95:76:04:d1:a4:81:da:
40:29:15:6c:cb:41:19:56:d9:89:c7:3c:59:76:ed:
b4:d5:02:99:bb:36:af:60:0e:b8:6a:c8:f0:dc:30:
13:88:e1:9c:cf:5a:d4:df:ba:e0:f0:c3:de:1a:96:
63:c5:42:e6:01:63:99:ce:fc:1f:3a:38:0c:e4:30:
9a:1b:3e:fe:ef:f6:36:52:88:a3:2f:22:63:8d:21:
e8:8f:9f:10:cd:1c:54:82:cb:60:02:ae:e9:07:77:
32:fa:1c:de:77:bf:b6:1b:76:c4:7c:c9:61:37:77:
d7:e6:be:32:3e:28:b5:ea:f7:c3:b9:f5:0b:a2:04:
22:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E9:7A:BD:5C:67:AF:8E:FF:87:B4:1A:ED:92:48:C6:D5:F9:3E:72
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1el6vVxnr47_h7Qa7ZJIxtX5PnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.20.0.0/15
31.187.128.0/17
62.166.128.0/17
62.250.128.0/17
81.59.0.0/17
82.172.0.0/17
82.174.0.0/16
87.208.0.0-87.210.255.255
87.212.0.0/16
94.157.0.0/16
95.98.0.0/15
143.177.0.0-143.179.255.255
188.88.0.0/14
Signature Algorithm: sha256WithRSAEncryption
3f:e4:9c:1d:fe:80:7b:64:0c:f4:9b:f4:7a:cb:81:bf:71:b9:
cf:a5:56:01:7d:43:d2:09:ec:a5:06:9b:dd:23:91:ce:7c:10:
b5:a0:56:76:aa:d8:51:1f:67:f5:e3:fe:e7:96:a3:ab:a0:56:
02:67:66:43:df:7e:22:47:bd:4b:fb:c6:d3:1b:53:6e:03:89:
03:32:52:82:7e:e1:05:f3:f7:03:6e:4d:3c:29:4d:29:24:55:
0c:30:b8:d1:cc:dc:7f:8b:bd:5f:91:6d:69:b2:c6:20:f6:ee:
68:31:bc:39:2b:68:53:d8:36:94:5c:13:34:72:82:12:78:33:
aa:b6:f3:ef:7f:49:71:0b:44:4f:a3:9e:b0:8e:17:b1:08:2f:
77:51:f3:f6:76:d0:fb:f4:1c:ee:bd:e2:a1:b8:b7:22:0a:15:
6c:e5:97:aa:ca:d2:3f:cd:88:22:dc:59:bf:32:f3:02:4b:5e:
e1:b8:01:36:52:b6:77:b7:c5:3b:ac:23:99:05:83:ca:b4:31:
8f:03:db:b4:b0:da:5e:c9:1f:15:83:c1:cc:43:cd:1a:98:52:
e7:ee:f1:4f:e0:c1:e6:87:ed:21:56:9f:6f:65:28:cd:31:45:
7c:61:87:bd:e9:23:51:80:88:66:53:27:7b:4d:e8:cc:85:33:
06:59:cc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org