Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/vKmgSofLAQweOrjBNiLJbLACWQ0.roa
File: vKmgSofLAQweOrjBNiLJbLACWQ0.roa (raw, json)
Hash identifier: vVO3Bl8Ec1eMZI+kOcNH1gLVZ3ks7M9oJRm5CwO/qhU=
Subject key identifier: BC:A9:A0:4A:87:CB:01:0C:1E:3A:B8:C1:36:22:C9:6C:B0:02:59:0D
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 0B9303E2
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/vKmgSofLAQweOrjBNiLJbLACWQ0.roa
Signing time: Sat 01 Jan 2022 05:06:04 +0000
ROA not before: Sat 01 Jan 2022 05:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15670
IP address blocks: 62.177.176.0/20 maxlen: 24
93.125.128.0/17 maxlen: 24
62.177.192.0/18 maxlen: 24
82.204.0.0/18 maxlen: 24
82.204.0.0/17 maxlen: 24
82.204.10.0/24 maxlen: 24
78.40.192.0/21 maxlen: 24
82.204.28.0/22 maxlen: 24
82.204.48.0/20 maxlen: 24
78.27.0.0/18 maxlen: 24
62.177.128.0/17 maxlen: 24
95.36.0.0/16 maxlen: 24
62.177.128.0/24 maxlen: 24
62.177.133.0/24 maxlen: 24
82.204.120.0/22 maxlen: 24
62.177.136.0/22 maxlen: 24
82.204.126.0/24 maxlen: 24
62.177.144.0/24 maxlen: 24
62.177.146.0/23 maxlen: 24
62.177.148.0/24 maxlen: 24
62.177.150.0/23 maxlen: 24
62.177.152.0/21 maxlen: 24
62.177.160.0/21 maxlen: 24
62.177.168.0/24 maxlen: 24
62.177.170.0/23 maxlen: 24
62.177.172.0/22 maxlen: 24
82.204.64.0/19 maxlen: 24
82.204.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194184162 (0xb9303e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 1 05:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bca9a04a87cb010c1e3ab8c13622c96cb002590d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:33:9a:e7:f1:17:8b:b9:a1:89:6d:8d:41:33:
1d:49:2f:d1:9b:e4:42:ad:27:1b:f9:ff:1c:e3:e2:
4d:bc:70:30:3f:5d:c2:75:0b:43:93:97:60:4d:25:
1b:53:1e:b2:98:b8:ba:23:b3:40:fa:9f:d3:7f:fa:
23:67:ea:b4:03:99:fd:0f:c9:2f:f4:ce:70:94:d5:
54:01:65:7f:1a:f1:cb:a3:9c:a4:1f:e4:83:ab:c1:
fe:87:4f:7e:38:50:29:da:98:b5:dc:73:71:12:05:
78:9a:79:2a:c1:34:6e:33:9a:7a:73:f7:9e:a8:90:
ee:1b:29:ec:04:3a:39:04:06:84:70:8f:11:d1:f5:
10:c3:9e:6f:4e:65:68:f2:8e:e2:d5:03:11:83:cd:
7b:90:9a:5c:0c:73:22:3a:53:ea:21:cf:e6:b3:fa:
e8:ee:9b:9f:05:6f:c1:c3:dd:1b:6b:1e:3a:c4:70:
63:7a:58:be:18:b5:2b:70:22:eb:eb:90:e1:9d:ba:
8b:ea:81:e6:f7:b4:6f:7e:76:80:32:eb:85:3b:4c:
48:39:cc:e8:85:9f:3f:06:3f:4b:76:82:55:d1:a2:
71:6f:a6:de:10:cc:7c:24:6a:be:09:ba:74:ba:41:
97:26:55:2c:d5:6d:e5:d4:ad:ba:59:73:bb:88:3b:
9c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A9:A0:4A:87:CB:01:0C:1E:3A:B8:C1:36:22:C9:6C:B0:02:59:0D
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/vKmgSofLAQweOrjBNiLJbLACWQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.177.128.0/17
78.27.0.0/18
78.40.192.0/21
82.204.0.0/17
93.125.128.0/17
95.36.0.0/16
Signature Algorithm: sha256WithRSAEncryption
74:1f:bc:12:a5:ba:17:ef:18:78:59:c4:c9:2e:b6:07:55:90:
44:9e:31:09:b5:9e:78:ab:86:58:91:f1:8d:78:3c:d6:1a:2d:
69:35:f7:e5:a5:83:de:03:04:36:04:10:bf:4c:f0:16:53:90:
24:f6:a1:61:b7:19:17:c3:ba:09:43:59:fa:e3:85:ed:4c:97:
e5:cf:b9:7e:41:55:e1:41:49:4f:bb:a0:0f:9e:16:2e:1c:75:
ac:bc:bd:d9:0a:ad:3d:70:3a:a9:13:aa:da:14:f5:97:e0:45:
6d:9e:16:f0:b5:75:95:ef:9f:37:fc:d9:cf:2a:cd:79:31:be:
6f:64:1b:6a:05:bb:4a:32:46:b8:bd:32:13:b6:21:02:65:a0:
bd:ab:5a:40:65:68:0b:e2:7e:ad:12:11:1d:eb:0c:19:39:b3:
bf:f8:8d:d9:b5:46:6e:b3:52:69:59:70:29:fb:41:5f:a5:9d:
5c:56:ef:87:d4:54:b8:03:a5:ba:01:11:15:bc:e7:b1:af:ca:
a0:52:75:27:9a:d3:f0:f9:10:85:ab:8a:8e:da:9e:82:cc:ec:
f3:52:22:d1:b6:69:5d:01:b0:26:ac:dc:61:28:da:f6:9b:59:
95:25:76:9f:f5:17:19:b8:44:d1:0f:b4:05:ca:95:97:d3:56:
fd:70:76:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org