Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HVDZxjjKaCbBC9uGVMt0kLC6ZT4.roa
File: HVDZxjjKaCbBC9uGVMt0kLC6ZT4.roa (raw, json)
Hash identifier: VbbMYDji44tGEzNq+AANQLZcgR2LiinM1ggSLKJbD6M=
Subject key identifier: 1D:50:D9:C6:38:CA:68:26:C1:0B:DB:86:54:CB:74:90:B0:BA:65:3E
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01850AF25B98ABA739C1C50859D73A976C03
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HVDZxjjKaCbBC9uGVMt0kLC6ZT4.roa
Signing time: Tue 13 Dec 2022 10:05:33 +0000
ROA not before: Tue 13 Dec 2022 10:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.20.0/22 maxlen: 24
213.176.24.0/22 maxlen: 24
213.176.28.0/22 maxlen: 24
62.60.200.0/21 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
62.60.148.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:f2:5b:98:ab:a7:39:c1:c5:08:59:d7:3a:97:6c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Dec 13 10:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d50d9c638ca6826c10bdb8654cb7490b0ba653e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c3:71:83:7d:fa:36:d4:80:c3:c9:3d:94:ec:
2c:b2:14:d0:9f:aa:e5:d5:01:db:18:1f:77:b7:89:
00:55:4a:9d:b7:ea:22:3e:d8:18:43:ca:7c:c1:a3:
52:9a:f2:2c:bc:16:f5:c9:38:a3:69:cd:8f:ae:92:
c9:7b:93:d0:29:94:6b:a6:32:e8:f8:73:9b:25:c2:
34:f7:85:9d:d1:fe:e3:c4:8e:65:9e:4d:54:0a:23:
28:c5:07:25:db:02:c2:da:10:4b:63:48:5a:37:25:
6d:e2:e4:e4:15:ab:9c:fc:b5:79:ae:63:b5:62:17:
9c:10:b8:c5:8d:d7:14:f2:62:8c:15:db:f8:d5:2d:
c7:94:41:9e:22:67:d7:1f:d5:fe:ff:bc:5c:5a:89:
26:7c:28:ae:09:06:25:93:58:9d:7d:1e:73:2b:91:
40:b8:97:35:b6:9d:e3:72:b0:c8:1d:42:57:f1:07:
23:45:eb:27:d6:43:31:98:a6:59:01:02:db:b2:8b:
a5:b0:75:ca:02:9f:76:37:eb:6a:7d:95:be:bf:44:
02:e3:ca:b6:84:d4:61:3a:8d:a9:1b:64:17:48:f4:
aa:be:43:23:cc:8d:8f:32:ea:9a:2a:a4:3d:c0:c1:
83:41:37:3b:2c:19:fe:23:a9:7b:de:48:c6:9d:58:
b7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:50:D9:C6:38:CA:68:26:C1:0B:DB:86:54:CB:74:90:B0:BA:65:3E
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HVDZxjjKaCbBC9uGVMt0kLC6ZT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.148.0-62.60.155.255
62.60.200.0-62.60.211.255
213.176.4.0/23
213.176.20.0-213.176.31.255
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
02:ac:64:a6:8d:0e:16:9d:7c:90:4a:28:a4:1a:56:8c:05:ec:
18:02:43:e7:69:3b:39:11:16:95:ae:2e:d8:5b:cf:69:c4:c8:
8f:24:f5:10:cf:82:0a:4d:28:b8:8c:85:d5:17:ba:2b:d9:89:
c1:ff:22:87:c0:e0:7a:6b:14:7c:ab:b7:b8:98:10:97:b6:18:
39:7a:da:f8:82:8f:d9:8d:06:89:1d:1f:0b:19:cc:51:30:ef:
4a:02:37:fd:14:7c:3d:c3:dc:62:48:37:7f:1c:7b:3c:f2:e7:
06:20:12:69:92:cc:35:c2:3d:54:f9:f9:27:99:2a:a0:e2:57:
02:cd:04:0f:39:15:e6:cb:49:25:5c:60:b7:3f:f7:6e:99:4c:
14:24:cb:e1:1b:5e:a3:b2:f4:39:64:a8:13:a8:43:3e:8d:94:
8f:a9:7f:20:df:82:cf:f3:b7:d6:a1:e3:3d:6e:8d:20:94:3c:
cb:d2:33:a2:08:15:9a:5d:2a:2c:a1:44:ad:69:86:ad:ec:27:
58:79:98:d6:3c:20:81:20:61:42:0c:f1:10:50:1f:92:8c:cb:
6e:92:f2:52:fe:4c:53:62:b6:12:19:b6:5f:a5:13:8f:e5:bb:
c9:df:b4:20:22:ea:04:71:65:20:1b:11:cb:19:f8:1b:ea:39:
ba:da:98:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org