Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/JJ1kLGPo5-acZILQHDvWUXwDnKU.roa
File: JJ1kLGPo5-acZILQHDvWUXwDnKU.roa (raw, json)
Hash identifier: hlZhevcF9QbM0E4u0c8wQXjqkgUK/q/0fRzV6BhmXxM=
Subject key identifier: 24:9D:64:2C:63:E8:E7:E6:9C:64:82:D0:1C:3B:D6:51:7C:03:9C:A5
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01840B1E6A7F4A5E7EFB01C1A138799377C5
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/JJ1kLGPo5-acZILQHDvWUXwDnKU.roa
Signing time: Mon 24 Oct 2022 17:50:53 +0000
ROA not before: Mon 24 Oct 2022 17:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.20.0/22 maxlen: 24
213.176.24.0/21 maxlen: 24
62.60.200.0/21 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0b:1e:6a:7f:4a:5e:7e:fb:01:c1:a1:38:79:93:77:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Oct 24 17:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=249d642c63e8e7e69c6482d01c3bd6517c039ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8d:b4:8d:25:b1:bb:36:a0:3a:8c:40:c8:02:
1f:13:73:a3:fa:d9:77:2f:7f:12:f5:36:7f:98:3d:
98:f6:62:58:d1:e8:6c:3c:ae:ce:ed:ee:e6:4d:be:
f4:c0:bf:e6:9a:9e:04:a8:67:4d:9a:33:93:4b:eb:
dd:de:b2:f4:58:dc:67:58:84:ea:24:3b:97:d7:14:
81:57:a2:4a:e8:65:e1:05:0b:9e:7a:88:fb:99:1b:
5b:f3:94:a0:fb:42:3b:9e:20:79:4d:a4:cd:9f:e6:
ff:e8:71:e5:49:62:51:93:1a:99:fb:4e:2a:af:c0:
3d:d4:64:45:f8:ea:fc:6c:65:58:06:d4:56:5d:2b:
04:a7:fa:81:5f:1f:bb:f8:f0:85:f6:82:d3:a9:71:
26:9d:90:4c:cc:5b:1e:17:13:74:22:56:55:83:71:
e7:5b:65:7e:d7:aa:56:1b:3f:30:76:31:2f:bd:b6:
ea:7e:46:54:76:06:2b:86:c6:6f:f4:d4:73:f4:8d:
f7:cd:53:ff:bf:ec:7d:42:c9:59:e6:c3:54:c4:32:
99:18:2c:5b:a8:34:69:a5:00:ff:3f:0e:07:2a:cc:
d0:06:9c:5e:ee:e9:c3:1c:44:10:d0:b3:f0:f4:4d:
6a:16:b7:64:4d:9f:a6:ec:ac:e6:2f:9c:e0:cb:99:
31:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9D:64:2C:63:E8:E7:E6:9C:64:82:D0:1C:3B:D6:51:7C:03:9C:A5
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/JJ1kLGPo5-acZILQHDvWUXwDnKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.152.0/22
62.60.200.0-62.60.211.255
213.176.4.0/23
213.176.20.0-213.176.31.255
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
4b:6d:a3:52:83:0b:d9:0c:fa:92:2f:dc:5d:46:36:5d:67:92:
c5:d4:34:63:93:5d:91:af:a8:e1:d9:b3:05:4a:17:8d:81:25:
73:d7:ae:18:90:b1:7a:d3:69:e0:ef:ad:5c:96:ba:00:6a:6e:
30:bd:26:92:b4:77:2a:5b:10:80:00:1e:49:21:b4:19:53:a0:
61:63:b4:f6:4d:1f:15:e6:d3:ab:53:e3:da:d6:5b:95:00:1a:
87:58:8e:cb:2f:cd:9a:7d:ad:bc:ba:80:d1:4c:37:32:96:c5:
b4:c0:40:04:c5:4e:cb:73:5a:2e:55:2a:1b:21:fb:6e:3f:46:
69:9c:4c:57:98:03:09:a3:db:52:b1:f0:58:12:7a:a5:19:66:
4c:b1:36:1b:b0:d4:42:32:97:ca:61:03:ec:4c:37:37:aa:a7:
8e:33:5c:94:de:02:7c:69:eb:29:df:e9:4f:53:f6:fe:41:b4:
a8:5c:4f:e5:a5:86:09:d0:4f:ce:7b:77:d6:f4:61:8a:49:f7:
db:b8:b7:48:cf:e4:31:2d:47:90:a5:e0:4a:1c:71:51:c3:fc:
e7:1e:78:d8:0d:62:d4:73:28:b5:df:65:25:29:e2:c0:1e:76:
43:41:85:bc:02:eb:dc:a7:18:b5:a3:bd:ba:cb:91:75:27:9f:
6f:07:30:0d
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAYQLHmp/Sl5++wHBoTh5k3fFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjIxMDI0MTc1MDUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDlkNjQyYzYzZThlN2U2OWM2NDgyZDAxYzNiZDY1MTdjMDM5Y2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwo20jSWxuzagOoxAyAIfE3Oj+tl3
L38S9TZ/mD2Y9mJY0ehsPK7O7e7mTb70wL/mmp4EqGdNmjOTS+vd3rL0WNxnWITq
JDuX1xSBV6JK6GXhBQueeoj7mRtb85Sg+0I7niB5TaTNn+b/6HHlSWJRkxqZ+04q
r8A91GRF+Or8bGVYBtRWXSsEp/qBXx+7+PCF9oLTqXEmnZBMzFseFxN0IlZVg3Hn
W2V+16pWGz8wdjEvvbbqfkZUdgYrhsZv9NRz9I33zVP/v+x9QslZ5sNUxDKZGCxb
qDRppQD/Pw4HKszQBpxe7unDHEQQ0LPw9E1qFrdkTZ+m7KzmL5zgy5kxTQIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFCSdZCxj6OfmnGSC0Bw71lF8A5ylMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvSkoxa0xHUG81LWFjWklMUUhEdldVWHdEbktVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeMAwDBAc+PIAD
BAE+PIgwDAMEAD48iwMEBD48gAMEAD48kQMEAj48mDAMAwQDPjzIAwQCPjzQAwQB
1bAEMAwDBALVsBQDBAXVsAADBADVsGAwDAMEAdWwegMEAdWwfDANBgkqhkiG9w0B
AQsFAAOCAQEAS22jUoML2Qz6ki/cXUY2XWeSxdQ0Y5Ndka+o4dmzBUoXjYElc9eu
GJCxetNp4O+tXJa6AGpuML0mkrR3KlsQgAAeSSG0GVOgYWO09k0fFebTq1Pj2tZb
lQAah1iOyy/Nmn2tvLqA0Uw3MpbFtMBABMVOy3NaLlUqGyH7bj9GaZxMV5gDCaPb
UrHwWBJ6pRlmTLE2G7DUQjKXymED7Ew3N6qnjjNclN4CfGnrKd/pT1P2/kG0qFxP
5aWGCdBPznt31vRhikn327i3SM/kMS1HkKXgShxxUcP85x542A1i1HMotd9lJSni
wB52Q0GFvALr3KcYtaO9usuRdSefbwcwDQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org