Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/VyWSq6YgjRau2_mnK0muGRNUFLc.roa
File: VyWSq6YgjRau2_mnK0muGRNUFLc.roa (raw, json)
Hash identifier: ZELbVG7+SiWwNOpzkq4Io4JMPzN2IUgPcVocaCIy/IU=
Subject key identifier: 57:25:92:AB:A6:20:8D:16:AE:DB:F9:A7:2B:49:AE:19:13:54:14:B7
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018268E0DCA04AFF1159FF2D8CD46896472C
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/VyWSq6YgjRau2_mnK0muGRNUFLc.roa
Signing time: Thu 04 Aug 2022 12:42:23 +0000
ROA not before: Thu 04 Aug 2022 12:42:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.64.0/21 maxlen: 24
213.176.72.0/22 maxlen: 24
213.176.88.0/21 maxlen: 24
213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.20.0/22 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
62.60.224.0/22 maxlen: 24
62.60.228.0/22 maxlen: 24
62.60.232.0/22 maxlen: 24
62.60.236.0/22 maxlen: 24
62.60.240.0/22 maxlen: 24
62.60.244.0/22 maxlen: 24
62.60.248.0/22 maxlen: 24
62.60.252.0/22 maxlen: 24
62.60.200.0/21 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:e0:dc:a0:4a:ff:11:59:ff:2d:8c:d4:68:96:47:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 4 12:42:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=572592aba6208d16aedbf9a72b49ae19135414b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e4:29:0d:1c:46:bc:81:48:3f:6c:83:d2:78:
d8:11:8d:3a:e4:ef:8c:8d:1c:fd:f5:36:07:52:2b:
21:c4:8b:d8:40:fd:84:62:79:5a:ee:1e:08:02:c0:
84:00:97:db:9c:81:c9:5b:4d:12:77:dd:7d:c0:ba:
d1:2e:33:b1:e5:1c:29:55:13:63:01:b7:08:ad:2e:
19:64:88:95:13:e5:86:9a:78:9c:ca:66:f0:0f:6c:
eb:32:45:f4:05:5d:f6:95:b5:93:f0:50:03:ac:bc:
bb:33:93:8f:21:41:ce:ce:ee:73:b4:18:a8:35:31:
1a:b6:b1:bb:fb:8e:c8:9b:6e:9b:77:4b:14:82:36:
82:fd:dc:75:75:3e:d1:06:c6:4a:bf:7e:35:49:cb:
61:0d:bd:10:82:78:68:ac:7e:44:1c:81:d6:1a:52:
e7:29:2a:51:ac:ab:fe:e2:8d:ab:fe:37:d6:5a:93:
70:95:ad:fd:ba:d2:a3:37:f1:0c:dc:71:b1:cc:f2:
97:d8:62:03:77:56:c6:e6:b7:e3:aa:2c:39:2c:51:
bd:a1:0e:8b:57:fa:d8:b7:1d:6c:36:1b:e2:12:39:
e1:76:d2:44:87:09:c2:58:14:bb:f1:dd:e8:e4:a5:
e3:81:e9:e4:5a:b5:37:8a:6f:9e:72:b8:dc:f3:b1:
84:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:25:92:AB:A6:20:8D:16:AE:DB:F9:A7:2B:49:AE:19:13:54:14:B7
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/VyWSq6YgjRau2_mnK0muGRNUFLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.152.0/22
62.60.200.0-62.60.215.255
62.60.224.0/19
213.176.4.0/23
213.176.20.0/22
213.176.64.0-213.176.75.255
213.176.88.0-213.176.96.255
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
53:56:71:86:73:2a:3c:94:5f:ca:03:b0:2d:36:f2:12:87:d8:
00:7e:f0:d3:72:c4:ef:c3:a1:7c:83:d4:88:dd:33:c8:e1:9c:
39:73:c0:0b:b2:03:95:32:dd:a1:28:ac:43:27:44:75:84:04:
02:59:a4:6b:d3:75:0e:df:cd:53:35:e2:f2:df:67:b9:20:7b:
bb:43:ec:fd:55:bd:3f:9d:d9:03:c7:58:25:05:ef:bb:f5:b0:
fb:c4:57:92:e7:ea:10:3d:b2:51:fb:a5:a5:f8:ed:54:6a:9a:
65:22:d9:b9:e8:57:e9:d0:fe:5b:a6:20:bc:48:c9:4d:f8:87:
f6:a4:6d:19:d8:a4:47:15:9d:99:e2:c4:d4:51:e6:8b:81:aa:
e0:7a:d0:96:e7:38:9d:aa:e4:72:a9:d5:0d:84:2a:2b:5d:5f:
63:bb:b0:63:23:47:01:b2:c6:19:67:b1:41:86:09:a2:54:9e:
75:22:a7:c0:b2:d8:df:25:4b:d8:5e:a3:f0:e1:2f:b0:90:32:
68:85:52:36:df:aa:cb:95:c5:17:0d:69:3e:aa:53:eb:6b:68:
6d:4a:b0:6e:4b:16:48:e2:25:5c:5d:b0:5f:c0:b7:18:3c:f8:
fb:2c:7f:db:bd:02:1d:8a:5d:dc:47:74:d6:dd:6a:dd:19:0a:
30:66:b6:d3
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAYJo4NygSv8RWf8tjNRolkcsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjIwODA0MTI0MjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzI1OTJhYmE2MjA4ZDE2YWVkYmY5YTcyYjQ5YWUxOTEzNTQxNGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuQpDRxGvIFIP2yD0njYEY065O+M
jRz99TYHUishxIvYQP2EYnla7h4IAsCEAJfbnIHJW00Sd919wLrRLjOx5RwpVRNj
AbcIrS4ZZIiVE+WGmnicymbwD2zrMkX0BV32lbWT8FADrLy7M5OPIUHOzu5ztBio
NTEatrG7+47Im26bd0sUgjaC/dx1dT7RBsZKv341ScthDb0QgnhorH5EHIHWGlLn
KSpRrKv+4o2r/jfWWpNwla39utKjN/EM3HGxzPKX2GIDd1bG5rfjqiw5LFG9oQ6L
V/rYtx1sNhviEjnhdtJEhwnCWBS78d3o5KXjgenkWrU3im+ecrjc87GEOwIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFFclkqumII0Wrtv5pytJrhkTVBS3MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvVnlXU3E2WWdqUmF1Ml9tbkswbXVHUk5VRkxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcjAMAwQHPjyA
AwQBPjyIMAwDBAA+PIsDBAQ+PIADBAA+PJEDBAI+PJgwDAMEAz48yAMEAz480AME
BT484AMEAdWwBAMEAtWwFDAMAwQG1bBAAwQC1bBIMAwDBAPVsFgDBADVsGAwDAME
AdWwegMEAdWwfDANBgkqhkiG9w0BAQsFAAOCAQEAU1ZxhnMqPJRfygOwLTbyEofY
AH7w03LE78OhfIPUiN0zyOGcOXPAC7IDlTLdoSisQydEdYQEAlmka9N1Dt/NUzXi
8t9nuSB7u0Ps/VW9P53ZA8dYJQXvu/Ww+8RXkufqED2yUfulpfjtVGqaZSLZuehX
6dD+W6YgvEjJTfiH9qRtGdikRxWdmeLE1FHmi4Gq4HrQluc4narkcqnVDYQqK11f
Y7uwYyNHAbLGGWexQYYJolSedSKnwLLY3yVL2F6j8OEvsJAyaIVSNt+qy5XFFw1p
PqpT62tobUqwbksWSOIlXF2wX8C3GDz4+yx/270CHYpd3Ed01t1q3RkKMGa20w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:35 2023 by rpki-client on console-fra.rpki-client.org