Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/sPLAjtAsk9XpgKDaLbJvJO_et2Y.roa
File: sPLAjtAsk9XpgKDaLbJvJO_et2Y.roa (raw, json)
Hash identifier: CJ5LqLElI7iFeg8Ev5iIntd7s3nGPV0T3IKX89zYlh0=
Subject key identifier: B0:F2:C0:8E:D0:2C:93:D5:E9:80:A0:DA:2D:B2:6F:24:EF:DE:B7:66
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018514A285A946040E1821DD1ABC697FD0B9
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/sPLAjtAsk9XpgKDaLbJvJO_et2Y.roa
Signing time: Thu 15 Dec 2022 07:14:33 +0000
ROA not before: Thu 15 Dec 2022 07:14:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.200.0/21 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:14:a2:85:a9:46:04:0e:18:21:dd:1a:bc:69:7f:d0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Dec 15 07:14:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0f2c08ed02c93d5e980a0da2db26f24efdeb766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9f:11:89:ca:84:79:be:26:14:f9:8c:25:ea:
6f:40:f0:dd:7f:e8:55:ac:6b:4f:35:22:ba:f4:ca:
95:8c:28:5a:30:1d:5c:96:8b:dc:53:c1:9c:33:97:
5d:9d:79:07:a9:27:87:2f:ca:f4:1b:ff:9a:eb:42:
9a:2e:9a:74:44:fb:d1:30:39:f8:cb:6b:20:ef:0d:
38:95:3f:a4:57:94:e5:51:f0:0c:67:bf:5a:00:e6:
9e:9f:b1:ea:54:01:7a:73:b1:c2:38:1b:38:da:3f:
63:ce:8c:c4:20:00:14:6f:ad:d8:b8:96:32:ed:b7:
82:94:ce:26:9c:ea:e3:9e:78:c3:87:da:70:b1:b5:
59:de:15:d6:6e:2c:7f:64:85:ad:48:f8:4e:3b:59:
6a:84:9e:53:ac:ca:1b:2f:e5:54:48:20:3a:68:3d:
14:ec:2a:92:75:d7:fe:53:ff:3c:0f:26:14:f8:ef:
de:38:c8:5e:43:2f:fb:a6:13:67:d8:c7:56:75:da:
e2:50:ea:db:87:6c:2a:61:e6:d0:19:51:3a:57:71:
0d:f6:f1:63:0f:6b:61:6d:1d:b6:86:13:28:8a:69:
ac:6d:0d:f0:03:ef:46:35:d4:f5:b5:e4:e4:0a:37:
34:3a:2f:2e:c2:0d:66:2b:96:de:88:d4:87:4b:fe:
9e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F2:C0:8E:D0:2C:93:D5:E9:80:A0:DA:2D:B2:6F:24:EF:DE:B7:66
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/sPLAjtAsk9XpgKDaLbJvJO_et2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.152.0/22
62.60.200.0-62.60.211.255
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
2f:f2:70:f7:e3:7e:b0:19:73:43:26:79:45:54:de:35:ee:4b:
6b:94:14:ea:da:a2:bc:10:29:7c:df:25:bc:49:a1:b5:77:b8:
bb:75:61:cb:6b:a8:13:b7:c1:4f:45:7d:bf:b5:e8:ab:26:f3:
ef:3c:27:15:45:2b:85:4e:16:ea:9b:0a:1d:d1:73:66:b1:c2:
83:99:77:b0:af:8c:7f:e1:70:0d:ba:76:79:cf:eb:c7:41:35:
c2:f7:6f:10:1f:03:31:d5:25:8f:df:44:0f:06:a0:59:a7:c5:
8a:9a:33:19:ce:db:7e:2b:31:82:e0:f9:35:d2:9c:46:55:1b:
e3:ef:ee:14:9e:5c:4b:26:6b:ec:7d:85:88:a0:ff:6d:b4:77:
88:dd:a9:37:fb:9d:65:1a:89:4a:40:66:7d:d1:59:a7:58:ad:
9c:45:de:67:31:f6:c3:3d:18:ef:43:45:c0:c7:52:e3:99:de:
30:57:99:fd:7d:bd:cb:30:94:a4:dd:62:0a:3c:34:1b:d2:14:
26:00:59:20:f7:e6:5d:11:c6:bd:a8:de:15:f3:51:0b:9f:a1:
e8:28:69:aa:39:e0:42:65:61:e5:fd:56:dd:b6:7e:0d:b4:ca:
24:af:f2:9e:27:b1:c8:e5:bb:29:7c:4c:74:8d:a4:fa:8f:a5:
a2:89:d6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:30 2024 by rpki-client on console-ams.rpki-client.org