Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/HIVFxMYU4JLPQ-KExCg2gY29Gd8.roa
File: HIVFxMYU4JLPQ-KExCg2gY29Gd8.roa (raw, json)
Hash identifier: BQ+4c7t/lcxha81HeTgxIpMYewY+3Vqky3paqPrc8Fg=
Subject key identifier: 1C:85:45:C4:C6:14:E0:92:CF:43:E2:84:C4:28:36:81:8D:BD:19:DF
Certificate issuer: /CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Certificate serial: 0184EC96DC405D152910AB67478056220DA8
Authority key identifier: EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/HIVFxMYU4JLPQ-KExCg2gY29Gd8.roa
Signing time: Wed 07 Dec 2022 12:37:00 +0000
ROA not before: Wed 07 Dec 2022 12:37:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15598
IP address blocks: 62.146.192.0/22 maxlen: 22
62.146.188.0/22 maxlen: 22
62.146.196.0/22 maxlen: 22
62.146.204.0/22 maxlen: 22
62.146.200.0/22 maxlen: 22
62.146.212.0/22 maxlen: 22
62.146.208.0/22 maxlen: 22
62.146.216.0/22 maxlen: 22
62.146.220.0/22 maxlen: 22
62.146.240.0/22 maxlen: 22
62.146.136.0/22 maxlen: 22
62.146.144.0/22 maxlen: 22
212.112.224.0/19 maxlen: 19
62.146.140.0/22 maxlen: 22
62.146.152.0/22 maxlen: 22
62.146.148.0/22 maxlen: 22
62.146.156.0/22 maxlen: 22
62.146.164.0/22 maxlen: 22
62.146.160.0/22 maxlen: 22
62.146.184.0/22 maxlen: 22
62.146.252.0/22 maxlen: 22
62.146.248.0/22 maxlen: 22
62.146.4.0/22 maxlen: 22
62.146.0.0/22 maxlen: 22
62.146.8.0/22 maxlen: 22
62.146.12.0/22 maxlen: 22
62.146.17.0/24 maxlen: 24
62.146.16.0/22 maxlen: 22
62.146.24.0/22 maxlen: 22
62.146.20.0/22 maxlen: 22
62.146.84.0/22 maxlen: 22
62.146.80.0/22 maxlen: 22
62.146.88.0/22 maxlen: 22
62.146.96.0/22 maxlen: 22
62.146.92.0/22 maxlen: 22
62.146.104.0/22 maxlen: 22
62.146.100.0/22 maxlen: 22
62.146.112.0/22 maxlen: 22
62.146.108.0/22 maxlen: 22
62.146.116.0/22 maxlen: 22
62.146.124.0/22 maxlen: 22
62.146.120.0/22 maxlen: 22
62.146.132.0/22 maxlen: 22
62.146.128.0/22 maxlen: 22
62.146.28.0/22 maxlen: 22
62.146.36.0/22 maxlen: 22
62.146.32.0/22 maxlen: 22
62.146.44.0/22 maxlen: 22
62.146.40.0/22 maxlen: 22
62.146.48.0/22 maxlen: 22
62.146.56.0/22 maxlen: 22
62.146.52.0/22 maxlen: 22
62.146.64.0/22 maxlen: 22
62.146.60.0/22 maxlen: 22
62.146.68.0/22 maxlen: 22
62.146.76.0/22 maxlen: 22
62.146.72.0/22 maxlen: 22
81.17.104.0/22 maxlen: 22
81.17.112.0/22 maxlen: 22
81.17.108.0/22 maxlen: 22
81.17.116.0/22 maxlen: 22
80.190.136.0/21 maxlen: 21
80.190.144.0/21 maxlen: 21
80.190.152.0/21 maxlen: 21
80.190.160.0/21 maxlen: 21
80.190.168.0/21 maxlen: 21
80.190.176.0/21 maxlen: 21
80.190.184.0/21 maxlen: 21
80.190.88.0/21 maxlen: 21
80.190.96.0/21 maxlen: 21
80.190.104.0/21 maxlen: 21
80.190.112.0/21 maxlen: 21
80.190.120.0/21 maxlen: 21
80.190.128.0/21 maxlen: 21
80.190.240.0/21 maxlen: 21
80.190.248.0/21 maxlen: 21
80.190.192.0/21 maxlen: 21
212.123.96.0/19 maxlen: 19
80.190.200.0/21 maxlen: 21
80.190.208.0/21 maxlen: 21
80.190.216.0/21 maxlen: 21
80.190.224.0/21 maxlen: 21
80.190.232.0/21 maxlen: 21
82.149.68.0/22 maxlen: 22
82.149.84.0/22 maxlen: 22
82.149.88.0/22 maxlen: 22
82.149.92.0/22 maxlen: 22
82.149.64.0/22 maxlen: 22
80.190.32.0/21 maxlen: 21
80.190.40.0/21 maxlen: 21
80.190.48.0/21 maxlen: 21
80.190.56.0/21 maxlen: 21
80.190.64.0/21 maxlen: 21
80.190.0.0/21 maxlen: 21
80.190.8.0/21 maxlen: 21
80.190.16.0/21 maxlen: 21
80.190.24.0/21 maxlen: 21
2a01:138::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:96:dc:40:5d:15:29:10:ab:67:47:80:56:22:0d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Validity
Not Before: Dec 7 12:37:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c8545c4c614e092cf43e284c42836818dbd19df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cb:cc:4e:2e:9c:02:04:b8:94:87:10:1b:d5:
2a:8a:82:93:9a:e5:00:28:c5:84:77:ca:5d:12:fa:
92:68:0d:7a:56:ff:37:08:d7:58:80:c7:41:13:55:
72:8e:92:b9:a5:aa:9d:cd:e8:27:d4:bd:c5:67:fe:
33:23:b5:1a:c4:bb:60:f4:2f:0a:54:e6:5a:0e:8e:
52:41:fd:e8:57:b1:3b:91:6c:46:90:12:43:df:48:
23:89:24:24:bc:48:22:46:fc:19:8a:58:d0:21:8f:
45:7b:83:0c:b6:34:de:03:ed:97:5d:76:c7:8e:ed:
03:57:46:11:8c:f6:0d:a0:ad:cf:3f:39:d8:92:58:
0a:8d:36:d2:bf:ae:fd:fe:aa:e1:a8:9b:29:bd:e2:
af:f9:79:3a:19:55:80:1a:05:68:00:63:42:0a:55:
38:14:47:36:71:74:7b:2a:00:e1:99:76:aa:16:8c:
86:d0:f3:8c:0d:39:b3:45:20:8f:3d:10:f1:4c:6d:
e3:e6:de:3a:de:57:74:ac:d8:69:52:a3:11:01:dd:
7f:4c:71:36:86:09:d5:9c:a6:12:18:7b:4e:eb:95:
b1:ab:f6:18:af:fd:21:55:d8:8b:6c:a5:77:11:1b:
4a:82:6c:3a:3d:c0:16:c4:8b:81:d8:92:a3:bc:cd:
5e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:85:45:C4:C6:14:E0:92:CF:43:E2:84:C4:28:36:81:8D:BD:19:DF
X509v3 Authority Key Identifier:
keyid:EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/HIVFxMYU4JLPQ-KExCg2gY29Gd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/7DVDqgA3Pp5NEOZMg9N3mzeIiME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.146.0.0-62.146.167.255
62.146.184.0-62.146.223.255
62.146.240.0/22
62.146.248.0/21
80.190.0.0-80.190.71.255
80.190.88.0-80.190.255.255
81.17.104.0-81.17.119.255
82.149.64.0/21
82.149.84.0-82.149.95.255
212.112.224.0/19
212.123.96.0/19
IPv6:
2a01:138::/32
Signature Algorithm: sha256WithRSAEncryption
a3:53:c2:4f:d7:34:cb:2c:d0:75:47:9d:21:64:a0:66:33:e9:
92:ee:54:5d:61:eb:90:09:d2:cf:78:b6:4a:a8:ec:e1:90:2c:
38:b3:3a:c3:a7:7d:7c:63:51:e1:56:01:1c:e8:25:88:f5:59:
09:41:a8:18:af:c9:a6:68:e0:e7:55:d2:e1:36:64:85:f2:fc:
b1:a5:dc:a1:67:be:96:38:3b:c1:62:a1:df:76:6a:e3:c5:e0:
00:dc:8c:06:31:1f:60:1e:a1:0c:1c:b5:5e:45:37:13:b8:ff:
a2:fc:c8:13:1f:72:f6:f1:75:2c:eb:42:14:67:2d:29:f2:15:
65:3d:b7:ae:05:8e:56:8e:9f:d0:41:6c:50:85:48:96:c4:e1:
0c:b7:8f:12:9f:eb:af:3a:f7:80:88:a6:59:3f:be:12:a6:30:
ec:bf:99:78:19:86:e5:76:c1:87:ce:9d:e7:ed:7a:d5:fa:b0:
fb:66:47:0f:2e:c7:d3:cb:24:d2:09:89:69:9b:e6:5e:64:0c:
48:f1:e6:25:e7:c6:76:a7:eb:32:b6:14:6f:78:c2:cd:af:ca:
b5:83:e2:be:bf:dc:ff:66:0a:f0:89:c7:62:32:2d:a8:ac:b3:
29:17:54:b0:74:fd:7d:04:fa:bb:1b:8d:1b:94:4b:38:9e:cf:
80:aa:61:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-fra.rpki-client.org