Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/xjcweY1gGzI5IiVOp-tnl5I4o0Y.roa
File: xjcweY1gGzI5IiVOp-tnl5I4o0Y.roa (raw, json)
Hash identifier: 77oM11miCYufcy+EIE4TWUAa3y7gUJTAVP6fRmq/EDw=
Subject key identifier: C6:37:30:79:8D:60:1B:32:39:22:25:4E:A7:EB:67:97:92:38:A3:46
Certificate issuer: /CN=8559fea7e83e64e5d82562313c3a3f190f49f032
Certificate serial: 0205048F
Authority key identifier: 85:59:FE:A7:E8:3E:64:E5:D8:25:62:31:3C:3A:3F:19:0F:49:F0:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVn-p-g-ZOXYJWIxPDo_GQ9J8DI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/xjcweY1gGzI5IiVOp-tnl5I4o0Y.roa
Signing time: Sat 01 Jan 2022 14:04:34 +0000
ROA not before: Sat 01 Jan 2022 14:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200869
IP address blocks: 185.93.17.0/24 maxlen: 24
185.93.16.0/24 maxlen: 24
185.93.19.0/24 maxlen: 24
185.93.18.0/24 maxlen: 24
62.112.16.0/24 maxlen: 24
62.112.15.0/24 maxlen: 24
62.112.14.0/24 maxlen: 24
62.112.17.0/24 maxlen: 24
62.112.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33883279 (0x205048f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8559fea7e83e64e5d82562313c3a3f190f49f032
Validity
Not Before: Jan 1 14:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c63730798d601b323922254ea7eb67979238a346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:b3:f2:0a:f4:9a:8d:39:b5:33:a7:d5:e0:
ac:cb:3e:58:03:ca:5a:d1:3c:92:1b:47:88:09:0d:
17:27:3b:14:00:ff:3f:b9:7c:9a:18:78:7b:15:12:
13:97:f4:66:17:7e:d4:c1:3f:2c:ab:e5:3d:c7:1d:
f2:e7:c1:9f:bb:de:9b:4f:5c:69:b3:49:95:40:b2:
aa:b9:1f:30:02:a9:b5:bb:e5:a1:95:61:0d:47:42:
3f:2a:18:fd:52:ad:41:f4:d1:1e:33:e8:08:8d:bc:
2f:02:94:9b:bf:43:27:b4:29:32:2c:6b:e2:5a:1c:
f1:bf:df:58:a6:94:9f:01:6b:46:f6:3b:95:cd:7b:
d2:16:d5:b9:98:e9:9f:29:b3:c8:a0:1b:ca:9a:f5:
00:73:d0:5e:3f:1f:c2:bd:ee:86:ec:6f:83:79:fd:
60:b8:4e:ae:70:56:66:cd:7c:4e:92:8c:79:c4:3f:
d9:30:20:d9:87:68:36:08:4f:16:03:a7:60:2a:43:
fb:b4:da:de:58:17:a4:6a:f4:47:b6:86:2e:bd:e8:
e6:d7:19:61:69:0e:0c:03:29:2c:58:5b:e6:10:2d:
ba:1f:ef:2d:bf:d5:6a:8f:36:16:ee:46:79:d5:fb:
85:41:65:c0:72:62:27:8a:82:fc:86:ae:56:ec:8b:
06:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:37:30:79:8D:60:1B:32:39:22:25:4E:A7:EB:67:97:92:38:A3:46
X509v3 Authority Key Identifier:
keyid:85:59:FE:A7:E8:3E:64:E5:D8:25:62:31:3C:3A:3F:19:0F:49:F0:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVn-p-g-ZOXYJWIxPDo_GQ9J8DI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/xjcweY1gGzI5IiVOp-tnl5I4o0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76e87d-7595-4ba1-a2d7-870e64d464d5/1/hVn-p-g-ZOXYJWIxPDo_GQ9J8DI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.14.0-62.112.17.255
62.112.20.0/24
185.93.16.0/22
Signature Algorithm: sha256WithRSAEncryption
91:f1:9c:c5:06:df:4b:cd:c5:be:94:fb:6e:b4:5a:cd:e5:d5:
a7:28:0b:2d:e6:25:ef:bc:76:01:04:64:0c:80:ff:63:41:71:
d6:fd:14:af:35:ca:8c:35:ae:b6:a8:be:3b:a6:d5:13:88:f2:
c5:4e:d6:cc:cf:af:c8:b8:be:19:9f:d1:71:d8:9d:e8:34:e3:
cc:ff:c0:21:74:71:f7:27:9b:cb:36:91:5c:56:ae:c5:d6:3d:
11:53:7c:1e:20:a7:c0:07:09:54:98:75:4d:84:71:23:a0:a2:
5e:61:7e:c9:c9:70:35:ed:bc:32:bc:85:94:5c:80:d2:81:99:
10:10:80:90:92:a1:d3:28:c0:75:55:f6:48:b5:32:41:ab:33:
4b:2d:04:ab:84:15:6a:54:89:57:37:a3:10:12:da:2f:47:78:
c4:18:49:7a:de:47:74:15:a7:23:f1:9a:65:36:16:0a:bc:e5:
f2:ed:5e:8e:d4:ec:34:58:b1:6a:83:8c:3f:e9:06:cb:1c:05:
48:e2:3d:47:33:38:85:bb:e0:0e:f0:0b:27:c2:e0:01:c9:ef:
ac:24:e5:aa:f0:89:b7:0f:8f:25:ad:df:ae:4e:f6:76:cd:da:
5a:70:5f:3f:c9:91:34:1c:2a:da:94:b2:2f:24:fe:da:d6:61:
94:5c:d5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:42 2024 by rpki-client on console-ams.rpki-client.org