Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/hENTooOkwQglsBt6kkG9R3-Wk2E.roa
File: hENTooOkwQglsBt6kkG9R3-Wk2E.roa (raw, json)
Hash identifier: oqpcI88Crhz6KeLcP08mOqDZg9g+XxH3UJG/RvT5dD8=
Subject key identifier: 84:43:53:A2:83:A4:C1:08:25:B0:1B:7A:92:41:BD:47:7F:96:93:61
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01BB7D4C
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/hENTooOkwQglsBt6kkG9R3-Wk2E.roa
Signing time: Sat 01 Jan 2022 04:53:44 +0000
ROA not before: Sat 01 Jan 2022 04:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 62.72.176.0/20 maxlen: 24
176.57.56.0/21 maxlen: 24
176.57.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29064524 (0x1bb7d4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 04:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=844353a283a4c10825b01b7a9241bd477f969361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:15:ee:53:46:1f:c0:7f:9e:b6:93:90:c0:1a:
d0:2a:e1:f0:46:df:f3:67:79:bb:db:25:fa:e4:a3:
a6:e9:45:ff:e0:83:0b:8f:3d:ae:26:71:7d:59:d6:
56:ed:b1:74:39:8d:d4:33:4b:58:8e:83:d9:27:10:
d5:54:f6:ff:ac:32:26:fd:42:82:45:b9:7c:07:3a:
32:67:64:64:5b:d7:2d:36:e9:3c:b8:a2:d3:7d:5a:
79:6a:2a:4d:bf:e7:fa:c6:16:fd:7e:9d:c5:78:7b:
3e:a3:15:b2:13:bf:9f:31:1f:87:df:50:56:37:44:
85:ac:de:53:34:ed:90:10:a7:55:a6:d3:5d:70:b7:
1a:29:61:56:04:02:43:c5:96:43:b8:9c:d2:80:9c:
d0:bc:62:c8:ec:2a:17:4b:7f:02:34:b1:2c:56:c8:
c4:ac:5d:dc:89:27:af:da:56:f5:f2:89:98:13:32:
8b:62:ba:d3:7c:b8:b8:d1:9c:3e:87:44:ab:b4:92:
53:e7:6b:65:2f:68:9d:9b:84:48:3a:4d:55:fe:a8:
fb:0f:d6:5f:12:ac:0c:5c:48:df:b6:61:08:73:b1:
43:29:84:53:da:a5:c5:19:37:54:ad:2e:5f:ac:d1:
28:db:fa:a5:e0:c3:09:49:96:50:af:5e:c7:dc:6b:
ab:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:43:53:A2:83:A4:C1:08:25:B0:1B:7A:92:41:BD:47:7F:96:93:61
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/hENTooOkwQglsBt6kkG9R3-Wk2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.176.0/20
176.57.52.0-176.57.63.255
Signature Algorithm: sha256WithRSAEncryption
3e:06:62:84:0a:69:23:0c:aa:c4:c3:28:34:f3:c3:05:d3:8c:
20:73:45:dd:32:7b:32:d8:b5:1d:4f:c9:87:59:29:2c:37:27:
3b:e3:d0:56:d3:fc:2b:02:25:c3:bb:b3:b6:cb:a6:c5:e5:ae:
b6:10:09:9c:9f:4e:20:31:6b:47:22:85:09:56:f5:87:90:76:
22:a4:89:32:37:20:66:a2:8f:84:4c:ce:59:5e:c6:39:ca:3e:
63:45:f0:c9:c5:d9:5b:ff:31:74:d9:68:13:c9:6e:03:4d:8a:
48:a5:4d:1c:99:c0:3e:92:2a:19:ad:11:1c:22:8b:42:7e:88:
ab:e6:98:19:ac:81:6d:00:00:51:78:0b:12:bd:07:4c:79:35:
11:09:05:17:95:6b:9f:32:f3:8b:1c:c5:96:8b:39:fb:ca:f8:
6e:a7:91:34:54:f4:d9:c0:20:30:7a:54:64:11:7e:cf:5b:55:
bf:22:a3:2f:9b:a8:fa:5d:e7:d5:df:80:1f:b2:b3:9b:8e:fb:
04:75:6e:6d:eb:63:5e:88:35:bf:86:0a:f0:b4:45:a4:c2:3c:
81:5e:cd:4f:95:e3:e2:59:fa:be:5c:90:03:d1:b7:d2:ec:a0:
31:67:be:d2:78:86:42:20:fe:ec:17:44:ba:8c:62:be:9e:9f:
f2:39:33:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEAbt9TDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NWYxOTA3NDU0OGQyYTI5NGU0Mzg1ZDk1Y2Q2NzUyNDkwZWU0NmQ3MB4XDTIyMDEw
MTA0NTM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQ0MzUzYTI4M2E0
YzEwODI1YjAxYjdhOTI0MWJkNDc3Zjk2OTM2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIV7lNGH8B/nraTkMAa0Crh8Ebf82d5u9sl+uSjpulF/+CD
C489riZxfVnWVu2xdDmN1DNLWI6D2ScQ1VT2/6wyJv1CgkW5fAc6MmdkZFvXLTbp
PLii031aeWoqTb/n+sYW/X6dxXh7PqMVshO/nzEfh99QVjdEhazeUzTtkBCnVabT
XXC3GilhVgQCQ8WWQ7ic0oCc0LxiyOwqF0t/AjSxLFbIxKxd3Iknr9pW9fKJmBMy
i2K603y4uNGcPodEq7SSU+drZS9onZuESDpNVf6o+w/WXxKsDFxI37ZhCHOxQymE
U9qlxRk3VK0uX6zRKNv6peDDCUmWUK9ex9xrq+MCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBSEQ1Oig6TBCCWwG3qSQb1Hf5aTYTAfBgNVHSMEGDAWgBQV8ZB0VI0qKU5D
hdlc1nUkkO5G1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZmR1FkRlNOS2lsT1E0WFpYTloxSkpEdVJ0Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMDA2MjQxLTgwOGQtNGE0OS1iMGNkLTU2MjQ0ZjQzMGRjYy8x
L2hFTlRvb09rd1FnbHNCdDZra0c5UjMtV2syRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MDA2MjQxLTgwOGQtNGE0OS1iMGNkLTU2MjQ0ZjQzMGRjYy8xL0ZmR1FkRlNOS2ls
T1E0WFpYTloxSkpEdVJ0Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEBD5IsDAMAwQCsDk0AwQGsDkAMA0G
CSqGSIb3DQEBCwUAA4IBAQA+BmKECmkjDKrEwyg088MF04wgc0XdMnsy2LUdT8mH
WSksNyc749BW0/wrAiXDu7O2y6bF5a62EAmcn04gMWtHIoUJVvWHkHYipIkyNyBm
oo+ETM5ZXsY5yj5jRfDJxdlb/zF02WgTyW4DTYpIpU0cmcA+kioZrREcIotCfoir
5pgZrIFtAABReAsSvQdMeTURCQUXlWufMvOLHMWWizn7yvhup5E0VPTZwCAwelRk
EX7PW1W/IqMvm6j6XefV34AfsrObjvsEdW5t62NeiDW/hgrwtEWkwjyBXs1PlePi
Wfq+XJAD0bfS7KAxZ77SeIZCIP7sF0S6jGK+np/yOTNR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org