Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/iPQ8a8yf7ji6SPP_4LZanIYlFSE.roa
File: iPQ8a8yf7ji6SPP_4LZanIYlFSE.roa (raw, json)
Hash identifier: PeIrzFStev6V9DBSC4KsdM4GsFgNgfOrwwPWJ75vfDw=
Subject key identifier: 88:F4:3C:6B:CC:9F:EE:38:BA:48:F3:FF:E0:B6:5A:9C:86:25:15:21
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 02E07E19
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/iPQ8a8yf7ji6SPP_4LZanIYlFSE.roa
Signing time: Sat 07 May 2022 10:44:42 +0000
ROA not before: Sat 07 May 2022 10:44:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 62.72.184.0/22 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
176.57.52.0/22 maxlen: 24
176.57.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48266777 (0x2e07e19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: May 7 10:44:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88f43c6bcc9fee38ba48f3ffe0b65a9c86251521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:9d:c0:01:74:28:7d:82:8f:76:60:4f:cd:
32:29:2d:d6:00:ea:14:bb:b4:ae:fe:9e:e6:1a:3e:
81:b4:9f:6b:5d:95:41:87:6c:9e:6b:b3:8e:8f:2b:
01:6c:b3:d3:bd:60:bc:22:9d:cc:18:c0:be:31:0d:
86:3d:80:76:15:60:61:7d:9f:af:0c:f7:6b:61:80:
a7:98:e0:b1:7f:4b:09:81:56:58:6a:7c:f6:c1:af:
98:94:41:b7:a8:7b:5f:d5:57:d5:68:06:41:da:a4:
cd:98:92:65:e5:6c:61:ab:b0:fe:47:a1:3e:d7:f1:
f0:1d:df:98:19:99:fa:f3:b0:f7:9b:72:d7:cd:c5:
de:39:4b:57:cd:77:58:90:69:7b:18:b2:b3:e3:05:
b5:c2:ac:25:64:6f:bf:56:b7:6b:47:6f:a8:7d:36:
fb:41:5c:80:6c:04:fd:ce:0d:fd:ad:02:bc:02:bc:
1c:7a:29:e6:c2:c6:f8:5f:fe:90:87:a9:60:d1:22:
1b:33:91:b6:60:05:47:5b:81:5d:9e:20:0a:02:de:
14:68:c1:5d:6b:c2:2b:7b:47:71:fc:92:18:be:4b:
d9:52:1e:64:72:d8:0b:a6:70:10:9f:e9:dc:48:93:
e0:55:b5:b9:3f:39:92:d1:0e:2c:01:e9:31:f6:ef:
50:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F4:3C:6B:CC:9F:EE:38:BA:48:F3:FF:E0:B6:5A:9C:86:25:15:21
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/iPQ8a8yf7ji6SPP_4LZanIYlFSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.184.0-62.72.188.255
62.72.191.0/24
176.57.52.0/22
176.57.60.0/22
Signature Algorithm: sha256WithRSAEncryption
56:04:de:b7:cb:65:48:44:06:c1:cb:87:3c:86:7a:24:a0:6e:
65:a0:1b:eb:33:97:8a:b1:9f:a1:2a:87:ce:b6:36:30:df:df:
6c:6d:13:7d:5a:44:96:4d:f9:7f:28:7a:55:ab:a5:0a:af:24:
7a:7f:21:b2:da:c8:cd:a2:e2:1b:a6:01:5a:dd:38:8b:a7:87:
fa:94:ed:be:eb:9d:c6:00:e9:83:f8:8b:42:63:17:b4:29:33:
63:51:0f:10:db:8f:3c:47:19:c5:f8:91:13:3b:1e:66:d1:35:
8c:09:c9:4d:ca:35:a7:0b:58:c0:a2:d5:7c:ae:93:2a:55:b9:
6d:26:dd:bc:85:73:68:6b:5c:3e:78:46:9e:46:bd:2a:b1:bd:
df:e8:a5:af:50:67:f1:30:4a:f3:55:a7:7b:de:ea:36:63:68:
3f:90:5f:97:d9:91:0b:ce:e9:bf:af:ab:bb:25:9c:c9:ad:8b:
dc:6a:af:5c:5b:fc:51:75:88:f6:3c:79:ce:03:95:b9:d7:1e:
fa:d7:7c:17:a9:80:d4:a3:5e:98:c2:85:09:dd:f7:9e:d7:ae:
5c:a6:23:46:9f:39:ce:75:90:5f:19:db:9a:6d:b9:16:a1:95:
07:2e:a0:14:06:cd:2f:c8:de:7e:4a:1d:65:f2:e1:8d:f4:fb:
69:a5:12:6b
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEAuB+GTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NWYxOTA3NDU0OGQyYTI5NGU0Mzg1ZDk1Y2Q2NzUyNDkwZWU0NmQ3MB4XDTIyMDUw
NzEwNDQ0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhmNDNjNmJjYzlm
ZWUzOGJhNDhmM2ZmZTBiNjVhOWM4NjI1MTUyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALCgncABdCh9go92YE/NMikt1gDqFLu0rv6e5ho+gbSfa12V
QYdsnmuzjo8rAWyz071gvCKdzBjAvjENhj2AdhVgYX2frwz3a2GAp5jgsX9LCYFW
WGp89sGvmJRBt6h7X9VX1WgGQdqkzZiSZeVsYauw/kehPtfx8B3fmBmZ+vOw95ty
183F3jlLV813WJBpexiys+MFtcKsJWRvv1a3a0dvqH02+0FcgGwE/c4N/a0CvAK8
HHop5sLG+F/+kIepYNEiGzORtmAFR1uBXZ4gCgLeFGjBXWvCK3tHcfySGL5L2VIe
ZHLYC6ZwEJ/p3EiT4FW1uT85ktEOLAHpMfbvUDECAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBSI9DxrzJ/uOLpI8//gtlqchiUVITAfBgNVHSMEGDAWgBQV8ZB0VI0qKU5D
hdlc1nUkkO5G1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZmR1FkRlNOS2lsT1E0WFpYTloxSkpEdVJ0Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvMDA2MjQxLTgwOGQtNGE0OS1iMGNkLTU2MjQ0ZjQzMGRjYy8x
L2lQUThhOHlmN2ppNlNQUF80TFphbklZbEZTRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
MDA2MjQxLTgwOGQtNGE0OS1iMGNkLTU2MjQ0ZjQzMGRjYy8xL0ZmR1FkRlNOS2ls
T1E0WFpYTloxSkpEdVJ0Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwJgQCAAEwIDAMAwQDPki4AwQAPki8AwQAPki/AwQC
sDk0AwQCsDk8MA0GCSqGSIb3DQEBCwUAA4IBAQBWBN63y2VIRAbBy4c8hnokoG5l
oBvrM5eKsZ+hKofOtjYw399sbRN9WkSWTfl/KHpVq6UKryR6fyGy2sjNouIbpgFa
3TiLp4f6lO2+653GAOmD+ItCYxe0KTNjUQ8Q2488RxnF+JETOx5m0TWMCclNyjWn
C1jAotV8rpMqVbltJt28hXNoa1w+eEaeRr0qsb3f6KWvUGfxMErzVad73uo2Y2g/
kF+X2ZELzum/r6u7JZzJrYvcaq9cW/xRdYj2PHnOA5W51x7613wXqYDUo16YwoUJ
3fee165cpiNGnznOdZBfGduabbkWoZUHLqAUBs0vyN5+Sh1l8uGN9PtppRJr
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org