Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/ZjHTlOlpCpk7lwZOwbKd2_lXhMM.roa
File: ZjHTlOlpCpk7lwZOwbKd2_lXhMM.roa (raw, json)
Hash identifier: LBlpfRXfiFtI3beCXM1jo1ck372eff8HmIBT7Nyx/V4=
Subject key identifier: 66:31:D3:94:E9:69:0A:99:3B:97:06:4E:C1:B2:9D:DB:F9:57:84:C3
Certificate issuer: /CN=f818dec325784010774820090e8e0a083ddddbdc
Certificate serial: 038A478E
Authority key identifier: F8:18:DE:C3:25:78:40:10:77:48:20:09:0E:8E:0A:08:3D:DD:DB:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BjewyV4QBB3SCAJDo4KCD3d29w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/ZjHTlOlpCpk7lwZOwbKd2_lXhMM.roa
Signing time: Sat 01 Jan 2022 05:53:41 +0000
ROA not before: Sat 01 Jan 2022 05:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5618
IP address blocks: 62.193.16.0/24 maxlen: 24
62.193.17.0/24 maxlen: 24
62.193.12.0/23 maxlen: 23
62.193.13.0/24 maxlen: 24
62.193.14.0/23 maxlen: 23
62.193.14.0/24 maxlen: 24
62.193.15.0/24 maxlen: 24
62.193.18.0/24 maxlen: 24
62.193.20.0/24 maxlen: 24
62.193.21.0/24 maxlen: 24
62.193.4.0/24 maxlen: 24
62.193.5.0/24 maxlen: 24
62.193.6.0/24 maxlen: 24
62.193.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59393934 (0x38a478e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f818dec325784010774820090e8e0a083ddddbdc
Validity
Not Before: Jan 1 05:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6631d394e9690a993b97064ec1b29ddbf95784c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0d:16:dd:dc:f2:e1:4c:48:ca:d2:d4:eb:82:
ea:e3:2c:f9:ef:d6:5a:f7:71:6e:01:23:72:e6:ac:
63:5e:fa:08:bb:55:a2:24:40:05:4d:4d:24:6b:2b:
19:f5:fe:5b:e1:80:d9:ed:ac:c8:07:2e:58:b0:4b:
4d:9b:f2:db:f1:00:38:0b:d9:56:39:09:33:4d:84:
e3:2f:0e:43:d9:1f:49:81:9b:82:db:3d:e8:5b:8b:
61:7d:c2:ed:5f:eb:b7:0d:c5:8c:53:8a:c8:a6:ae:
94:6a:5d:e7:de:fb:60:5e:09:c0:4e:a8:49:66:ec:
50:67:ce:f1:0a:7c:86:c8:ab:a4:ba:fb:b5:3d:41:
70:ab:8c:17:51:f9:39:1f:e9:3e:9f:d2:96:6e:dc:
1f:82:d7:d0:9e:db:71:1d:ec:11:f7:2f:49:67:07:
37:f9:16:1e:be:07:38:96:65:11:67:a5:2a:c7:7c:
5a:58:f6:db:27:8c:5b:66:50:50:f3:be:0d:3f:1c:
0f:7d:67:14:cd:be:20:cb:3c:a4:b8:96:7d:08:00:
3b:ac:d8:d9:60:ae:5b:8d:1f:12:c9:b0:d8:b7:70:
e6:a6:cd:e4:92:11:b0:86:cf:b1:cd:e6:16:b4:6b:
33:16:be:6f:24:9d:ac:17:f0:4f:31:21:2e:fb:17:
f2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:31:D3:94:E9:69:0A:99:3B:97:06:4E:C1:B2:9D:DB:F9:57:84:C3
X509v3 Authority Key Identifier:
keyid:F8:18:DE:C3:25:78:40:10:77:48:20:09:0E:8E:0A:08:3D:DD:DB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BjewyV4QBB3SCAJDo4KCD3d29w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/ZjHTlOlpCpk7lwZOwbKd2_lXhMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/1-BjewyV4QBB3SCAJDo4KCD3d29w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.193.4.0/22
62.193.12.0-62.193.18.255
62.193.20.0/23
Signature Algorithm: sha256WithRSAEncryption
71:53:b3:c8:2b:ab:4e:ca:ea:ab:d1:d0:ad:db:07:8c:12:1d:
2f:4f:23:d2:ca:6e:a4:47:8f:a3:93:03:cf:40:ee:05:cc:97:
cc:99:fd:30:22:42:91:fb:e6:e2:58:49:01:22:d5:2a:8c:ff:
90:d4:86:6c:0e:8a:68:71:ca:7e:8c:89:aa:f2:d5:0d:48:10:
0c:cb:04:fd:b8:e0:fb:1c:50:3b:21:36:7c:cf:93:fa:1b:b5:
cb:8f:8f:48:e3:1b:a9:0a:e2:53:ba:98:c2:37:94:fb:b4:c8:
dc:83:71:33:46:92:bc:49:7f:e6:6e:27:05:cc:29:3b:98:a6:
b6:e7:76:d6:6c:6c:e4:19:74:46:4e:02:ba:86:4d:f1:fd:15:
d1:c8:42:ce:f6:a4:0a:93:55:cd:12:79:00:eb:f8:65:1f:d3:
b6:9f:b4:72:2b:5e:0c:dc:5b:8e:59:2a:13:2a:06:bc:93:09:
11:b2:4f:b1:69:63:fe:3c:8d:2c:f2:4f:a2:77:8d:11:88:29:
e4:ac:a2:be:fa:fe:f6:58:8a:9f:3a:f0:11:59:c7:a8:38:cb:
65:4d:00:60:7b:d8:b9:ee:33:98:5a:2b:e0:8a:c2:bd:64:ad:
98:5d:76:ec:2d:d9:0d:73:dc:ec:7d:fc:22:2c:78:ea:31:69:
2c:3c:fd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:30 2024 by rpki-client on console-fra.rpki-client.org