Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/520d04-e912-4f46-a9e6-7055393f75fe/1/tV1gct8QHht6DRTdSmA9DI2OMmE.roa
File: tV1gct8QHht6DRTdSmA9DI2OMmE.roa (raw, json)
Hash identifier: exIzZgJKUXZGPhbcOVzskLEhRrHy2I/G0l+ZpAcIoMw=
Subject key identifier: B5:5D:60:72:DF:10:1E:1B:7A:0D:14:DD:4A:60:3D:0C:8D:8E:32:61
Certificate issuer: /CN=1dc7522321c23d169ed332ff49879ccc245172db
Certificate serial: 3315B460
Authority key identifier: 1D:C7:52:23:21:C2:3D:16:9E:D3:32:FF:49:87:9C:CC:24:51:72:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HcdSIyHCPRae0zL_SYeczCRRcts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/520d04-e912-4f46-a9e6-7055393f75fe/1/tV1gct8QHht6DRTdSmA9DI2OMmE.roa
Signing time: Fri 07 Jan 2022 10:01:02 +0000
ROA not before: Fri 07 Jan 2022 10:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9166
IP address blocks: 212.113.64.0/19 maxlen: 24
62.233.0.0/19 maxlen: 24
2a02:239c:0:20::/64 maxlen: 64
2a02:2398::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857060448 (0x3315b460)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dc7522321c23d169ed332ff49879ccc245172db
Validity
Not Before: Jan 7 10:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b55d6072df101e1b7a0d14dd4a603d0c8d8e3261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:82:e5:b4:03:f4:9d:d4:ec:15:8a:a1:39:ac:
8c:b8:3a:0c:8f:b6:8c:8f:c3:03:e8:9e:66:59:d0:
05:28:96:94:ac:c6:1a:6d:0e:6b:cc:b4:99:52:19:
0b:a2:df:b7:68:77:c3:b8:4c:7e:d3:e6:d0:18:6d:
19:88:de:89:c0:36:ec:05:4f:3c:40:4c:72:59:83:
af:64:61:72:68:fa:10:da:46:76:25:13:37:81:77:
89:96:b7:1a:2d:dc:b9:3d:d0:5c:9e:43:cf:15:83:
19:b4:65:e0:77:4e:78:4c:02:17:93:ed:99:a1:0b:
76:d6:72:74:8d:75:f6:1b:08:88:a4:db:dd:ef:4d:
23:c8:6e:02:01:cd:d0:17:11:1e:f3:fd:a7:06:85:
73:36:3f:48:5d:15:29:f3:1d:b3:97:a0:da:ab:33:
28:74:44:67:6a:58:b0:1b:09:79:fa:50:fd:16:ed:
a6:97:17:ef:31:97:cd:4b:20:c6:99:c1:6d:24:ad:
2d:6d:62:c5:ec:5d:29:43:63:34:9b:37:23:e6:bb:
44:2f:d5:2e:32:49:71:43:d6:7e:97:a7:70:b4:ed:
03:da:a5:36:b8:94:e2:01:1d:58:31:06:e9:6e:77:
c7:9b:d8:a3:fe:ef:b4:fe:0e:fa:23:2b:76:1e:9a:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5D:60:72:DF:10:1E:1B:7A:0D:14:DD:4A:60:3D:0C:8D:8E:32:61
X509v3 Authority Key Identifier:
keyid:1D:C7:52:23:21:C2:3D:16:9E:D3:32:FF:49:87:9C:CC:24:51:72:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcdSIyHCPRae0zL_SYeczCRRcts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/520d04-e912-4f46-a9e6-7055393f75fe/1/tV1gct8QHht6DRTdSmA9DI2OMmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/520d04-e912-4f46-a9e6-7055393f75fe/1/HcdSIyHCPRae0zL_SYeczCRRcts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.0.0/19
212.113.64.0/19
IPv6:
2a02:2398::/29
Signature Algorithm: sha256WithRSAEncryption
76:51:a2:72:1f:7a:ee:41:86:42:33:3a:83:a6:c5:5f:aa:c3:
3c:42:54:24:bc:e4:d4:07:27:9e:fe:c6:9d:b4:13:73:d6:32:
2e:75:4d:8c:d2:06:b8:68:21:59:24:23:55:ef:74:bf:4e:4e:
9f:58:65:7b:b9:39:d2:ae:00:83:ce:3d:fd:f0:b2:6c:32:c0:
49:fc:b3:cf:d2:9a:20:de:bf:2d:d6:d6:5c:e9:09:9d:7a:ab:
f8:8f:3f:42:8a:06:4a:90:7d:28:75:d1:cc:ac:28:0e:fc:ed:
ba:d9:e9:0a:95:de:0e:29:e4:84:04:ae:6b:7b:94:ad:9e:38:
9a:cc:cb:14:66:66:a0:8d:2c:89:a5:e9:5b:b1:15:4f:14:34:
fe:8d:80:2f:a4:de:49:db:7b:a1:15:c8:67:24:fb:40:0b:23:
90:02:8d:55:b7:68:bc:0c:85:94:7e:4d:29:08:1f:3e:e2:29:
61:6a:38:bf:1e:20:30:ab:06:19:11:20:c4:ed:ee:ca:74:b9:
65:cd:c8:d5:74:70:31:14:27:c7:79:5b:d1:ef:89:e3:b7:82:
13:7b:02:89:f7:2f:c6:b0:01:63:23:c5:c7:2b:44:91:b2:ea:
e1:e9:e0:ce:03:00:6f:b2:15:f1:8f:6a:9a:f2:bb:29:a9:0c:
4b:b3:ab:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-ams.rpki-client.org