Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/FYYjquVurzC76cFZ_hkJbc2zIu8.roa
File: FYYjquVurzC76cFZ_hkJbc2zIu8.roa (raw, json)
Hash identifier: +gPWYixWUVB1ko/Z5zAnaUHEnZFHxFiG1D1jWSmxngc=
Subject key identifier: 15:86:23:AA:E5:6E:AF:30:BB:E9:C1:59:FE:19:09:6D:CD:B3:22:EF
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183FAEEB9048A96608766591E72E8C38BBC
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/FYYjquVurzC76cFZ_hkJbc2zIu8.roa
Signing time: Fri 21 Oct 2022 14:24:52 +0000
ROA not before: Fri 21 Oct 2022 14:24:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204650
IP address blocks: 62.220.118.0/23 maxlen: 24
81.12.43.0/24 maxlen: 24
87.107.100.0/22 maxlen: 22
81.12.77.0/24 maxlen: 24
81.12.96.0/22 maxlen: 22
81.12.96.0/21 maxlen: 24
81.12.102.0/23 maxlen: 23
81.12.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:ee:b9:04:8a:96:60:87:66:59:1e:72:e8:c3:8b:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 14:24:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=158623aae56eaf30bbe9c159fe19096dcdb322ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bc:8f:19:1a:c6:51:22:b1:c6:8a:24:ad:bb:
dd:c4:86:0e:20:dd:5c:cc:fb:32:01:aa:63:61:05:
60:e4:3a:70:2b:14:46:c4:20:58:4f:48:e5:3d:3b:
90:81:01:a6:2d:ab:14:c4:41:60:48:c4:db:64:32:
29:49:42:4f:3c:68:53:fb:04:f5:ad:e0:02:54:39:
44:71:7f:8a:f4:56:56:08:fc:8d:fd:b6:bf:3e:c7:
2b:1b:79:ef:c7:74:e8:34:ba:9b:47:00:97:8a:7a:
5a:9e:c3:70:a8:99:53:24:36:58:fd:e9:7e:9f:14:
0f:1a:76:05:02:f1:e3:e6:ef:f5:b3:e1:e4:27:0c:
16:32:b5:5d:ab:c2:72:23:93:80:17:77:e0:25:59:
b1:6e:c6:3e:7e:25:1b:b6:0b:da:bc:1f:71:7a:2f:
25:0a:b1:8d:6f:97:95:30:95:b9:09:94:fd:86:aa:
14:ae:d1:77:f8:15:4e:ab:7a:11:ba:b9:9f:da:a6:
43:70:51:f7:c9:9d:60:4d:8b:29:e6:82:e5:82:d3:
a9:af:08:18:22:60:db:54:6e:0f:a2:24:95:c5:69:
29:6b:c2:cf:e2:e5:ae:bc:8a:2f:aa:f7:14:0f:33:
e2:a7:47:c8:28:64:3f:eb:5f:7e:10:3f:1b:17:62:
60:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:86:23:AA:E5:6E:AF:30:BB:E9:C1:59:FE:19:09:6D:CD:B3:22:EF
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/FYYjquVurzC76cFZ_hkJbc2zIu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.118.0/23
81.12.43.0/24
81.12.77.0/24
81.12.96.0/21
87.107.100.0/22
Signature Algorithm: sha256WithRSAEncryption
18:5c:13:5d:7a:1c:3c:c3:e2:c4:e8:12:2e:ae:65:bd:4c:55:
65:6e:d0:e6:24:a4:ce:e7:78:91:73:db:ae:b3:0a:45:81:a5:
89:f5:55:92:d0:b3:a0:6f:92:19:7b:a4:d0:48:ac:ae:43:c0:
a1:0e:fa:ef:e1:13:ed:e7:3c:9d:b6:1a:54:f3:19:0e:44:05:
81:1f:dd:65:c9:93:f0:21:88:70:ac:c9:cf:2f:eb:77:0f:b5:
a8:c4:2e:76:2e:76:0b:29:d0:7a:b4:fe:fa:fa:89:9c:13:ae:
a4:7a:b0:45:2e:3a:f9:63:53:f6:4d:bd:60:51:c6:3c:af:cc:
28:2f:4c:54:c1:3c:dc:0d:38:66:4b:33:be:69:33:c4:00:ee:
79:4e:91:c0:29:10:85:41:21:93:02:97:e3:58:19:2b:30:90:
bb:64:93:53:f4:36:3b:6c:1a:27:47:90:6a:2c:84:73:81:98:
b4:9d:d7:67:6d:36:fb:88:7d:7a:58:d2:a8:c5:d4:f5:cf:60:
9e:1c:86:7f:04:f1:c9:ad:53:f9:06:b0:79:a9:65:90:aa:43:
5a:d8:f3:34:65:e5:9d:fa:02:40:ca:68:09:b0:82:1e:fd:b7:
31:ac:f3:f2:41:84:ca:13:d5:40:26:dc:ae:5a:5a:f5:62:2e:
0c:da:78:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:32 2025 by rpki-client