Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/vsbrc5oCqCB4C_UNzStKVauM_tg.roa
File: vsbrc5oCqCB4C_UNzStKVauM_tg.roa (raw, json)
Hash identifier: hZoIKpXJwSmuYBzqFGfse//AxpUbYPRNm578rR/h2HU=
Subject key identifier: BE:C6:EB:73:9A:02:A8:20:78:0B:F5:0D:CD:2B:4A:55:AB:8C:FE:D8
Certificate issuer: /CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Certificate serial: 1C73A4F9
Authority key identifier: FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/vsbrc5oCqCB4C_UNzStKVauM_tg.roa
Signing time: Tue 07 Jun 2022 15:06:02 +0000
ROA not before: Tue 07 Jun 2022 15:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12876
IP address blocks: 62.4.0.0/19 maxlen: 19
212.83.160.0/19 maxlen: 19
212.47.224.0/19 maxlen: 19
62.210.0.0/16 maxlen: 16
195.154.0.0/16 maxlen: 16
212.83.128.0/19 maxlen: 19
212.129.0.0/18 maxlen: 18
2001:bc8::/32 maxlen: 38
2001:bc8:1400::/38 maxlen: 38
2001:bc8:1800::/38 maxlen: 38
2001:bc8:1c00::/38 maxlen: 38
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477340921 (0x1c73a4f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Validity
Not Before: Jun 7 15:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bec6eb739a02a820780bf50dcd2b4a55ab8cfed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:28:d1:b8:ff:ea:14:bd:4b:5b:4f:42:10:dd:
8b:70:8b:3b:5d:d1:53:94:32:f4:31:96:73:56:22:
32:ea:c8:76:89:90:70:b4:63:e7:d7:11:b3:d9:96:
d4:d0:1e:2f:8e:57:9f:15:e2:c4:2c:3d:54:0c:aa:
d5:db:f6:4e:8d:25:70:f1:2b:ac:de:80:d3:50:df:
21:25:8b:a8:a7:c1:17:65:20:ad:67:6d:fa:36:cc:
3c:09:d7:c3:9c:f0:d2:bb:29:0d:e0:af:84:c0:4b:
fd:c9:a1:21:65:fb:23:9c:14:db:a4:d6:20:20:22:
02:3e:47:8a:a7:3d:fb:16:77:a6:8b:84:db:0b:3c:
0a:c5:9e:76:9e:f3:ab:13:f5:a3:94:27:a0:39:c5:
94:0c:7d:d1:99:c8:8f:b1:0d:d3:b2:4e:e1:ce:54:
58:31:b0:1f:07:f8:4d:47:94:08:d5:44:3e:41:d2:
a5:08:20:04:42:2d:c6:7b:8b:6c:1e:c9:19:7d:52:
b0:dc:87:89:11:de:f4:1d:38:5b:97:69:8f:2e:9a:
dd:ce:5b:11:77:bd:d2:87:0e:27:e3:6f:e4:c3:cf:
c0:e9:55:88:3b:b5:12:24:35:bd:d1:56:37:81:b0:
4a:e5:90:b8:1b:fd:49:6f:63:41:1d:c1:de:00:04:
41:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C6:EB:73:9A:02:A8:20:78:0B:F5:0D:CD:2B:4A:55:AB:8C:FE:D8
X509v3 Authority Key Identifier:
keyid:FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/vsbrc5oCqCB4C_UNzStKVauM_tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/1-uFrST0qEol8r0dXuxigLuws3hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.4.0.0/19
62.210.0.0/16
195.154.0.0/16
212.47.224.0/19
212.83.128.0/18
212.129.0.0/18
IPv6:
2001:bc8::/32
Signature Algorithm: sha256WithRSAEncryption
07:b6:e3:19:c4:fc:40:4e:34:8f:ca:12:a4:85:09:6a:32:4e:
11:7e:20:10:45:93:93:79:4c:90:f3:b9:fe:69:b0:79:f2:be:
eb:d2:8b:3a:06:2a:b8:48:d5:8d:8b:16:c6:8f:90:c0:4f:4d:
80:70:aa:cd:d6:a5:85:f7:c0:f1:8d:e3:87:da:af:07:71:51:
87:c6:70:88:1f:d8:21:e2:9c:27:d8:60:10:9d:b6:33:11:76:
c5:91:9f:78:77:b6:5a:e6:e9:6a:dc:ec:ad:29:cb:9d:cc:c0:
28:ee:3c:89:99:a2:eb:71:34:64:6c:a9:d1:7e:b6:88:36:4a:
c6:9b:fc:52:c2:76:18:bf:df:51:b8:41:b3:4c:25:0c:d4:cd:
6a:53:e3:ad:93:30:ba:38:80:36:45:2a:0b:c1:bc:c0:7b:0d:
83:da:c6:1d:78:eb:61:e2:c5:aa:62:10:6f:63:d3:49:c2:0c:
22:4a:e1:d2:58:f9:23:d9:a9:c0:3e:95:14:9a:80:e5:d5:4a:
76:f8:fe:f8:14:d7:43:04:51:d9:f4:7f:94:d2:59:f0:ed:5e:
89:f2:c8:46:31:55:53:92:18:fe:36:c0:41:37:29:f4:df:f4:
6d:90:09:1f:0d:32:96:2d:b5:93:f6:96:46:af:c4:f9:26:d2:
33:3a:3e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:16 2023 by rpki-client on console-ams.rpki-client.org