Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/HpmnwYnCWxzEGVG-X1l7YYEtn3s.roa
File: HpmnwYnCWxzEGVG-X1l7YYEtn3s.roa (raw, json)
Hash identifier: OWJKA8UccaVZvYPez6uE3KkQb2bEuyohinEvB12r+2o=
Subject key identifier: 1E:99:A7:C1:89:C2:5B:1C:C4:19:51:BE:5F:59:7B:61:81:2D:9F:7B
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 3732441D
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/HpmnwYnCWxzEGVG-X1l7YYEtn3s.roa
Signing time: Wed 08 Jun 2022 07:31:04 +0000
ROA not before: Wed 08 Jun 2022 07:31:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12430
IP address blocks: 212.122.96.0/19 maxlen: 19
81.60.0.0/15 maxlen: 18
62.82.0.0/15 maxlen: 16
89.141.0.0/16 maxlen: 16
80.173.0.0/16 maxlen: 17
62.100.96.0/19 maxlen: 19
2.154.192.0/18 maxlen: 18
84.127.229.0/24 maxlen: 24
81.202.0.0/15 maxlen: 15
62.42.0.0/15 maxlen: 16
62.117.128.0/17 maxlen: 17
5.40.0.0/16 maxlen: 16
82.213.128.0/18 maxlen: 18
85.136.0.0/15 maxlen: 15
82.158.0.0/15 maxlen: 16
62.57.0.0/16 maxlen: 16
81.172.0.0/17 maxlen: 17
212.22.32.0/19 maxlen: 20
89.140.0.0/16 maxlen: 16
79.108.0.0/15 maxlen: 18
95.39.0.0/16 maxlen: 19
80.224.0.0/16 maxlen: 16
83.173.128.0/18 maxlen: 18
85.251.0.0/16 maxlen: 17
62.81.0.0/16 maxlen: 24
84.120.0.0/13 maxlen: 19
83.138.192.0/18 maxlen: 18
2.154.0.0/16 maxlen: 16
81.184.0.0/16 maxlen: 16
2.152.0.0/16 maxlen: 16
217.216.0.0/15 maxlen: 15
2.152.0.0/14 maxlen: 17
80.174.0.0/16 maxlen: 17
62.174.0.0/15 maxlen: 19
62.101.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926041117 (0x3732441d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: Jun 8 07:31:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e99a7c189c25b1cc41951be5f597b61812d9f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:13:fc:ef:65:b7:46:60:54:31:46:f3:60:b8:
d5:31:d0:69:88:1e:c6:aa:2b:59:71:5c:75:bb:ca:
45:30:58:8f:36:15:95:2f:77:ab:dd:ed:6e:cf:46:
94:1c:29:17:af:ae:0a:c9:3c:e9:a1:e0:bd:2b:00:
66:34:39:71:e1:5a:f8:60:1f:09:40:f1:f0:71:c1:
da:29:c4:66:31:42:5c:c1:58:b2:91:02:ef:f0:14:
b6:7d:92:2b:15:cf:b3:d6:36:eb:81:0c:31:61:62:
ff:97:df:21:81:8b:25:e2:42:2e:f0:6a:91:fe:99:
85:14:34:e1:36:2c:27:c9:b5:6b:f6:76:23:63:fc:
9c:20:b6:3a:5a:e6:36:c3:be:87:e8:2e:89:1d:e1:
e4:c0:9a:08:1b:5b:74:d2:bf:95:15:83:13:a0:5d:
e3:8f:eb:3d:ab:67:ff:15:9a:eb:cc:89:ab:99:7b:
fb:1e:a4:f5:65:e4:5d:07:b4:ba:f5:69:17:1e:6b:
e3:6c:0c:a3:9d:e9:3c:5d:95:88:4b:73:4b:f9:a1:
10:36:f1:d8:45:b0:99:1d:34:51:6e:35:74:6f:6d:
ae:c1:18:5b:46:0f:00:4d:da:f4:66:18:fc:67:30:
cf:e4:c6:96:80:d6:c8:30:5b:4b:70:c3:95:b6:2c:
b8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:99:A7:C1:89:C2:5B:1C:C4:19:51:BE:5F:59:7B:61:81:2D:9F:7B
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/HpmnwYnCWxzEGVG-X1l7YYEtn3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.152.0.0/14
5.40.0.0/16
62.42.0.0/15
62.57.0.0/16
62.81.0.0-62.83.255.255
62.100.96.0/19
62.101.160.0/19
62.117.128.0/17
62.174.0.0/15
79.108.0.0/15
80.173.0.0-80.174.255.255
80.224.0.0/16
81.60.0.0/15
81.172.0.0/17
81.184.0.0/16
81.202.0.0/15
82.158.0.0/15
82.213.128.0/18
83.138.192.0/18
83.173.128.0/18
84.120.0.0/13
85.136.0.0/15
85.251.0.0/16
89.140.0.0/15
95.39.0.0/16
212.22.32.0/19
212.122.96.0/19
217.216.0.0/15
Signature Algorithm: sha256WithRSAEncryption
8b:0b:40:83:64:c9:33:79:d6:5d:e8:92:dc:7a:39:4f:a5:4e:
84:81:dd:20:52:f2:cc:43:07:e7:4e:7b:5c:d8:da:14:dc:46:
ae:ce:37:62:04:3a:b0:8e:5f:60:ec:50:e3:32:a7:5b:33:c2:
d4:ba:88:79:11:17:5a:ce:b3:e1:cf:72:10:b4:69:7f:81:04:
a7:08:97:58:13:b4:bb:70:fa:e7:79:a1:f5:00:88:d9:71:40:
f7:b7:63:94:c9:f4:40:bf:9e:e4:77:3b:60:04:56:3b:34:5b:
45:b0:ae:e3:30:25:69:49:35:be:b4:59:7c:56:30:9a:97:62:
53:b7:7a:6f:2a:b0:8a:eb:64:7e:7a:f7:58:f4:01:11:e5:09:
04:fe:08:a6:04:cc:10:a4:6b:99:d7:42:d1:19:9f:bc:e4:aa:
35:24:ab:34:8d:7a:bc:5a:b8:f4:a9:6f:20:dc:c1:07:fd:58:
22:a9:87:ac:77:55:02:01:ae:5a:2f:02:97:d8:0b:72:d7:88:
76:42:d2:14:e4:7e:16:06:80:39:6a:38:fc:30:6f:e1:fb:f6:
79:20:03:ad:b1:d4:92:d5:89:c3:74:11:79:d7:c8:14:d6:57:
37:f3:59:9f:1c:12:b5:01:87:7a:c6:db:71:44:bf:76:9a:f5:
14:12:7b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org