Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/t0p1lkI-ir3UquXl6Rd6YqRoaBM.roa
File: t0p1lkI-ir3UquXl6Rd6YqRoaBM.roa (raw, json)
Hash identifier: 2TkzZguXeQs2KLXehAay6iyMSli7zDeHNIsDyKnR08E=
Subject key identifier: B7:4A:75:96:42:3E:8A:BD:D4:AA:E5:E5:E9:17:7A:62:A4:68:68:13
Certificate issuer: /CN=1d01f4dffd6fba66cdf8c374c9b0f047552705dd
Certificate serial: 389B8254
Authority key identifier: 1D:01:F4:DF:FD:6F:BA:66:CD:F8:C3:74:C9:B0:F0:47:55:27:05:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQH03_1vumbN-MN0ybDwR1UnBd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/t0p1lkI-ir3UquXl6Rd6YqRoaBM.roa
Signing time: Wed 16 Feb 2022 12:36:09 +0000
ROA not before: Wed 16 Feb 2022 12:36:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206509
IP address blocks: 62.169.128.0/19 maxlen: 19
217.29.192.0/20 maxlen: 22
62.164.128.0/17 maxlen: 21
213.254.160.0/19 maxlen: 19
62.164.144.0/21 maxlen: 21
212.32.0.0/17 maxlen: 17
193.108.168.0/23 maxlen: 23
194.154.32.0/19 maxlen: 19
212.47.64.0/19 maxlen: 19
86.54.0.0/16 maxlen: 16
194.164.0.0/16 maxlen: 16
194.62.44.0/22 maxlen: 22
217.154.0.0/16 maxlen: 16
195.26.224.0/19 maxlen: 19
195.200.0.0/19 maxlen: 19
195.184.224.0/19 maxlen: 19
212.56.48.0/20 maxlen: 20
2001:15e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949715540 (0x389b8254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01f4dffd6fba66cdf8c374c9b0f047552705dd
Validity
Not Before: Feb 16 12:36:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b74a7596423e8abdd4aae5e5e9177a62a4686813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:37:8c:d6:f4:de:3a:fb:6a:21:c7:40:78:c9:
9d:69:13:28:a2:1b:9c:d6:86:79:f0:4f:33:a3:dc:
08:8f:0a:13:cf:2d:43:55:ab:dc:0a:ca:03:96:af:
8c:bc:0f:67:46:7b:a6:49:f8:b7:1f:9a:5d:5d:b3:
5e:06:d3:f9:21:10:9c:f6:a6:71:72:c7:2d:e1:9d:
ce:a0:7c:f4:e1:56:10:9c:da:cb:39:91:b7:a7:a0:
14:df:bf:1b:f9:ff:dc:82:35:24:23:4c:eb:cf:95:
b5:9f:2f:8a:49:a3:91:d6:36:2b:2e:43:4f:8d:80:
59:16:92:65:8e:6e:ea:5e:16:ab:75:dd:2c:80:e1:
ba:14:7f:3a:99:c6:98:a7:c6:98:52:b5:93:28:8c:
c2:6e:30:bc:ae:74:9a:68:67:08:0e:2a:dd:be:9d:
e8:e5:ef:7c:d6:73:e2:2b:7b:4d:1a:23:6c:2b:84:
47:33:0d:9f:25:13:be:c8:e7:c5:69:a2:e8:7c:b9:
f8:3f:65:b7:68:cb:da:87:54:84:02:c8:f0:ce:90:
b6:2a:29:9c:de:ea:1d:74:36:40:e7:07:00:f3:a4:
e2:1b:1b:92:d8:38:67:11:de:bf:a1:65:90:72:ec:
c3:fa:46:74:f0:28:9f:db:2a:18:8d:31:df:e5:c6:
8d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:4A:75:96:42:3E:8A:BD:D4:AA:E5:E5:E9:17:7A:62:A4:68:68:13
X509v3 Authority Key Identifier:
keyid:1D:01:F4:DF:FD:6F:BA:66:CD:F8:C3:74:C9:B0:F0:47:55:27:05:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQH03_1vumbN-MN0ybDwR1UnBd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/t0p1lkI-ir3UquXl6Rd6YqRoaBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/HQH03_1vumbN-MN0ybDwR1UnBd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.128.0/17
62.169.128.0/19
86.54.0.0/16
193.108.168.0/23
194.62.44.0/22
194.154.32.0/19
194.164.0.0/16
195.26.224.0/19
195.184.224.0/19
195.200.0.0/19
212.32.0.0/17
212.47.64.0/19
212.56.48.0/20
213.254.160.0/19
217.29.192.0/20
217.154.0.0/16
IPv6:
2001:15e0::/32
Signature Algorithm: sha256WithRSAEncryption
93:84:c3:1a:04:3e:a0:80:1a:57:82:3f:9c:6f:76:57:91:8c:
7a:18:44:b1:cb:c2:b3:b4:df:6f:02:dc:1a:d6:c0:95:06:32:
aa:8f:ef:c5:26:d0:ed:dc:ff:0c:cf:a1:12:ed:75:a1:63:26:
17:11:e7:18:1d:c0:d6:98:52:8b:f8:24:29:d0:5a:05:7c:a8:
3b:e2:1d:79:01:50:0b:f6:e6:d8:92:4e:88:c6:15:78:ef:0e:
3e:bb:15:f8:c1:3f:f9:a1:c6:ac:f7:3d:8b:fe:83:1e:5c:a8:
c0:83:ee:cf:80:89:1f:ce:36:fe:e0:a4:d3:aa:eb:93:a1:d1:
9f:45:41:51:03:99:83:ac:86:45:63:b4:d2:f2:6c:13:16:09:
58:50:02:aa:4a:99:8e:50:bc:ec:78:2c:3c:29:b0:3e:f6:a9:
f9:28:40:72:43:0a:bd:a9:06:78:84:57:25:85:be:a8:50:66:
3b:9a:31:0a:d8:3b:a6:a4:fa:01:f1:18:1a:94:c3:f4:0a:20:
ba:8c:71:f5:d6:96:91:fa:6e:ad:10:94:4e:3b:b1:e1:20:f6:
2e:1f:89:52:69:f8:10:ed:7e:60:14:b6:ff:ab:4c:e3:74:b8:
e9:be:8f:af:6a:a4:0d:20:ad:45:80:ff:2f:9d:10:d2:8a:20:
c6:c9:5c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:56 2023 by rpki-client on console-ams.rpki-client.org