Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/43EDROdGWaPzWaXCGNPugr6_rUk.roa
File: 43EDROdGWaPzWaXCGNPugr6_rUk.roa (raw, json)
Hash identifier: EvrcjsWIVquofB09B0EVKQMXesZNRIr3GbnWlS8Nk80=
Subject key identifier: E3:71:03:44:E7:46:59:A3:F3:59:A5:C2:18:D3:EE:82:BE:BF:AD:49
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0182474ECF2DAF8295D79A526D21119D17BE
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/43EDROdGWaPzWaXCGNPugr6_rUk.roa
Signing time: Fri 29 Jul 2022 00:15:23 +0000
ROA not before: Fri 29 Jul 2022 00:15:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58305
IP address blocks: 45.43.64.0/19 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.166.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9944:40::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:47:4e:cf:2d:af:82:95:d7:9a:52:6d:21:11:9d:17:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jul 29 00:15:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3710344e74659a3f359a5c218d3ee82bebfad49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ee:b0:1d:f4:bf:0f:e8:6f:68:83:1c:6e:10:
29:a0:44:95:31:ff:bb:61:3f:60:32:de:2d:1e:c3:
2e:21:3d:7a:fe:d2:cc:cb:9c:32:3c:18:69:9a:14:
15:67:e4:ab:14:94:c5:c0:52:06:2e:dd:f5:d4:5d:
74:28:9a:bc:16:25:ed:1f:71:a9:ba:93:e7:10:93:
0e:ac:24:df:43:38:b9:ff:5e:fb:54:f2:6a:ab:54:
39:0f:fb:78:9d:24:15:40:8e:ab:89:32:27:4a:68:
f5:15:81:ef:75:36:ca:58:93:4e:27:02:ce:5d:c0:
8d:d2:a3:a0:4f:7d:19:cf:2e:22:90:f9:df:91:56:
e5:38:e1:1e:9f:b8:29:60:45:21:a0:97:22:2f:b7:
65:bf:58:f6:56:41:10:ad:fc:b7:55:db:ee:e3:d8:
ef:78:1f:94:66:88:dd:08:98:48:c1:8f:cd:22:6f:
2f:a7:e7:1d:a3:e2:f5:bf:0e:31:37:46:00:26:61:
6d:98:27:b2:6e:3a:bf:1e:87:36:07:97:97:69:b6:
a2:27:7e:93:3d:94:d0:de:9b:31:a7:d3:f1:d0:3f:
53:30:bf:ee:6b:07:94:bb:23:d6:7d:41:e5:87:65:
8a:47:8d:1f:72:29:59:1f:77:63:85:eb:26:d2:80:
0f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:71:03:44:E7:46:59:A3:F3:59:A5:C2:18:D3:EE:82:BE:BF:AD:49
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/43EDROdGWaPzWaXCGNPugr6_rUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.164.0-107.161.166.255
107.161.168.0-107.161.173.255
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0-162.217.250.255
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
49:83:24:32:9f:c1:c9:c9:c2:98:a2:89:29:ac:63:ae:2a:01:
7e:e5:33:bd:b6:ee:d6:ca:fd:24:a4:be:98:59:44:84:37:77:
02:99:69:66:9d:eb:7b:c4:ff:cf:ee:66:f4:04:c3:34:38:75:
0a:a5:75:40:c5:12:5b:e2:1d:d0:90:6a:0d:3d:34:b3:63:58:
fc:7c:2a:e2:d3:ac:37:bd:f4:3f:c6:d9:d8:5a:41:83:73:70:
a8:7a:4c:cd:b3:dc:fa:45:d9:91:2e:78:69:e5:aa:f6:51:2a:
d4:2d:cf:7a:c4:93:99:3a:af:e1:9e:37:54:a9:af:44:83:92:
71:44:6b:b1:e1:f0:e6:1c:f2:88:0a:62:1b:10:40:c2:e8:66:
6e:c0:dd:51:97:ff:e3:d0:c7:77:8f:5d:c6:2d:5c:9a:86:43:
77:8f:7e:e9:b2:f7:5c:dc:a8:94:95:4a:e9:b7:66:2f:14:dd:
03:94:bc:62:2f:a2:b8:84:e6:ea:cd:19:94:f1:3a:ed:1c:06:
e2:ee:dc:9f:be:98:af:b3:39:f7:b1:ef:dd:60:2f:49:0d:a0:
25:78:55:90:c2:38:cf:1e:1b:7a:ac:e6:16:1d:4d:43:27:c7:
eb:1f:e0:13:cb:92:8b:4a:40:fb:16:47:b4:52:28:a4:a1:b7:
b7:97:51:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-fra.rpki-client.org