Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/80o4tMrFSJGrHvvDaQBqOXjo98Y.roa
File: 80o4tMrFSJGrHvvDaQBqOXjo98Y.roa (raw, json)
Hash identifier: 3cvgWfFgNanmo3+q7dE3EXDM4Q2uBlioC5iAEweJcLc=
Subject key identifier: F3:4A:38:B4:CA:C5:48:91:AB:1E:FB:C3:69:00:6A:39:78:E8:F7:C6
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1AC68BA7
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/80o4tMrFSJGrHvvDaQBqOXjo98Y.roa
Signing time: Fri 07 Jan 2022 20:09:22 +0000
ROA not before: Fri 07 Jan 2022 20:09:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58305
IP address blocks: 45.43.64.0/19 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.166.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.167.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
107.181.152.0/22 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
2a07:9944:20::/48 maxlen: 48
2a07:9944:40::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449219495 (0x1ac68ba7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 7 20:09:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f34a38b4cac54891ab1efbc369006a3978e8f7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:c4:92:88:77:ac:85:f7:e8:5e:4d:ce:62:
9e:30:1f:9b:6b:45:04:8c:e0:c2:c7:ef:e9:3d:0f:
30:0b:db:8d:15:6f:d2:cb:b6:e7:19:be:95:85:00:
62:cc:ec:40:33:ab:c3:1b:e5:4b:ac:fa:7f:9f:31:
79:20:6d:14:cd:db:57:b3:8e:bc:28:12:fe:31:1d:
4b:55:24:eb:df:21:1a:25:d1:c5:f8:0f:fe:47:dd:
49:69:e9:cd:91:15:c9:5e:b6:93:60:d1:45:68:ed:
d1:67:c5:76:d0:bb:2d:eb:37:ad:1b:63:b2:d7:5d:
d7:b5:ec:97:54:ce:0f:81:5f:67:67:6d:3b:7d:28:
b9:17:ba:53:d6:ce:25:c0:5e:8e:03:53:25:26:8a:
31:be:a0:cd:ab:0b:27:57:6f:48:53:50:65:59:7d:
a5:44:1f:f4:28:73:7e:bf:97:9f:df:d5:0f:8c:c8:
30:2a:b9:46:cb:91:23:90:83:47:76:3e:30:d9:40:
47:55:23:bc:14:7b:90:90:4b:eb:d5:1e:68:8c:65:
97:fb:36:3c:fc:64:8b:61:8e:5b:9a:7b:8e:3e:83:
49:03:35:3b:e3:19:9b:7b:39:1f:4d:f6:e7:28:43:
42:b7:02:43:7f:04:61:e2:f3:fe:fb:02:4b:5b:98:
f3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:4A:38:B4:CA:C5:48:91:AB:1E:FB:C3:69:00:6A:39:78:E8:F7:C6
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/80o4tMrFSJGrHvvDaQBqOXjo98Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.164.0-107.161.173.255
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0-162.217.250.255
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca7:2e::/48
2a07:9942:39d6::/47
2a07:9944:10::/48
2a07:9944:20::/48
2a07:9944:30::/48
2a07:9944:40::/48
Signature Algorithm: sha256WithRSAEncryption
07:96:1c:45:13:fe:94:54:42:c6:6f:9c:bd:2f:40:80:15:bd:
2e:0d:69:91:e0:5a:76:d8:fe:da:5c:6a:a4:84:7f:0c:da:01:
5a:92:e9:ea:f5:6f:97:a8:d8:6d:10:d7:7e:82:be:e8:e1:b0:
e7:f5:d1:0a:f3:11:95:99:d7:72:99:6d:89:8a:33:b4:d9:f2:
84:d4:e3:df:79:72:c1:25:ed:75:da:70:ce:c1:b3:17:1e:df:
0c:d6:37:31:a2:09:85:86:da:be:b5:55:ed:8a:c2:31:8a:6f:
26:f8:21:d7:0a:e1:ca:08:a8:c7:6c:f8:43:cd:07:17:60:7f:
7e:ef:a8:de:15:c2:b0:e8:a9:6a:08:29:f6:cf:23:29:03:b5:
7c:70:07:65:e4:45:4d:01:14:48:fc:d8:a8:19:8f:bf:f2:c7:
6b:01:4e:14:35:6e:da:71:0c:f4:d6:b0:fc:f5:e6:a1:f0:6c:
bf:b4:75:26:eb:8b:bd:35:ab:51:e8:ae:c4:0d:48:15:fe:39:
b7:c3:91:19:44:6c:6d:66:9a:ab:2d:2f:ed:28:5a:e8:0a:5b:
16:f1:1d:03:ae:63:08:56:16:ce:32:51:83:e6:e6:dd:81:51:
44:90:f4:f7:d5:f2:67:28:70:c0:68:33:b3:b6:8a:ef:10:18:
ed:c5:69:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org