Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Md_3O3poSQXvApgVxWO4QsUhqmU.roa
File: Md_3O3poSQXvApgVxWO4QsUhqmU.roa (raw, json)
Hash identifier: bPoI19MqxG39X/KiEMChkawsPFbSQZ564A0xRmoWWRw=
Subject key identifier: 31:DF:F7:3B:7A:68:49:05:EF:02:98:15:C5:63:B8:42:C5:21:AA:65
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0182DB993E02FB78E15555F36A8F8FC4A93D
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Md_3O3poSQXvApgVxWO4QsUhqmU.roa
Signing time: Fri 26 Aug 2022 19:20:29 +0000
ROA not before: Fri 26 Aug 2022 19:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 185.135.212.0/22 maxlen: 24
45.43.88.0/22 maxlen: 24
198.105.96.0/22 maxlen: 24
198.105.104.0/22 maxlen: 24
198.105.112.0/24 maxlen: 24
198.105.114.0/23 maxlen: 24
198.105.113.0/24 maxlen: 24
155.254.40.0/22 maxlen: 22
155.254.44.0/22 maxlen: 24
155.254.50.0/23 maxlen: 24
155.254.52.0/22 maxlen: 24
155.254.56.0/22 maxlen: 24
45.43.92.0/22 maxlen: 24
185.53.131.0/24 maxlen: 24
185.53.128.0/24 maxlen: 24
185.53.130.0/24 maxlen: 24
185.53.129.0/24 maxlen: 24
185.83.219.0/24 maxlen: 24
185.83.218.0/24 maxlen: 24
185.83.216.0/24 maxlen: 24
185.83.217.0/24 maxlen: 24
107.181.137.0/24 maxlen: 24
107.181.156.0/22 maxlen: 22
91.210.64.0/22 maxlen: 24
103.206.232.0/22 maxlen: 24
94.177.5.0/24 maxlen: 24
43.239.88.0/22 maxlen: 22
87.239.252.0/23 maxlen: 24
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:db:99:3e:02:fb:78:e1:55:55:f3:6a:8f:8f:c4:a9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Aug 26 19:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31dff73b7a684905ef029815c563b842c521aa65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a1:84:d1:0c:bc:8c:02:ca:82:02:c1:8c:21:
4e:cc:08:68:0e:7d:25:f9:92:43:ab:63:e7:6d:f5:
b3:97:f4:4e:9d:70:48:0d:63:c0:58:8e:30:e1:bf:
a3:b1:de:36:7b:0b:b1:f2:3a:1d:c1:0d:98:2b:30:
ab:cd:33:ee:3f:97:89:bf:bf:59:c0:57:08:a5:f5:
f8:6b:68:db:27:58:87:bc:04:00:85:ab:f7:03:d0:
bb:49:d3:05:c0:26:a9:a0:aa:31:7a:be:49:f4:f7:
7a:9a:25:32:66:b6:bb:3e:0d:f8:69:b0:e8:5c:6a:
f3:9f:2c:69:7e:b1:e6:d5:d5:54:e6:b1:ce:27:29:
35:4e:9b:71:f9:47:da:3d:54:ab:42:36:b9:15:8c:
5e:86:1d:36:05:1f:26:c7:39:0b:ae:7a:79:44:6f:
a1:ec:e3:99:d4:a5:b1:61:a5:73:da:e6:ca:a4:8e:
2d:d2:a7:e2:54:6e:08:de:ae:b1:e9:b5:4a:da:d4:
e0:36:91:3f:56:f5:8d:fe:8f:7a:2c:05:ac:f5:a0:
b0:3c:80:10:77:65:25:a2:59:20:d0:6b:63:ef:ce:
ef:cf:ee:0e:0d:fa:a2:6c:3d:e6:6f:75:4a:51:34:
38:94:9e:f5:a9:96:29:2d:28:02:dc:45:bf:c8:35:
53:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DF:F7:3B:7A:68:49:05:EF:02:98:15:C5:63:B8:42:C5:21:AA:65
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Md_3O3poSQXvApgVxWO4QsUhqmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.239.88.0/22
45.43.88.0/21
87.239.252.0/23
91.210.64.0/22
94.177.5.0/24
103.206.232.0/22
107.181.137.0/24
107.181.156.0/22
155.254.40.0/21
155.254.50.0-155.254.59.255
185.53.128.0/22
185.83.216.0/22
185.135.212.0/22
198.105.96.0/22
198.105.104.0/22
198.105.112.0/22
IPv6:
2a02:2ca0::/29
Signature Algorithm: sha256WithRSAEncryption
b0:59:dc:91:61:77:61:fe:4d:18:97:98:49:4f:3c:35:12:94:
5b:10:d9:07:54:2e:f1:54:d6:3c:26:7e:e4:32:92:43:1e:a8:
87:20:76:38:cc:21:4a:d6:9c:68:2d:2c:15:51:f5:d3:e8:a4:
50:54:1c:2d:e7:e0:3b:22:c1:fa:6b:7d:e5:82:74:2a:fa:5a:
17:e8:51:32:01:cf:c5:e6:5b:35:1e:12:38:e7:a9:71:fd:25:
e3:26:99:bd:62:20:da:95:8c:b5:21:5c:c4:ec:3f:ac:f2:70:
3b:ea:18:ac:1a:ca:a9:f7:a1:61:f4:32:ff:e9:38:9c:23:6f:
cb:58:5c:51:c2:b3:70:84:cd:b3:70:1a:6f:0e:9c:2a:87:0e:
b7:61:99:3e:14:b3:f8:2f:f5:d1:27:57:0c:e0:4b:0e:a7:e2:
41:e1:a4:87:dd:92:88:f2:06:46:e3:ad:da:88:f9:10:fa:8e:
95:6e:8e:7e:56:8f:7d:72:77:30:3b:5a:ec:d3:d6:0f:da:98:
29:e6:b9:3f:18:a2:4a:4f:0b:4b:f2:d1:5a:2b:e9:ee:1c:64:
ce:b3:8a:65:f3:f0:6a:07:7f:0e:91:f4:eb:ef:10:99:82:aa:
c9:45:46:a8:cd:95:5d:97:dc:3f:fe:e7:ea:51:41:17:5b:a7:
43:a1:20:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org