Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Ul0uC3T0aAT7j0C6MrruVzsE-pc.roa
File: Ul0uC3T0aAT7j0C6MrruVzsE-pc.roa (raw, json)
Hash identifier: Hf+94yTjCFdvDqM1db+jV4kxa585f1P2PE5K2XeUZRI=
Subject key identifier: 52:5D:2E:0B:74:F4:68:04:FB:8F:40:BA:32:BA:EE:57:3B:04:FA:97
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1B1719B5
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Ul0uC3T0aAT7j0C6MrruVzsE-pc.roa
Signing time: Sat 05 Feb 2022 15:49:55 +0000
ROA not before: Sat 05 Feb 2022 15:49:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58305
IP address blocks: 45.43.64.0/19 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.166.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.167.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
2a07:9944:20::/48 maxlen: 48
2a07:9944:40::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 454498741 (0x1b1719b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Feb 5 15:49:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=525d2e0b74f46804fb8f40ba32baee573b04fa97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:9d:6c:f7:e6:61:d2:dc:7e:96:b5:23:19:
2c:26:ad:c2:18:be:da:a0:f2:ab:62:91:f1:26:52:
fa:c0:0c:ed:29:86:e6:55:7c:b2:5c:63:f7:20:81:
78:5f:35:2f:41:95:3b:4b:e9:a0:fa:53:c5:c9:27:
e3:55:4a:9f:96:7b:69:9c:bf:5d:51:4e:f5:e8:0c:
30:4f:13:7c:f7:af:25:09:65:7e:3b:a6:63:38:4d:
07:2c:c4:51:d7:c4:c3:12:15:71:b3:df:df:50:54:
c8:12:40:26:57:e1:e7:0f:72:4a:43:51:37:86:de:
87:a7:c8:35:f2:76:00:de:46:52:b6:d4:c2:89:38:
91:8b:8a:36:09:41:f9:61:da:45:83:f5:01:fa:14:
e2:84:23:93:dc:0d:aa:85:71:41:be:1b:b2:d8:8e:
8b:e7:5d:60:1e:67:70:f7:49:5c:54:74:75:ae:14:
13:b2:c2:e7:1f:06:fe:12:55:73:1d:45:8d:1e:11:
bb:3d:2f:29:3f:42:28:e6:d9:bb:48:e5:a1:1e:30:
da:0e:da:b1:f0:45:d7:9c:20:54:b0:ed:dc:26:cd:
b8:63:0c:f6:d6:91:6b:3f:61:6d:ee:06:b1:7c:cd:
b2:13:2d:05:e5:d1:42:74:9c:98:d2:be:34:0e:c6:
4a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5D:2E:0B:74:F4:68:04:FB:8F:40:BA:32:BA:EE:57:3B:04:FA:97
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/Ul0uC3T0aAT7j0C6MrruVzsE-pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.164.0-107.161.173.255
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0-162.217.250.255
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca7:2e::/48
2a07:9942:39d6::/47
2a07:9944:10::/48
2a07:9944:20::/48
2a07:9944:30::/48
2a07:9944:40::/48
Signature Algorithm: sha256WithRSAEncryption
a0:dc:94:09:f3:42:05:9d:05:d0:b3:b2:0f:64:c1:ee:7d:fe:
7a:ed:8c:b1:eb:72:10:bf:c2:62:e9:f2:f7:61:f4:d4:29:b0:
8f:40:3d:ab:62:b6:82:0f:40:89:a1:c2:e9:aa:b7:d9:b4:3c:
ac:86:ed:5c:48:8e:92:42:1a:0f:09:63:f9:9d:0a:5a:89:44:
41:71:c1:8d:03:24:18:ca:04:64:cf:aa:2e:1f:68:a2:c6:98:
9c:92:fe:4c:e8:3d:d3:83:6b:e1:70:81:9e:c6:e9:25:78:ab:
db:24:e7:41:8b:3d:66:89:1d:b1:d5:a2:91:f5:98:bf:a7:ba:
24:8a:d3:f9:fb:c0:6a:ec:57:98:42:fb:fd:e9:13:33:07:b0:
dc:e9:12:01:ac:86:49:55:f1:68:6c:8f:37:ec:9c:d6:8c:ad:
a7:48:6f:ba:95:8e:b5:5c:fd:88:01:a2:c0:74:9f:e3:45:88:
8d:28:10:db:38:94:1b:88:1d:60:d6:69:90:6f:9f:fe:78:9d:
2e:ee:fd:ab:d9:44:fe:9b:91:39:47:28:2a:dc:69:b3:a2:47:
74:0a:aa:59:2d:a5:1f:1d:8c:6f:e9:21:4b:7f:19:5b:6f:88:
05:f0:c0:f9:d8:6e:b7:b3:28:29:98:41:f4:78:b7:1a:5c:cc:
f8:36:63:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org