Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/g9u0Ou1E0YcqdVljIP1PzDBOCy4.roa
File: g9u0Ou1E0YcqdVljIP1PzDBOCy4.roa (raw, json)
Hash identifier: Bhml0bCWDtXlvTEUW9ruHj9A4R838zID+hlLZuS1US8=
Subject key identifier: 83:DB:B4:3A:ED:44:D1:87:2A:75:59:63:20:FD:4F:CC:30:4E:0B:2E
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1B26C003
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/g9u0Ou1E0YcqdVljIP1PzDBOCy4.roa
Signing time: Fri 11 Feb 2022 16:04:20 +0000
ROA not before: Fri 11 Feb 2022 16:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58305
IP address blocks: 45.43.64.0/19 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.166.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.167.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9944:40::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455524355 (0x1b26c003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Feb 11 16:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83dbb43aed44d1872a75596320fd4fcc304e0b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:0f:e8:fc:d0:82:5d:2e:d2:10:5d:2e:98:
c6:68:4e:9b:4a:37:30:ef:19:3e:32:87:e5:2f:45:
71:d3:7f:be:ed:5e:c5:3c:e3:6c:b1:65:df:82:de:
76:2b:a4:9e:8b:f1:ed:ad:bd:37:2f:85:9f:a8:82:
c1:93:6c:af:dc:d0:c8:db:d2:5a:9b:26:a6:4f:25:
bd:e2:5e:64:c1:2a:92:f9:78:db:f0:53:f5:ae:1f:
db:e9:06:c6:a1:eb:59:1f:f4:6a:b4:de:d6:be:20:
74:5b:a1:11:0b:72:60:9f:03:4b:b8:ee:19:50:10:
70:98:f6:d9:26:a4:5c:1e:ea:44:a6:fc:39:86:f0:
49:1f:12:7f:45:57:59:0c:c7:c6:9e:9e:42:e6:c2:
c0:c7:d0:c5:55:ec:21:26:f1:8a:58:5c:04:ab:62:
36:ff:22:f1:51:ca:ff:d0:9e:12:c1:13:aa:07:eb:
a8:be:2c:f4:23:67:4b:2e:09:a9:fd:ae:61:5e:f3:
68:ea:17:c1:b2:0d:b6:c3:db:c4:ec:a0:6a:82:4e:
fa:2e:96:73:0c:94:dd:df:4b:a6:7b:b4:8a:86:f5:
05:08:f4:5e:74:cf:6e:b6:6a:70:41:c4:da:de:ec:
d1:06:0f:83:31:45:cc:a0:3e:dc:2b:4d:ca:52:dd:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DB:B4:3A:ED:44:D1:87:2A:75:59:63:20:FD:4F:CC:30:4E:0B:2E
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/g9u0Ou1E0YcqdVljIP1PzDBOCy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.164.0-107.161.173.255
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0-162.217.250.255
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
58:ac:c9:0e:f1:b9:61:62:91:5b:2b:fa:e8:c2:8e:72:a3:7d:
1b:58:81:4d:87:e3:c2:ba:de:b7:10:5a:4c:22:27:ea:85:6f:
c6:7f:80:02:3a:89:2c:a6:00:32:01:45:4e:9c:aa:8e:2d:a9:
16:96:a4:a4:92:c3:c2:8e:2b:eb:6f:48:b2:2b:4d:e1:77:74:
3b:db:62:9c:fd:ec:bd:38:5e:8f:bd:b7:2f:dc:77:3e:52:a5:
f4:38:e8:a7:d3:42:bd:a7:21:36:45:55:c9:73:c5:bf:d0:3b:
c0:69:50:ff:b6:85:20:a1:ad:2d:07:08:d6:2f:19:08:72:20:
2c:87:2a:1a:5d:21:73:a3:b3:85:fd:e9:eb:4a:38:e9:35:90:
16:0e:f6:70:7c:5a:c1:41:fb:7f:12:bf:8b:a1:6d:65:42:87:
6c:98:ce:e4:59:0f:eb:75:78:47:43:07:c0:c0:b4:e9:33:2e:
d9:63:9c:6e:40:4f:20:e2:ac:39:6a:f0:4f:df:68:8a:2f:e7:
93:72:a1:c1:6f:84:f0:91:aa:76:44:20:55:f9:32:06:37:9e:
f6:24:49:9e:5c:a0:f1:fe:4d:fa:b4:61:ff:ec:4e:df:98:e0:
3c:4f:ed:dc:31:af:04:49:00:30:d3:31:04:2c:aa:82:d4:69:
14:dc:dc:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-fra.rpki-client.org