Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/pYlxUxJyRTv38AU8EwuFPlkMV-k.roa
File: pYlxUxJyRTv38AU8EwuFPlkMV-k.roa (raw, json)
Hash identifier: I9alYu1+K7/ng7n2PvMkt2fInd7L2e+mF9e1FsMuLwI=
Subject key identifier: A5:89:71:53:12:72:45:3B:F7:F0:05:3C:13:0B:85:3E:59:0C:57:E9
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0182D66F3A73CA9D93986F8A92408A5A335A
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/pYlxUxJyRTv38AU8EwuFPlkMV-k.roa
Signing time: Thu 25 Aug 2022 19:16:29 +0000
ROA not before: Thu 25 Aug 2022 19:16:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 185.135.212.0/22 maxlen: 24
45.43.88.0/22 maxlen: 24
198.105.96.0/22 maxlen: 24
198.105.104.0/22 maxlen: 24
198.105.112.0/24 maxlen: 24
198.105.114.0/23 maxlen: 24
198.105.113.0/24 maxlen: 24
155.254.40.0/22 maxlen: 22
155.254.44.0/22 maxlen: 24
155.254.50.0/23 maxlen: 24
155.254.52.0/22 maxlen: 24
155.254.56.0/22 maxlen: 24
45.43.92.0/22 maxlen: 24
185.53.131.0/24 maxlen: 24
185.53.128.0/24 maxlen: 24
185.53.130.0/24 maxlen: 24
185.53.129.0/24 maxlen: 24
185.83.219.0/24 maxlen: 24
185.83.218.0/24 maxlen: 24
185.83.216.0/24 maxlen: 24
185.83.217.0/24 maxlen: 24
107.181.137.0/24 maxlen: 24
107.181.156.0/22 maxlen: 22
91.210.64.0/22 maxlen: 24
103.206.232.0/22 maxlen: 24
94.177.5.0/24 maxlen: 24
43.239.88.0/22 maxlen: 22
87.239.252.0/23 maxlen: 24
2a02:2ca0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d6:6f:3a:73:ca:9d:93:98:6f:8a:92:40:8a:5a:33:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Aug 25 19:16:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a58971531272453bf7f0053c130b853e590c57e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:40:01:ff:2c:4d:5c:45:4c:c9:43:cf:5b:7e:
f6:fd:d1:d1:39:23:42:ec:f7:61:26:55:c0:72:e8:
d6:52:d8:7c:10:62:b3:d5:63:75:87:cd:1e:18:90:
fb:17:e5:cb:6d:76:8d:7b:a5:55:0e:31:90:43:82:
0c:55:da:49:86:ae:54:18:7b:dc:88:e7:6a:fb:28:
18:9a:43:38:5d:da:2a:a3:92:eb:00:d9:d6:3c:08:
c3:9c:d8:c2:66:09:e2:9d:30:ea:61:27:e7:31:4b:
e6:87:83:0f:80:81:1d:09:50:51:45:f3:48:9a:77:
48:86:c2:42:75:e6:75:1e:b5:52:f8:a6:ea:dd:e9:
12:5f:3b:48:2b:ce:90:49:99:d3:2b:fc:7e:05:2e:
90:63:df:99:76:7d:11:75:4c:9a:c3:aa:a2:aa:79:
ea:b7:fa:5d:11:18:79:f2:4b:05:31:dd:2e:8d:46:
4b:3a:fe:58:d4:89:4e:f5:68:dc:75:5a:8f:ee:63:
7a:ef:6e:f6:1f:09:1d:31:f3:b1:70:1e:04:e6:1e:
25:88:e9:8c:66:01:11:ca:f6:e4:b6:e6:c0:ac:4f:
39:ff:76:ae:e5:e2:d9:4c:7b:d1:1d:11:f9:fd:16:
7d:2f:3a:60:7b:47:6c:67:09:4e:eb:f0:22:a5:ec:
12:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:89:71:53:12:72:45:3B:F7:F0:05:3C:13:0B:85:3E:59:0C:57:E9
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/pYlxUxJyRTv38AU8EwuFPlkMV-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.239.88.0/22
45.43.88.0/21
87.239.252.0/23
91.210.64.0/22
94.177.5.0/24
103.206.232.0/22
107.181.137.0/24
107.181.156.0/22
155.254.40.0/21
155.254.50.0-155.254.59.255
185.53.128.0/22
185.83.216.0/22
185.135.212.0/22
198.105.96.0/22
198.105.104.0/22
198.105.112.0/22
IPv6:
2a02:2ca0::/32
Signature Algorithm: sha256WithRSAEncryption
97:6a:00:ca:74:a7:af:19:f1:c2:01:8e:8a:a0:1a:58:1a:f6:
c4:84:e7:6a:35:dd:4e:8a:d6:de:39:b1:9f:c2:5c:f5:90:16:
c3:f2:4e:b4:d9:95:d1:84:1f:ae:76:bb:47:6d:6e:d2:c6:dc:
5b:8a:d1:cb:c6:15:41:4d:9a:d9:ad:7a:3d:b9:6b:7d:8b:15:
fb:24:e4:df:c2:4c:23:48:ee:da:27:ce:32:95:66:fa:5d:95:
8b:46:97:ae:df:19:74:5c:b1:da:b7:04:64:03:22:14:24:7c:
99:95:c9:fe:79:28:4b:1f:08:9b:c8:ed:6d:a2:3c:92:50:a5:
7c:d2:9d:1f:04:cf:51:57:73:a3:94:00:be:57:41:3e:e6:0b:
62:70:64:1d:9d:63:f3:7f:77:ce:f9:52:b4:4c:62:4d:89:ae:
ae:b0:d8:37:0d:0f:e8:55:6b:ee:fe:62:a5:f8:aa:6a:e6:78:
3e:14:0c:e1:89:57:76:6d:33:5e:54:39:41:a7:7a:f2:60:27:
00:e7:8c:dc:77:0e:35:01:d6:03:f1:4e:8d:07:19:01:dc:50:
d0:81:9d:8f:c6:fe:a5:04:a2:72:66:da:23:04:0d:e2:d9:81:
e2:68:d6:2c:3c:7b:28:0b:76:7a:11:46:12:93:73:20:b1:e4:
2d:19:b6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org