Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/QPYcdCDuGtBCe5L-F4jUpsJ47oY.roa
File: QPYcdCDuGtBCe5L-F4jUpsJ47oY.roa (raw, json)
Hash identifier: e6JoE9tGYhl9YXeEzXF3wXjS9fyTn2Cyj6cZc3dk91k=
Subject key identifier: 40:F6:1C:74:20:EE:1A:D0:42:7B:92:FE:17:88:D4:A6:C2:78:EE:86
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 3861A1B6
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/QPYcdCDuGtBCe5L-F4jUpsJ47oY.roa
Signing time: Thu 12 May 2022 06:57:02 +0000
ROA not before: Thu 12 May 2022 06:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12716
IP address blocks: 151.251.255.0/24 maxlen: 24
151.251.254.0/24 maxlen: 24
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
151.251.240.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.238.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.243.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
85.118.71.0/24 maxlen: 24
85.118.68.0/23 maxlen: 23
85.118.70.0/24 maxlen: 24
213.226.17.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
213.226.19.0/24 maxlen: 24
85.118.74.0/24 maxlen: 24
62.204.154.0/23 maxlen: 23
85.118.84.0/24 maxlen: 24
213.226.36.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.63.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 945922486 (0x3861a1b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 12 06:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40f61c7420ee1ad0427b92fe1788d4a6c278ee86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:26:55:ed:e3:cf:1f:62:7d:27:83:27:f9:f0:
5d:fc:91:d9:36:c4:d3:91:7d:cb:d5:51:7e:59:89:
b2:55:e4:a2:56:de:66:d5:d5:e1:82:28:c6:11:12:
86:bc:b9:8b:9b:6d:b2:87:01:fb:00:be:82:67:44:
1e:22:f5:b7:64:6d:65:75:d9:fa:8b:93:f3:be:04:
8b:c5:5b:c9:d0:ce:b0:9e:85:65:07:ad:f8:fb:df:
fd:2d:2e:53:29:76:bc:48:72:78:89:56:f7:72:3f:
13:53:ff:98:1e:0f:82:44:f5:ad:49:f9:79:52:3e:
ea:9a:2c:7d:de:45:00:11:ce:e9:6a:17:1e:81:01:
ad:29:9a:2b:63:67:e2:2d:ec:51:2d:fe:84:21:5e:
15:88:f9:f1:69:4e:eb:9b:1f:66:ec:a8:5e:d5:07:
62:54:08:84:0d:84:e0:12:b2:bb:82:d4:98:68:75:
ee:1f:f0:34:6e:ff:a2:a3:64:e8:ab:ab:d2:ea:db:
e5:61:ec:a5:af:9c:ca:63:55:96:ac:23:00:95:5a:
8a:83:42:80:6d:6a:55:a3:7e:17:dc:91:39:09:9b:
dd:ce:c7:2d:f7:99:c2:d4:8f:ca:bf:a4:fb:95:15:
8c:9f:01:a1:bb:b2:60:51:d6:4b:e6:b4:ee:e8:12:
69:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F6:1C:74:20:EE:1A:D0:42:7B:92:FE:17:88:D4:A6:C2:78:EE:86
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/QPYcdCDuGtBCe5L-F4jUpsJ47oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.68.0-85.118.74.255
85.118.84.0/24
85.118.92.0/23
89.215.62.0/23
151.251.238.0-151.251.255.255
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
213.226.63.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b5:db:b1:ca:70:46:40:6c:24:b9:59:54:8e:de:44:1c:2a:
de:a1:f7:ea:73:1d:2e:c1:18:cc:34:b1:59:69:b5:2d:38:7a:
d8:e9:81:4a:f4:01:de:b7:1d:2f:b9:fe:da:e4:fb:56:15:2e:
c7:dc:4f:23:d3:dc:be:66:19:07:61:e7:8b:5c:ee:ba:8d:1a:
30:e7:04:b1:56:63:56:12:21:c6:65:66:50:47:0f:f2:80:d2:
de:70:09:b5:7e:76:4d:61:11:da:a2:90:3b:99:07:3e:34:a2:
43:ea:8b:68:8d:72:46:0e:df:8b:38:cc:90:6a:82:62:b5:e0:
ad:9d:f8:f6:3a:ea:c4:11:9d:96:0e:a9:f4:6f:65:49:19:73:
c9:c4:a7:4e:3f:61:6e:0f:25:f3:2e:1e:95:9e:cc:5b:76:96:
39:9d:c5:67:5d:c8:21:e6:0e:fc:71:d5:21:8e:bc:a5:52:ca:
ed:d3:3e:6d:3c:5e:52:45:7d:a2:a4:62:03:7b:cc:8d:d4:ba:
1f:3a:f8:03:f9:c2:46:1a:bc:f1:df:2e:9c:9f:84:fd:e4:21:
df:86:75:7b:b9:8d:d7:51:d4:dc:50:d9:98:e8:05:39:15:9d:
6b:fa:ca:ef:11:e5:f0:ef:e4:1a:37:26:52:b7:0e:1d:23:f2:
e6:a7:63:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:19 2023 by rpki-client on console-fra.rpki-client.org