Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa
File: GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa (raw, json)
Hash identifier: dzq9WAWzkFrar0A1bUhhjdbftCP0OjQobwzHS2seHA0=
Subject key identifier: 19:19:43:03:89:6C:97:57:05:3B:BA:F1:8B:BF:96:64:0C:4B:04:5A
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0A30D625
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa
Signing time: Thu 07 Apr 2022 11:32:12 +0000
ROA not before: Thu 07 Apr 2022 11:32:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7489
IP address blocks: 2.56.164.0/22 maxlen: 24
78.108.216.0/22 maxlen: 24
45.140.220.0/22 maxlen: 24
193.221.192.0/22 maxlen: 24
194.50.16.0/22 maxlen: 24
194.31.140.0/22 maxlen: 24
212.107.12.0/22 maxlen: 24
185.186.64.0/22 maxlen: 24
45.154.196.0/22 maxlen: 24
185.227.68.0/22 maxlen: 24
185.185.40.0/22 maxlen: 24
45.90.144.0/22 maxlen: 24
194.56.224.0/22 maxlen: 24
178.218.144.0/22 maxlen: 24
77.83.240.0/22 maxlen: 24
45.81.20.0/22 maxlen: 24
89.190.156.0/22 maxlen: 24
83.143.116.0/22 maxlen: 24
185.242.224.0/22 maxlen: 24
185.234.72.0/22 maxlen: 24
193.31.28.0/22 maxlen: 24
193.31.30.0/24 maxlen: 24
85.202.160.0/22 maxlen: 24
193.34.76.0/22 maxlen: 24
2a0b:7080:10::/48 maxlen: 48
2a0b:b87:ffb4::/48 maxlen: 48
2a0b:b82::/44 maxlen: 44
2a0b:b85::/32 maxlen: 32
2a0b:b87:fff0::/44 maxlen: 44
2a0b:7080:10::/44 maxlen: 44
2a0b:7080:10::/45 maxlen: 45
2a0b:b87:ffda::/48 maxlen: 48
2a0d:77c7::/32 maxlen: 48
2a0b:7080:20::/44 maxlen: 48
2a0b:b87:ffec::/48 maxlen: 48
2a0b:b84::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170972709 (0xa30d625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Apr 7 11:32:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19194303896c9757053bbaf18bbf96640c4b045a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:59:79:21:b2:a1:bd:de:04:35:44:81:89:cc:
e7:17:71:8d:7c:fc:0f:9a:cb:79:fa:16:af:c2:df:
bf:bc:ba:aa:b8:96:8d:8e:76:52:c7:46:cb:6c:24:
ac:fe:74:ee:03:c9:1f:f4:66:af:5d:bf:28:de:eb:
48:ec:91:5e:74:ab:de:9c:ff:51:92:21:37:8d:05:
d4:74:54:ed:30:fe:f1:46:37:32:52:4e:31:2a:87:
0f:d1:cc:c9:81:eb:09:e7:9b:81:e0:d1:c4:1f:63:
76:f4:70:3b:42:a6:00:6b:d6:19:1e:3c:a3:f0:0e:
8e:a8:06:0e:2e:30:62:1a:6e:47:ea:12:56:d1:c8:
66:d7:de:bc:40:86:67:93:3e:0a:56:34:39:56:75:
11:61:e3:0d:20:c1:0f:a7:49:39:74:ac:80:34:3b:
0a:ba:bd:35:34:c6:52:cf:ad:34:0b:af:fc:b7:fc:
0c:23:86:90:6d:4d:10:5d:6c:50:64:2d:6f:38:98:
14:e0:64:34:72:00:b1:90:25:ef:80:50:1e:f0:06:
22:27:9b:28:0c:75:12:bc:c0:09:00:cc:33:ee:8c:
65:65:29:55:d4:21:ae:00:9c:86:94:81:98:c7:b6:
81:7d:94:e0:3d:5d:0d:73:12:fa:58:e8:82:93:82:
31:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:19:43:03:89:6C:97:57:05:3B:BA:F1:8B:BF:96:64:0C:4B:04:5A
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.164.0/22
45.81.20.0/22
45.90.144.0/22
45.140.220.0/22
45.154.196.0/22
77.83.240.0/22
78.108.216.0/22
83.143.116.0/22
85.202.160.0/22
89.190.156.0/22
178.218.144.0/22
185.185.40.0/22
185.186.64.0/22
185.227.68.0/22
185.234.72.0/22
185.242.224.0/22
193.31.28.0/22
193.34.76.0/22
193.221.192.0/22
194.31.140.0/22
194.50.16.0/22
194.56.224.0/22
212.107.12.0/22
IPv6:
2a0b:b82::/44
2a0b:b84::/31
2a0b:b87:ffb4::/48
2a0b:b87:ffda::/48
2a0b:b87:ffec::/48
2a0b:b87:fff0::/44
2a0b:7080:10::-2a0b:7080:2f:ffff:ffff:ffff:ffff:ffff
2a0d:77c7::/32
Signature Algorithm: sha256WithRSAEncryption
91:18:cf:e3:bf:b5:93:55:c5:ea:6e:b0:b9:44:f5:4f:c7:e8:
57:0e:25:62:07:27:7b:92:9e:7e:30:92:30:fd:9c:3b:3c:0b:
00:d5:d2:4f:f7:81:0a:4a:d2:78:92:35:a1:67:2e:e9:06:5a:
99:17:45:22:e5:02:ec:4c:6b:7f:8f:d2:ca:ee:05:5b:04:af:
4c:70:fe:63:8e:4a:a2:88:f8:f5:b2:0d:f1:05:4d:06:51:2e:
b9:9e:a6:c1:46:7f:c2:eb:ff:c7:a2:b7:1e:91:40:ad:a6:33:
0a:ac:85:c1:cf:43:29:5f:05:32:d3:b8:e4:9c:25:99:08:e8:
b8:71:06:9c:85:60:47:04:cf:b0:21:57:fb:5d:8b:60:76:69:
c2:96:6d:8f:9c:06:a7:c2:eb:e4:82:66:b8:68:5c:9f:73:b8:
ca:c7:d0:d5:cc:e8:7a:d5:33:05:91:e1:9d:c5:fc:5e:b7:e0:
5b:58:1a:15:65:8e:57:2f:b1:d3:a0:b2:f4:26:49:de:9a:fc:
d5:2f:8e:98:c2:99:84:a3:e2:75:d8:cd:9f:20:a8:f4:db:14:
a9:3f:94:24:82:38:17:d8:01:93:a9:a3:fb:7b:50:60:f7:27:
65:ee:17:b9:ed:4e:34:2e:c1:c0:e8:51:58:c8:a3:00:51:6a:
df:9a:12:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org