Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Vk3zUstdUjfyaxJeWntW9F_xbH8.roa
File: Vk3zUstdUjfyaxJeWntW9F_xbH8.roa (raw, json)
Hash identifier: MId5IdFUKZf5UOwp2JWffcvvbldXkPmvfAuhqHl87fk=
Subject key identifier: 56:4D:F3:52:CB:5D:52:37:F2:6B:12:5E:5A:7B:56:F4:5F:F1:6C:7F
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C9619FD
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Vk3zUstdUjfyaxJeWntW9F_xbH8.roa
Signing time: Sat 01 Jan 2022 04:59:30 +0000
ROA not before: Sat 01 Jan 2022 04:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15694
IP address blocks: 194.145.228.0/24 maxlen: 24
195.167.150.0/24 maxlen: 24
195.167.158.0/24 maxlen: 24
195.167.155.0/24 maxlen: 24
206.252.224.0/19 maxlen: 19
217.17.32.0/20 maxlen: 20
206.252.250.0/24 maxlen: 24
212.91.4.0/22 maxlen: 22
217.149.240.0/20 maxlen: 20
212.91.10.0/24 maxlen: 24
212.91.11.0/24 maxlen: 24
212.91.16.0/20 maxlen: 20
212.91.14.0/24 maxlen: 24
212.91.13.0/24 maxlen: 24
212.91.12.0/24 maxlen: 24
77.79.210.0/24 maxlen: 24
195.167.144.0/20 maxlen: 20
85.232.224.0/19 maxlen: 19
46.229.144.0/20 maxlen: 20
213.189.32.0/19 maxlen: 19
213.189.42.0/24 maxlen: 24
213.189.50.0/24 maxlen: 24
85.232.254.0/24 maxlen: 24
77.79.192.0/18 maxlen: 18
2001:1a68:2e::/48 maxlen: 48
2001:1a68:18::/48 maxlen: 48
2001:1a68:0:13::/64 maxlen: 64
2001:1a68::/32 maxlen: 32
2001:1a68:0:1d::/64 maxlen: 64
2001:1a68:0:21::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748034557 (0x2c9619fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=564df352cb5d5237f26b125e5a7b56f45ff16c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:7e:2d:fc:a9:66:ef:77:6f:ee:84:f8:8a:34:
15:df:89:14:8e:2c:79:4e:18:05:6d:68:fe:db:ae:
2f:8e:cb:96:d7:bb:7f:9f:b0:f2:7b:0d:99:5a:36:
ce:a7:ef:d2:c4:09:db:74:0a:3b:f1:7e:e3:0e:96:
fd:3f:a7:b9:84:cf:d7:2f:6d:af:05:e4:bd:f5:41:
d0:62:53:bd:7d:d1:2e:8f:7c:7d:90:dd:6f:cb:5d:
bb:ca:91:16:10:ec:68:e4:c8:e1:c5:f5:99:cd:82:
78:da:17:3f:13:22:12:4b:39:62:f7:a2:08:6a:bd:
bd:86:36:0a:cb:2d:7d:a2:bc:ea:11:47:53:ef:20:
2c:31:12:c4:97:ae:83:cd:19:18:3b:e0:e0:e5:9f:
38:f6:f6:e4:42:ca:4d:89:0a:a8:25:be:46:be:07:
5f:b9:c2:9f:57:b6:70:75:03:03:33:d1:01:5d:07:
16:e5:d7:20:ec:4b:69:a5:5d:87:0a:f7:58:63:d0:
ac:5b:dd:88:35:e0:20:b2:8b:ad:ba:a0:e9:dd:54:
2c:a7:91:11:41:bf:6c:c2:28:d1:30:4d:79:c9:4a:
87:b4:03:3f:69:5f:5a:ea:9c:f1:b2:91:94:9b:3d:
4b:46:87:2f:a4:c5:56:94:cb:77:9d:b6:e2:b9:ea:
fa:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4D:F3:52:CB:5D:52:37:F2:6B:12:5E:5A:7B:56:F4:5F:F1:6C:7F
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Vk3zUstdUjfyaxJeWntW9F_xbH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.144.0/20
77.79.192.0/18
85.232.224.0/19
194.145.228.0/24
195.167.144.0/20
206.252.224.0/19
212.91.4.0/22
212.91.10.0-212.91.14.255
212.91.16.0/20
213.189.32.0/19
217.17.32.0/20
217.149.240.0/20
IPv6:
2001:1a68::/32
Signature Algorithm: sha256WithRSAEncryption
2b:f6:fc:dd:22:04:8c:a7:56:aa:61:ab:b4:c3:2c:dd:30:ed:
45:68:77:6c:b8:7f:f1:ec:b5:96:08:0e:77:9a:d0:98:28:5f:
2a:b9:e8:b7:93:af:d8:08:0c:be:0b:e2:42:69:ec:61:ac:e4:
f6:a9:9b:d0:83:39:6d:8c:27:50:35:2a:8e:d8:ac:b9:c2:08:
f4:38:6c:af:b5:f4:4b:34:8d:c5:68:e1:63:83:42:08:20:57:
83:b9:6d:f2:d2:54:bb:7d:ad:08:4a:63:34:63:fe:cf:f1:e3:
ea:25:db:87:38:de:49:1d:34:e8:c4:56:0c:af:fc:7a:8d:2c:
dc:75:0f:e0:b4:e3:88:b4:74:4f:bc:ec:42:38:13:40:94:65:
cb:b9:86:a9:4d:b4:52:ef:e7:e3:38:3e:ca:7d:3d:b7:5c:fa:
04:84:92:07:6c:0f:9e:a6:9a:c4:af:cb:eb:a8:25:13:7e:27:
4c:4c:20:77:e7:43:4c:d4:81:e5:cf:95:f9:cb:2d:ba:9e:bc:
16:68:43:7e:f0:f9:04:07:31:3b:b1:28:b8:ab:05:ea:fe:01:
7d:6f:3f:a0:c3:2f:81:d3:95:f1:d9:09:b4:2e:61:d3:a9:98:
43:8f:ed:a6:61:63:be:3d:cb:a3:5e:b8:be:b6:cc:4c:57:25:
31:d7:c8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:31 2023 by rpki-client on console-ams.rpki-client.org