Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2dFi6W1vnI2MQeHCyLlmSeo8LuE.roa
File: 2dFi6W1vnI2MQeHCyLlmSeo8LuE.roa (raw, json)
Hash identifier: /qkzOkQh55s/LSxMlpqBfBB0+lGupD4zPX+T0Pk0X9U=
Subject key identifier: D9:D1:62:E9:6D:6F:9C:8D:8C:41:E1:C2:C8:B9:66:49:EA:3C:2E:E1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01850C5A2D8FE849185A5869E0E68F77480F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2dFi6W1vnI2MQeHCyLlmSeo8LuE.roa
Signing time: Tue 13 Dec 2022 16:38:34 +0000
ROA not before: Tue 13 Dec 2022 16:38:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.131.186.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.69.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0c:5a:2d:8f:e8:49:18:5a:58:69:e0:e6:8f:77:48:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 13 16:38:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9d162e96d6f9c8d8c41e1c2c8b96649ea3c2ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:aa:5d:6f:f5:da:3b:39:f7:3a:fd:7e:33:c3:
ba:f8:1b:cc:7a:e8:3f:93:c5:76:e4:e3:75:a3:65:
72:88:a7:a5:6f:56:a6:e7:a0:2a:23:1f:0d:70:0d:
5d:eb:0a:38:21:6f:a8:40:ba:c1:11:67:c0:80:b1:
81:9c:d0:d0:f4:84:64:7a:85:81:22:df:11:9c:bd:
bf:1f:f7:81:4b:b8:7f:69:57:65:16:a4:70:86:f7:
7e:95:ad:39:98:b5:bf:36:ff:ee:d5:0b:90:25:56:
50:65:6d:59:f4:8c:63:56:df:c2:93:24:bf:a1:bf:
04:90:f5:bc:79:0f:94:ad:e8:20:c2:41:d2:79:4b:
b0:22:be:76:4c:b9:49:37:e0:73:a4:22:53:e2:2a:
13:f1:52:b9:4c:85:df:4d:98:20:27:ee:78:82:66:
d4:0c:d5:f3:01:07:d8:37:7c:cf:de:e2:14:57:38:
af:02:d2:ed:dc:26:a2:fa:d8:cb:1e:fb:be:1b:47:
1f:c6:60:56:b2:0b:19:ee:32:e1:90:94:cc:15:6f:
8c:66:f4:44:df:80:57:d0:cc:c2:88:72:2e:05:4d:
77:f3:d8:97:69:2b:09:2f:89:a4:3c:68:a3:88:4b:
30:c7:1c:76:23:a2:c7:44:a9:71:4e:18:43:b4:89:
48:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D1:62:E9:6D:6F:9C:8D:8C:41:E1:C2:C8:B9:66:49:EA:3C:2E:E1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2dFi6W1vnI2MQeHCyLlmSeo8LuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.186.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:250::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
36:c5:fd:38:72:00:a3:d3:66:e7:25:10:8f:d1:60:b3:d9:ca:
7b:0c:3b:f7:7a:24:82:c7:00:d2:15:e1:34:f6:80:87:a2:6b:
e8:1f:d4:8d:0d:39:bd:dc:55:a2:8c:2d:33:75:1c:c6:c8:56:
d6:90:08:fb:02:9f:25:1d:2b:d1:f9:c0:0f:e4:5f:23:98:2f:
8f:a9:b0:1c:6d:15:99:28:b4:7f:7b:4b:6c:26:81:19:af:57:
72:c0:89:6c:02:a0:a9:7d:31:43:c7:c9:12:c6:74:84:87:67:
5f:c2:0e:22:ac:10:24:ac:ba:67:47:09:c9:ce:a0:26:6a:5b:
5f:5c:04:92:89:ec:ed:7c:cb:86:b8:cf:e4:7c:25:56:59:69:
74:10:93:7c:d0:fe:69:76:78:57:b9:37:84:77:d8:ba:30:01:
0c:88:89:82:86:30:c0:72:a5:da:0a:ff:51:1d:0a:43:94:ce:
c5:8d:b2:51:31:a6:a9:c7:86:a9:bb:93:fc:7d:bd:ab:10:cf:
e4:80:a0:d3:e3:04:5e:e1:e0:30:3e:6c:f9:b3:73:d3:a3:f0:
f0:c3:0f:ff:24:30:4a:61:e0:24:c6:5f:cc:8f:28:7e:cf:83:
f5:cd:fd:97:04:a1:1d:a3:c0:bd:fc:97:84:a5:09:63:c8:1f:
e0:12:cb:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org