Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ECWnnhWHzvJ1i6Uzw1PhtN3MqeU.roa
File: ECWnnhWHzvJ1i6Uzw1PhtN3MqeU.roa (raw, json)
Hash identifier: OSOjh4YKsDIqMHFhcPyPFQFZFUpK/Jw59y1VAsZJ8pc=
Subject key identifier: 10:25:A7:9E:15:87:CE:F2:75:8B:A5:33:C3:53:E1:B4:DD:CC:A9:E5
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184525545D154D12B48B68FBBADF5AD9D7D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ECWnnhWHzvJ1i6Uzw1PhtN3MqeU.roa
Signing time: Mon 07 Nov 2022 13:43:50 +0000
ROA not before: Mon 07 Nov 2022 13:43:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:55:45:d1:54:d1:2b:48:b6:8f:bb:ad:f5:ad:9d:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 7 13:43:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1025a79e1587cef2758ba533c353e1b4ddcca9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b6:eb:dc:4e:c4:5b:93:d3:97:a8:18:a0:b8:
9d:1e:b6:cf:d3:f2:d0:82:87:0b:39:1d:63:21:9a:
aa:04:c4:43:db:db:19:c9:9a:be:01:b2:5a:45:fd:
ab:d8:cb:a5:a3:3f:bc:55:27:f0:fb:75:a1:4d:6b:
04:1c:7f:1d:50:aa:77:7a:6e:b7:79:da:93:79:5b:
67:0e:d7:8a:9a:08:11:0b:b5:ae:ea:cb:a6:58:12:
1a:38:19:c8:21:6e:8f:c3:f2:65:74:de:76:bb:33:
fe:7d:dd:cd:29:6f:4e:ed:ea:75:89:32:84:3b:e7:
62:50:f4:df:05:9f:31:5e:1c:95:ae:ee:5d:ab:52:
91:70:4c:88:28:fd:fe:60:57:af:ca:75:3b:01:f5:
05:8e:ed:03:f8:cc:f4:69:85:56:e3:61:5d:ef:0d:
a2:f4:ef:0a:d3:67:dd:d7:37:55:6c:13:ca:fb:41:
78:76:2a:82:aa:df:c0:25:bc:09:38:c2:51:1e:57:
ba:09:21:27:4a:be:34:db:5f:40:1b:79:e4:82:6f:
2a:91:51:86:5b:23:83:5b:d5:87:ac:31:58:30:96:
f0:3f:4a:da:f5:11:16:3a:25:60:6f:97:31:9d:c7:
59:0e:62:03:71:41:e8:af:0d:bd:97:d4:5b:27:d5:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:25:A7:9E:15:87:CE:F2:75:8B:A5:33:C3:53:E1:B4:DD:CC:A9:E5
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ECWnnhWHzvJ1i6Uzw1PhtN3MqeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
61:78:cf:98:80:aa:11:39:40:d4:36:37:c4:69:a6:e2:88:cb:
bd:5f:25:17:db:e0:5b:9e:82:51:11:f5:97:9d:c3:7c:1f:53:
a4:ca:4b:e4:62:2c:25:22:b3:b3:84:ef:f2:24:81:88:30:8f:
69:94:ed:64:e9:f5:ad:2a:67:b8:9c:a7:57:25:cd:d8:b8:2f:
30:b8:b6:91:8c:33:80:ef:39:43:5c:5c:3e:c7:01:5e:61:cb:
8b:7c:b1:57:fd:d3:b3:28:87:93:a2:40:74:37:82:5b:4d:ca:
09:55:4f:6e:e8:a9:46:af:18:1f:6e:fe:18:8d:2f:7a:65:93:
5e:17:3e:cb:45:de:75:ee:2f:ea:f6:b3:c3:9e:fe:94:bb:e2:
76:8b:61:1d:a8:26:23:5e:eb:ca:c7:4d:03:a2:a9:04:f2:1c:
da:b1:e5:fe:1d:05:80:f4:80:ae:e5:92:42:b4:5f:8c:7b:76:
05:c9:c8:2a:86:90:0c:a1:2e:e4:78:04:6d:50:3a:15:a8:5f:
5c:34:21:37:83:0f:1b:28:73:85:f2:90:e1:e3:ae:e5:07:a6:
e2:4b:db:bb:86:5b:e8:12:50:28:af:57:97:d7:f2:7c:fa:eb:
7e:16:87:ed:d0:90:b2:97:45:e0:aa:35:f0:fd:b6:c4:c2:a4:
66:69:70:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org