Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/J4ctpHymPlPmnKS9IRG7SUFgFN4.roa
File: J4ctpHymPlPmnKS9IRG7SUFgFN4.roa (raw, json)
Hash identifier: On6SJ4X1zs8apjT5wHu0TSClDTGXcfMB51Mo/cApZRY=
Subject key identifier: 27:87:2D:A4:7C:A6:3E:53:E6:9C:A4:BD:21:11:BB:49:41:60:14:DE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14FC1677
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/J4ctpHymPlPmnKS9IRG7SUFgFN4.roa
Signing time: Fri 03 Jun 2022 22:51:20 +0000
ROA not before: Fri 03 Jun 2022 22:51:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352065143 (0x14fc1677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 3 22:51:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27872da47ca63e53e69ca4bd2111bb49416014de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:66:86:0a:60:bc:4a:57:4d:70:1c:94:be:
ca:3c:09:ce:31:33:ef:3e:7e:ef:99:ac:01:5f:eb:
f8:77:ec:db:52:c5:d9:4b:0d:d2:6b:81:73:79:98:
99:d5:49:79:9c:8f:8b:ed:de:cb:76:d4:0c:08:6d:
e5:dc:9e:17:87:c2:9f:64:8c:20:4b:5d:d6:7c:34:
1e:ce:07:6c:a3:fb:18:fc:55:95:93:47:22:b9:18:
05:e7:fd:9f:74:1d:75:e5:f4:48:e0:62:35:56:79:
b8:83:d6:c7:8e:b5:ef:74:ad:bc:43:bb:59:0e:3e:
53:53:78:d1:4f:60:16:6c:f3:c3:61:e3:ba:42:cb:
be:92:55:19:b5:0d:bd:ed:d5:28:bc:36:61:f4:d7:
2b:76:a6:7b:21:d9:1c:ab:cf:e0:b3:80:d3:c4:da:
b7:4f:02:d3:3b:45:23:1f:0e:e9:18:fd:49:a5:af:
c8:b4:e5:af:25:87:9f:6d:33:c7:a8:a6:8f:09:e8:
f3:1c:24:bf:b6:68:cf:82:b9:f3:90:90:1c:81:98:
3e:ce:0e:0f:77:6b:ba:da:34:ef:ff:21:7f:0b:5c:
2e:df:ce:ed:4d:f1:14:5e:da:cf:06:44:3b:f0:b0:
8f:20:4d:08:d1:53:0d:df:7d:cd:e6:9a:f4:f5:b1:
70:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:87:2D:A4:7C:A6:3E:53:E6:9C:A4:BD:21:11:BB:49:41:60:14:DE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/J4ctpHymPlPmnKS9IRG7SUFgFN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
Signature Algorithm: sha256WithRSAEncryption
52:1c:93:26:72:f5:8b:93:ba:9f:d6:7d:1c:12:93:4f:b7:35:
28:9f:35:3a:9d:7f:f2:78:fd:fd:aa:f7:af:22:f7:5e:28:a8:
01:89:90:68:5d:7d:2d:d7:7e:d3:db:41:83:04:fb:36:9a:5c:
f4:eb:93:ea:0a:27:e8:5e:1d:fa:e2:ce:80:7f:8d:8e:eb:04:
53:f5:1f:92:41:3b:a4:47:ce:4f:8a:5d:d1:9d:f1:79:40:92:
4d:29:ad:4f:b0:98:96:0c:58:f9:71:d1:2a:2d:55:39:3d:9d:
72:5d:66:c5:dd:0f:e6:6e:c6:62:83:c8:fb:c0:51:cb:ea:b0:
f9:fc:b0:ff:0b:55:f0:41:83:c6:10:25:ed:47:fb:60:6f:24:
08:83:26:e5:e6:50:0b:95:ca:04:5b:e9:ce:ec:30:57:ca:7c:
f0:57:4b:8a:49:77:ea:68:c9:52:ab:7a:f9:8c:c1:6f:21:4d:
92:86:73:ea:46:a9:99:97:d1:84:e1:bc:54:61:2e:d2:6e:c7:
3a:d0:84:7e:31:72:b2:0e:cf:f8:73:61:db:32:eb:62:7e:4e:
19:59:bd:76:69:fe:36:df:ab:5f:05:d7:ee:97:55:82:37:fd:
c2:59:76:bb:2a:72:9a:84:f9:ed:fe:72:13:18:e5:39:c2:26:
ca:ad:4a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org