Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KtHOjdi0sZYV8MAvTI-46jnZ_RE.roa
File: KtHOjdi0sZYV8MAvTI-46jnZ_RE.roa (raw, json)
Hash identifier: pS2UcB4tOdMC7pi1wT2SfCrXgokNM7w75ARHs7dea0I=
Subject key identifier: 2A:D1:CE:8D:D8:B4:B1:96:15:F0:C0:2F:4C:8F:B8:EA:39:D9:FD:11
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184F767AFC8EB4A21A860213811000001C2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KtHOjdi0sZYV8MAvTI-46jnZ_RE.roa
Signing time: Fri 09 Dec 2022 15:01:18 +0000
ROA not before: Fri 09 Dec 2022 15:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.69.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f7:67:af:c8:eb:4a:21:a8:60:21:38:11:00:00:01:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 9 15:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ad1ce8dd8b4b19615f0c02f4c8fb8ea39d9fd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:24:03:73:6a:35:95:9d:7e:c9:54:1e:39:05:
0f:1e:34:5d:72:f7:cc:d8:35:af:85:3e:b6:c5:42:
f6:32:57:53:44:74:cf:93:ec:3d:a1:49:fe:b4:45:
a1:aa:0b:8b:61:5c:c0:56:20:1f:f4:4f:79:f7:29:
c0:49:6d:2d:d5:2b:b0:8a:ef:9f:a2:ad:41:da:2d:
d5:e8:cf:2a:72:f8:d4:3d:aa:c3:28:f6:64:1c:e8:
05:2d:d8:83:ae:29:4a:17:5e:cf:e5:50:14:86:19:
00:5c:9e:7f:78:d1:c7:db:4c:a3:36:8f:03:54:95:
8e:b6:c9:ae:7f:51:86:3c:47:59:0f:e2:cd:c9:78:
d4:88:96:6d:b2:68:46:94:fb:a9:f2:7f:e9:7f:40:
00:94:09:9c:e6:4a:22:e8:28:03:3d:2c:c6:d6:97:
0c:82:86:32:7d:c9:1b:06:1a:7c:93:4c:7e:75:8c:
58:df:ab:1f:1f:70:2a:d0:28:64:b7:8d:0e:93:56:
34:20:f8:f6:60:0e:73:6a:e8:e4:07:28:55:aa:a8:
71:2e:c3:23:53:11:cb:6d:46:35:14:29:a0:3e:0d:
fc:b1:1f:91:7f:53:6a:dd:d0:0f:74:82:2e:c0:79:
7b:56:12:8f:cc:58:2f:62:2f:88:26:b3:e1:5e:ca:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D1:CE:8D:D8:B4:B1:96:15:F0:C0:2F:4C:8F:B8:EA:39:D9:FD:11
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KtHOjdi0sZYV8MAvTI-46jnZ_RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.69.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:250::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
23:ed:eb:f2:65:31:65:3f:3f:83:9d:d6:d0:71:cb:7f:e5:b6:
13:ae:51:49:9e:f3:af:e5:e6:6e:7c:59:27:1c:e2:d4:ae:0d:
c8:af:a8:b4:c3:5b:f8:2f:e9:88:ec:05:22:ee:14:7c:1d:6a:
3a:6e:d0:38:9e:3e:1b:67:81:8a:e3:14:94:17:95:0f:77:13:
f9:33:4d:92:46:d4:e8:09:ca:8f:5b:e6:6a:bf:c2:3a:0e:01:
f5:48:eb:17:0e:b3:36:d6:94:a5:23:83:75:b2:e9:9a:55:f2:
99:91:46:9e:9a:9a:cb:98:a9:aa:17:1a:0a:a5:45:1a:e5:06:
86:10:bd:35:02:09:e0:f6:e2:c9:ea:8f:ab:4d:0d:fc:da:bb:
2e:00:bb:92:45:2c:4e:7e:0e:a1:57:04:f0:7c:77:ac:c8:ea:
49:a7:67:00:4b:cb:ac:93:77:60:4e:17:ba:eb:6d:30:8a:e4:
82:8b:09:a5:73:83:0f:5f:d0:38:53:15:8a:7f:31:ec:e1:58:
a2:dc:a5:a1:b0:7c:02:74:48:70:77:7a:9b:2e:bc:15:c8:8a:
66:c6:52:45:df:0a:9c:af:4d:dc:18:16:30:0b:c1:65:b0:36:
5a:31:85:4e:a3:ce:2c:2d:a9:bc:4c:ef:69:b9:ec:36:23:c6:
b8:90:c2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org