Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P0ifDAZLRneV8tpsAyoSt8170a8.roa
File: P0ifDAZLRneV8tpsAyoSt8170a8.roa (raw, json)
Hash identifier: 4jL5Jv5y6SG3N8Ysg/MMlNVPXeF7M1LGE1IoUNkK9iM=
Subject key identifier: 3F:48:9F:0C:06:4B:46:77:95:F2:DA:6C:03:2A:12:B7:CD:7B:D1:AF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 15176D83
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P0ifDAZLRneV8tpsAyoSt8170a8.roa
Signing time: Fri 10 Jun 2022 22:51:03 +0000
ROA not before: Fri 10 Jun 2022 22:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353856899 (0x15176d83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 10 22:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f489f0c064b467795f2da6c032a12b7cd7bd1af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:08:45:21:b0:32:87:5b:be:d3:7d:c4:b5:15:
5a:c3:f9:9f:af:4a:cf:eb:69:24:55:8b:b5:62:0e:
61:f5:36:6c:ee:9b:0e:e3:af:f8:3f:79:eb:81:fc:
7a:02:3a:57:eb:63:8a:b7:37:cd:80:fb:6d:93:4d:
28:15:19:63:5a:4c:e5:dd:fe:c2:f0:81:f2:96:3c:
0a:28:2a:92:ef:34:4b:0b:2d:65:1a:ae:3c:ff:8e:
1f:4a:10:9d:d5:0a:10:86:f4:b1:a8:a9:31:b3:5d:
7a:7c:b8:f3:74:af:92:3a:fa:7c:3b:dd:3c:b9:fe:
2b:a1:13:18:32:81:7a:f7:0b:00:84:ff:a5:1f:ff:
f4:3f:2d:91:3a:2a:94:cc:2a:93:25:bb:cc:d6:7e:
93:a4:34:39:45:b6:a4:b0:9b:09:41:86:92:17:f3:
84:3e:86:87:3b:7e:34:c0:8f:c5:ff:39:48:f7:32:
15:a6:03:7c:85:4e:d4:46:7f:68:69:f8:b9:4a:eb:
e0:92:54:f0:91:48:f4:ce:cc:51:e6:45:17:87:f0:
64:51:a6:4d:c2:77:39:36:4e:88:fd:b8:b0:59:8f:
3e:84:21:7d:51:02:52:85:ab:f1:f8:cc:75:36:40:
02:25:08:7b:3a:ff:8e:db:9d:ff:52:c4:93:c7:2c:
b6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:48:9F:0C:06:4B:46:77:95:F2:DA:6C:03:2A:12:B7:CD:7B:D1:AF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P0ifDAZLRneV8tpsAyoSt8170a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
Signature Algorithm: sha256WithRSAEncryption
51:ac:9d:2d:75:9b:49:b5:3e:8b:61:94:97:f2:d6:d4:5b:d0:
22:85:06:86:6b:c8:ea:f4:27:e1:00:79:b2:6b:6a:39:49:14:
64:7b:ac:aa:46:94:66:cc:60:02:f9:76:89:25:e2:ed:85:4b:
a9:24:36:14:23:90:6f:dc:e6:19:b5:e9:25:0a:19:d2:b6:cc:
76:4b:2c:70:b5:62:65:22:c2:8f:c9:91:c3:b6:d7:b7:d9:9b:
66:d5:da:d8:2f:ac:63:78:a7:92:46:14:e0:3e:c6:9d:0b:90:
92:b1:e3:16:bd:4c:b5:4f:eb:3a:bb:2c:f3:4c:7c:a5:96:ea:
f5:5b:33:01:23:5b:17:f8:61:46:ea:aa:0e:a8:e5:d8:15:05:
f8:f1:dd:9a:62:5c:b0:a9:a5:8f:b2:f7:dd:27:6d:27:72:5d:
ab:15:3a:be:65:32:59:a2:33:54:cf:3e:2c:bf:11:7d:14:8c:
1a:7e:76:8f:27:52:5a:eb:9f:e3:1f:f5:df:42:2e:5c:22:f6:
fc:87:59:a1:21:42:7a:b7:69:18:ce:e8:e1:b1:7e:f0:de:3f:
a5:72:ee:11:3e:9b:50:f4:48:34:cf:cb:4b:b3:6c:ba:a1:f4:
90:e8:f6:02:5f:f2:b8:2e:e4:58:6b:39:26:f5:4d:d2:3b:83:
c6:1d:18:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org