Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P__gNDnLsGXlJ8cJlxG7fJbSk-w.roa
File: P__gNDnLsGXlJ8cJlxG7fJbSk-w.roa (raw, json)
Hash identifier: 3DzjDepWcZMkiVoviaPmUKL58k+OPyFF4UBgUjegdTg=
Subject key identifier: 3F:FF:E0:34:39:CB:B0:65:E5:27:C7:09:97:11:BB:7C:96:D2:93:EC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183AC46A512DE60C1F6C890EBE795535C23
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P__gNDnLsGXlJ8cJlxG7fJbSk-w.roa
Signing time: Thu 06 Oct 2022 07:50:54 +0000
ROA not before: Thu 06 Oct 2022 07:50:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
193.58.239.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:46:a5:12:de:60:c1:f6:c8:90:eb:e7:95:53:5c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 6 07:50:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fffe03439cbb065e527c7099711bb7c96d293ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:82:b5:03:20:52:a3:18:9c:a4:1f:49:f0:b0:
d1:af:01:eb:04:b4:4f:02:72:f8:69:bb:f1:a4:42:
f8:90:9c:51:90:11:d0:68:8a:8a:b6:68:b4:bc:68:
80:0c:25:5b:6a:7d:38:4e:62:89:c0:9b:12:87:1b:
1a:be:51:1b:c9:7e:9d:af:ab:19:a4:9e:25:6d:a2:
b3:a4:b2:f1:89:db:1f:3a:1d:d1:7d:e8:17:b2:03:
d6:06:db:30:f4:f2:9d:02:3a:01:4b:57:5e:05:92:
2d:45:42:77:77:e0:32:d5:b4:0b:e7:66:9f:1a:4a:
aa:03:a2:d5:1d:b3:a3:5e:02:33:9c:2f:78:0a:5c:
e6:e3:50:72:b1:29:99:7b:12:03:d3:4d:ed:78:7d:
a0:70:9a:f2:30:b3:bb:c5:c9:f3:78:59:75:6b:24:
ee:25:26:70:35:0b:f5:5e:64:ec:9f:71:7d:6a:90:
e3:7d:0d:73:19:28:12:3a:3b:7a:d3:17:29:0f:e8:
13:c9:51:31:04:c5:3f:ba:f0:25:7d:81:15:cb:89:
45:65:8b:00:87:68:96:41:a7:4e:e0:03:6b:a1:2f:
b0:60:1e:e0:bf:69:75:9d:8d:82:82:6b:4c:29:6c:
6f:73:0c:f9:ab:c8:f7:dc:62:68:15:a5:e6:af:d4:
45:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:FF:E0:34:39:CB:B0:65:E5:27:C7:09:97:11:BB:7C:96:D2:93:EC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P__gNDnLsGXlJ8cJlxG7fJbSk-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
193.58.239.0/24
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
6f:c0:eb:7a:ea:3d:32:ff:e7:9a:10:7a:bb:4b:0e:bb:49:c0:
fa:8b:d3:3c:c4:f2:0a:95:ab:83:c9:8b:c3:0d:4e:c7:e6:c2:
82:68:2d:02:82:06:3c:20:92:60:9b:e2:75:9d:46:e5:ab:37:
62:e3:7b:b7:01:62:91:cf:19:1d:d1:a4:47:d0:75:6b:05:2a:
4b:a6:8e:1f:69:4f:d8:5d:4a:e6:b3:26:d0:d5:41:8b:5e:5f:
86:b7:89:03:d3:7e:fa:4f:42:96:bf:8c:65:31:c1:10:1c:2a:
71:60:45:bd:e1:3c:1a:0e:ba:50:b0:a8:5b:5e:60:a0:43:73:
0e:65:59:a2:4d:13:0e:d7:f6:9d:56:ed:04:19:6e:fd:a5:e7:
4b:4e:6a:0e:c9:2a:93:f6:98:e1:0a:7a:fb:37:21:10:57:e9:
a0:15:a8:23:26:f1:d2:48:41:91:ff:2e:41:b9:d7:be:23:1a:
c1:ca:60:ca:9f:50:66:73:bf:96:3b:38:20:ef:c4:62:7f:90:
4a:3c:24:8a:d5:e4:75:1f:9e:b2:39:ec:34:c0:b4:51:39:55:
bd:b5:9d:75:4d:69:89:52:78:16:45:90:01:6f:06:30:16:89:
59:1b:c6:61:7d:ff:b9:63:13:37:1f:4b:e4:cc:7e:fc:e9:c9:
6f:dd:60:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org