Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rug3cEgd6qdnitOuZaEsqltAEgo.roa
File: Rug3cEgd6qdnitOuZaEsqltAEgo.roa (raw, json)
Hash identifier: 17nOkFoDX2kd2YAGACg/upOC9XeQ+gUwu1vnWrWIH3w=
Subject key identifier: 46:E8:37:70:48:1D:EA:A7:67:8A:D3:AE:65:A1:2C:AA:5B:40:12:0A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184AAA16A68A9CF439B27BEF48870358FA0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rug3cEgd6qdnitOuZaEsqltAEgo.roa
Signing time: Thu 24 Nov 2022 17:13:35 +0000
ROA not before: Thu 24 Nov 2022 17:13:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.69.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:a1:6a:68:a9:cf:43:9b:27:be:f4:88:70:35:8f:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 24 17:13:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46e83770481deaa7678ad3ae65a12caa5b40120a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c8:30:73:0b:f2:17:68:da:2e:2e:6b:e6:b4:
44:39:95:31:fd:08:db:b1:09:7a:e2:f1:1f:34:89:
08:c4:95:81:47:a5:d8:9f:b8:e1:5e:73:e6:c8:6b:
ea:92:a9:0b:0f:0c:c0:13:2f:de:00:68:13:d1:98:
59:84:aa:6d:4f:f1:fc:02:95:ba:cd:99:b6:f0:e3:
2f:07:3a:f8:e0:9d:c6:7e:3f:18:49:c3:d2:3e:b9:
79:a3:ba:83:73:d9:28:16:4a:e0:cf:2b:e3:00:0b:
b7:60:46:e1:be:0f:74:d0:ae:7e:5d:da:0b:cb:ed:
a0:92:36:93:9b:5a:6a:28:c7:00:09:4d:84:68:7b:
9d:04:7a:a5:46:48:b0:51:64:7b:a1:96:73:b8:38:
8a:d8:db:78:bf:30:0c:b5:71:be:a9:c7:10:fd:3f:
b6:f0:85:41:2f:67:4a:f3:ef:51:51:a2:3d:7f:9e:
15:99:46:ec:6a:01:38:a8:07:89:34:32:95:d0:96:
00:0a:52:50:aa:5f:40:c7:2e:c3:63:c2:c4:20:af:
90:75:ca:be:cf:17:c9:55:7e:ce:5b:48:43:7f:ce:
00:a5:59:38:40:20:06:16:e8:a9:fe:30:a8:c2:90:
61:07:ba:9e:79:c8:ba:04:fd:e6:49:18:5c:d9:6a:
d5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E8:37:70:48:1D:EA:A7:67:8A:D3:AE:65:A1:2C:AA:5B:40:12:0A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rug3cEgd6qdnitOuZaEsqltAEgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.69.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
7e:e2:59:64:4b:ac:d9:1d:0c:15:06:79:7f:73:79:e0:dd:bf:
0b:eb:a0:e4:62:d7:ee:38:ab:5c:6f:71:93:92:04:6d:36:95:
7d:65:47:05:02:7c:7b:73:b4:07:12:87:a6:3b:4a:2f:ec:69:
ab:8c:28:48:2c:4e:29:c2:e3:2c:db:1e:9c:05:8b:64:15:40:
3d:be:ca:57:d4:80:93:e7:7c:b3:32:8a:9a:7a:d6:9e:1e:c9:
bd:05:a6:ee:13:b0:ed:85:f6:57:2a:bd:68:4f:c3:3a:e6:c9:
cb:7b:a9:35:fd:b9:5a:9b:0e:3a:00:7c:a4:d0:08:23:fb:88:
78:ef:aa:37:47:34:c1:d1:40:0e:28:39:7b:f9:c4:a9:0d:cf:
e3:c3:0a:fb:8f:6f:39:08:fb:61:fc:79:0e:2d:dd:a2:37:59:
d0:af:e4:dc:c8:8c:d8:18:da:ac:50:c8:a5:b7:e2:02:1f:de:
37:fc:6e:af:2e:54:19:69:75:2f:9c:af:44:01:f2:ac:fe:cf:
95:70:25:66:e6:23:31:ac:10:db:fe:d3:1a:fe:a4:4d:f1:0c:
86:7f:4b:89:bc:5a:77:57:fc:62:1f:65:98:c8:54:59:b8:0f:
7b:c2:05:22:b6:0e:39:5d:e6:57:82:2d:5e:ea:28:be:15:d7:
2f:fe:22:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org