Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Yo7T3jhQ_ywcymQGEXdIB8sQP04.roa
File: Yo7T3jhQ_ywcymQGEXdIB8sQP04.roa (raw, json)
Hash identifier: Ab/POrt7byGENZOpPYl6QpBe00TanwZBucqn+9ear9E=
Subject key identifier: 62:8E:D3:DE:38:50:FF:2C:1C:CA:64:06:11:77:48:07:CB:10:3F:4E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 154C7B80
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Yo7T3jhQ_ywcymQGEXdIB8sQP04.roa
Signing time: Sat 25 Jun 2022 05:30:28 +0000
ROA not before: Sat 25 Jun 2022 05:30:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
2a10:cc46:100::/44 maxlen: 48
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357333888 (0x154c7b80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 25 05:30:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=628ed3de3850ff2c1cca640611774807cb103f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:01:08:6f:df:e7:b3:49:36:a3:9f:d5:25:7f:
c6:42:f6:24:88:bb:e8:ef:54:b8:59:f6:1f:f9:19:
50:b5:34:dc:57:13:ac:1a:e4:c7:c0:5e:cc:32:c4:
9e:f2:5f:45:1e:d1:33:65:9c:1f:b1:1d:0f:1d:75:
d0:09:0f:6f:c8:f2:1b:39:78:12:81:63:2d:85:e9:
40:e8:4a:59:00:69:c5:5e:2b:c4:04:96:d9:56:12:
65:e1:00:90:d5:53:53:80:e6:38:e6:90:1c:11:7f:
1a:1c:6a:df:69:6d:0b:4e:f9:a1:f5:0e:c8:dc:72:
5b:0f:1a:85:96:75:ba:09:87:5c:17:54:cc:ac:64:
df:9f:42:af:8e:3e:cf:6b:7d:d8:05:6e:67:4c:99:
5c:d6:b8:df:42:e6:4b:31:59:47:d2:bf:6c:0d:23:
6c:59:2b:3c:25:d3:b4:2e:06:23:71:76:2a:b7:55:
ff:b8:50:a8:c6:cb:5e:1b:23:9b:98:27:40:65:98:
d1:ad:06:93:85:ca:aa:94:eb:bb:36:d3:ff:b6:3e:
b0:0e:dc:2c:9f:77:2b:8f:4b:71:99:60:86:d2:35:
b6:05:03:d1:e1:2c:f2:67:2c:4f:b4:5c:f3:6d:9e:
37:4a:25:f3:e9:10:d8:7d:54:70:fe:1e:3e:4c:08:
8c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8E:D3:DE:38:50:FF:2C:1C:CA:64:06:11:77:48:07:CB:10:3F:4E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Yo7T3jhQ_ywcymQGEXdIB8sQP04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:100::/44
Signature Algorithm: sha256WithRSAEncryption
49:35:4a:8a:f9:d6:a3:37:89:50:e2:a0:c0:aa:e3:9b:2a:fc:
f9:1f:6e:09:de:4c:a1:9f:29:10:ef:fe:07:7d:cf:b1:5b:22:
3c:80:5f:c9:a3:0c:c1:94:09:7c:9c:e7:7f:9d:70:11:21:df:
e5:4a:6b:87:03:37:8d:ce:94:0c:75:39:56:c7:9e:ae:a5:38:
a9:48:82:b1:da:4a:da:3f:6d:2d:17:8b:13:a6:2f:5d:9e:3c:
6b:d9:d5:38:f4:c3:c3:d9:b1:75:f0:b7:9a:ee:30:6a:a0:9a:
39:17:11:54:6c:07:01:c3:41:42:7a:3e:bb:b9:4f:fc:aa:1b:
ad:35:27:4f:f1:ee:6e:b0:6f:36:b0:27:8f:2d:c9:84:9c:57:
e0:8e:0a:10:6d:fc:66:6f:72:b2:c2:d5:2a:bb:9a:d2:b4:2d:
8b:c7:a7:25:43:14:2a:a6:60:48:99:3c:8b:27:da:5d:6f:6e:
ae:9f:3e:94:39:06:b1:8e:0a:6d:0f:d7:b4:24:b5:c2:3c:32:
e6:50:8d:b8:60:a1:b0:c9:50:b5:08:f7:04:6e:f3:4f:21:e8:
ca:e7:16:15:b6:01:f6:8f:1b:9e:b8:46:a6:f5:53:c3:8c:ca:
b1:05:dd:98:13:2e:18:2d:6d:aa:1d:98:3b:ed:d1:94:16:94:
0d:bf:9c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org