Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_zN1LF6dNoUwUoC2UDLQ8XV58wo.roa
File: _zN1LF6dNoUwUoC2UDLQ8XV58wo.roa (raw, json)
Hash identifier: U1J+wMi528JHg69fo919WG+8J3Js1dHOvObm0890h+Q=
Subject key identifier: FF:33:75:2C:5E:9D:36:85:30:52:80:B6:50:32:D0:F1:75:79:F3:0A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01840EAA4F693E8EEE1AA1AD452F53279545
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_zN1LF6dNoUwUoC2UDLQ8XV58wo.roa
Signing time: Tue 25 Oct 2022 10:22:33 +0000
ROA not before: Tue 25 Oct 2022 10:22:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0e:97c6:4000::/34 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:aa:4f:69:3e:8e:ee:1a:a1:ad:45:2f:53:27:95:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 25 10:22:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff33752c5e9d3685305280b65032d0f17579f30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:99:4b:19:3a:d5:af:57:21:1c:a4:6d:ad:6b:
37:f0:e8:87:1f:1e:02:89:4e:a8:58:99:85:15:66:
7d:26:03:b0:28:0e:b1:5b:6b:6d:3f:ab:51:7c:20:
16:fd:b3:d0:7c:da:b1:7b:14:f6:c9:d1:7b:55:fb:
14:89:97:f2:c2:c2:44:d7:7c:49:69:c8:2e:01:c9:
02:d8:37:41:03:a2:33:2c:61:9f:72:55:e7:10:dc:
44:da:27:af:6d:53:01:9d:82:3d:0a:62:f6:74:46:
82:4b:49:d2:36:34:89:89:e4:a0:bb:99:4f:84:98:
fb:bb:c1:2d:b3:46:85:ea:2d:9d:c1:3d:9c:35:b6:
3f:f3:5f:5f:20:fc:e9:c0:fa:47:b8:74:3d:6b:13:
48:66:6c:84:9d:fc:e0:59:97:ef:33:6b:1b:58:aa:
63:47:ec:74:7d:6e:06:83:c4:04:f7:2d:04:7b:d8:
0a:c3:4b:d0:63:77:f8:22:4d:20:37:78:a4:35:8e:
b6:c1:e8:c7:4e:5d:ee:2b:1a:66:bd:48:05:bf:3f:
1f:74:26:da:ac:e3:6b:83:00:46:96:8a:3b:af:db:
2f:75:08:c4:ae:0e:70:87:d0:af:8e:8a:00:a8:95:
62:d8:44:6a:6c:b1:08:93:0f:42:dc:0c:f8:fd:91:
cc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:33:75:2C:5E:9D:36:85:30:52:80:B6:50:32:D0:F1:75:79:F3:0A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_zN1LF6dNoUwUoC2UDLQ8XV58wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c6:4000::/34
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
ae:d3:74:32:07:d0:42:d7:f6:92:52:00:ef:3d:e8:17:b2:6b:
c5:e2:1d:14:22:88:a4:1c:43:c2:8b:90:30:43:16:2f:4a:2f:
6e:45:1b:49:92:a1:26:33:98:a1:af:cc:df:0d:44:ba:15:10:
dd:de:60:14:b2:16:7d:6c:23:f4:da:63:ba:82:28:65:c4:67:
4c:18:ed:62:5c:09:ba:4c:0f:20:63:1f:b3:9d:f5:79:7a:51:
92:d2:c9:29:10:3c:f2:40:f2:c1:c9:24:d8:3b:e5:b9:5e:61:
ce:00:4f:52:ec:d9:61:ba:bb:87:ca:2b:aa:27:c0:43:d3:d8:
ea:83:f5:d0:0f:df:4f:f9:18:37:bf:41:6a:f0:89:32:8f:4c:
bb:3e:eb:f4:d8:74:64:12:35:4f:e6:48:a7:04:49:a1:47:bb:
b3:25:14:c8:31:0b:be:12:31:a3:cf:be:3c:41:51:00:0a:26:
96:21:bd:cb:fd:c5:74:4e:61:bf:1e:83:28:c2:f1:bc:13:9a:
97:25:77:71:7e:9d:f7:1b:59:23:3e:aa:8f:70:e7:e9:ea:3d:
4b:0f:07:fb:aa:3b:05:a6:35:aa:54:0c:01:65:05:8c:30:ea:
9b:4d:1a:ea:e2:22:a3:54:8f:3f:a1:62:d3:7d:86:12:15:d4:
ff:e9:85:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org