Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aujssfnCd5Zv6k-zZpJBOZUDANE.roa
File: aujssfnCd5Zv6k-zZpJBOZUDANE.roa (raw, json)
Hash identifier: mdXbl2yDKLWIVK6CppRh0ctl8o64eUuEuR71WGafmqk=
Subject key identifier: 6A:E8:EC:B1:F9:C2:77:96:6F:EA:4F:B3:66:92:41:39:95:03:00:D1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185300C62C2E302FE2AA414DE3E28B7E84E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aujssfnCd5Zv6k-zZpJBOZUDANE.roa
Signing time: Tue 20 Dec 2022 14:59:56 +0000
ROA not before: Tue 20 Dec 2022 14:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:0c:62:c2:e3:02:fe:2a:a4:14:de:3e:28:b7:e8:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 20 14:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ae8ecb1f9c277966fea4fb366924139950300d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:44:47:97:49:a2:79:05:97:e1:bd:f9:76:6b:
4c:d2:bc:21:bf:a6:5f:8c:39:4f:98:7c:de:a5:b1:
56:40:5b:4a:08:9a:f1:49:a5:36:e6:12:19:d6:3a:
14:bf:fe:a2:58:7c:7e:86:04:04:c7:b7:70:ad:2f:
ef:93:b0:c8:d4:46:a7:c2:8e:88:eb:e7:be:56:eb:
3e:8a:73:c0:70:4f:cd:75:d3:a6:93:97:0c:3a:85:
8e:04:63:30:9e:84:db:19:7f:e0:26:82:2a:7a:81:
63:45:05:5d:51:f7:46:d8:c2:18:a1:a3:86:45:df:
3d:b1:7d:2d:0c:43:4f:b7:95:52:29:d9:28:22:b9:
c9:0b:11:e7:8a:23:c1:7d:d3:05:84:79:50:6c:1d:
8e:b8:10:a9:a8:35:1a:88:de:35:b7:7b:8e:da:d3:
b7:fc:7b:f7:cc:5b:08:75:99:3b:53:c4:14:d6:b0:
bb:c4:c3:26:4e:2c:ff:72:4e:80:20:c1:3a:02:5c:
1b:25:2e:d1:c2:05:e4:e9:6b:51:8d:be:f3:1c:ac:
b4:f5:33:b5:d1:f2:6a:34:e2:3a:13:eb:c0:23:ad:
cd:88:ed:3b:90:16:7b:ab:37:7c:0b:59:9e:ef:5a:
42:f6:c2:24:f2:a8:61:59:87:c9:14:59:65:38:b2:
fa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E8:EC:B1:F9:C2:77:96:6F:EA:4F:B3:66:92:41:39:95:03:00:D1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aujssfnCd5Zv6k-zZpJBOZUDANE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
92:2b:46:2f:8a:a2:d9:27:72:02:32:77:f3:0e:96:ec:37:1c:
f1:82:be:d2:76:ac:da:cb:fa:2a:04:12:a8:62:6f:b4:e5:c4:
4e:a7:74:e1:ef:04:f8:27:c7:eb:16:da:b7:96:2a:18:75:0c:
8b:56:b1:84:88:41:e1:e9:be:82:aa:46:56:5c:15:53:48:48:
5d:dd:27:d6:8f:13:28:66:c7:71:0f:0e:0a:6a:a9:e9:97:b4:
5f:2a:8f:32:94:bf:2d:9d:cf:1c:c6:a6:9d:53:ec:85:ef:61:
2f:76:f4:ee:a3:f5:83:85:1c:0d:60:d0:26:ad:3d:9b:94:cf:
d3:bd:22:75:cb:3a:ca:4b:6f:4e:fd:9a:be:5c:87:a6:80:d7:
82:75:54:96:dc:da:0a:fa:22:2f:b9:fd:8b:06:ef:26:e9:cb:
bf:75:2e:e5:8d:c2:7c:5f:92:af:8c:3d:c0:e5:67:bd:3a:97:
ec:eb:00:47:d9:21:92:4e:c9:82:b0:ef:c0:f8:7f:06:b9:e8:
cc:4f:1a:e6:91:95:15:f8:72:9e:86:be:5f:37:27:2f:7a:3f:
39:1d:5b:48:dc:af:1e:71:28:d4:ef:1e:04:75:e7:c5:4a:3c:
8e:e9:cc:cb:85:8b:48:90:f7:7a:11:27:64:ce:ff:67:61:05:
ce:72:71:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org