Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fvnGBNfdcDNyOmzGvZFE795dbGM.roa
File: fvnGBNfdcDNyOmzGvZFE795dbGM.roa (raw, json)
Hash identifier: CrCKYzJeKEmszDfp/vq+/Bndn8rTA8QRuJmMZnbh190=
Subject key identifier: 7E:F9:C6:04:D7:DD:70:33:72:3A:6C:C6:BD:91:44:EF:DE:5D:6C:63
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184ACEAFD52D3D3FE56A90937621B71EDC9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fvnGBNfdcDNyOmzGvZFE795dbGM.roa
Signing time: Fri 25 Nov 2022 03:53:12 +0000
ROA not before: Fri 25 Nov 2022 03:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.69.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ac:ea:fd:52:d3:d3:fe:56:a9:09:37:62:1b:71:ed:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 25 03:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ef9c604d7dd7033723a6cc6bd9144efde5d6c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f1:5e:4d:b8:e9:d8:33:82:32:d2:f1:25:e7:
be:86:3d:f9:2e:ce:08:af:da:80:42:d2:92:85:18:
fc:df:6b:0a:77:1b:ff:b6:05:77:4f:0d:1f:8f:6d:
3b:1a:7f:42:84:a7:af:f5:51:7f:75:e1:4d:dc:91:
b3:1a:a9:39:56:fa:3c:9c:21:32:bb:ac:ef:9e:48:
f2:3a:7a:9a:cf:e9:e1:78:59:e2:b0:a1:ec:7f:97:
3f:0b:33:2c:98:bc:7e:94:14:21:e2:82:54:00:35:
8a:02:5f:ff:c4:56:19:8f:cc:52:05:77:d1:cd:3d:
c5:0c:58:1c:83:42:90:9e:05:eb:8e:c8:ee:10:51:
9d:a3:de:34:8f:f8:f7:b6:84:d3:f1:2c:f5:84:2b:
cd:6f:79:6b:e3:c0:80:d5:31:1b:0a:e4:fb:58:50:
19:9a:7b:35:30:2e:02:10:73:eb:45:ff:f9:fd:8a:
e5:6c:6d:39:23:f4:34:05:00:bd:86:af:6e:85:81:
3f:f2:3a:2f:40:15:76:e7:28:74:86:59:1b:c4:f6:
dc:b2:c2:b9:f6:73:fc:bb:d2:a2:db:0e:9a:39:e9:
87:2f:11:4d:e2:d7:fc:a8:6d:e0:60:7b:d4:b0:d4:
cc:09:0b:9b:a7:e9:4e:f1:2d:2f:18:97:25:76:21:
5a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F9:C6:04:D7:DD:70:33:72:3A:6C:C6:BD:91:44:EF:DE:5D:6C:63
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/fvnGBNfdcDNyOmzGvZFE795dbGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.69.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
35:c0:85:80:9a:95:14:7b:c3:17:39:71:f3:b9:95:38:1b:52:
e4:48:4e:b3:98:9c:f4:1b:55:c5:46:ad:ba:d8:c7:d9:95:95:
63:c4:73:de:2c:96:84:92:8c:78:5d:6d:c7:b4:a9:ee:2a:b7:
31:39:f8:38:3e:bb:d1:01:84:20:67:a8:85:4c:d3:90:4e:a1:
10:46:79:ed:f0:f5:7b:e0:61:24:d0:79:bc:ec:01:7f:fd:91:
04:31:96:02:c6:5e:70:5a:dc:e8:42:4f:d0:22:19:d0:35:fa:
7c:cf:76:a5:cf:9f:d6:c7:96:a1:a4:81:1b:67:7e:9f:4a:71:
15:ad:8a:4c:05:16:c8:62:c1:7d:18:2a:e6:2b:38:7c:70:a5:
08:ad:6b:c3:0c:f0:e9:f5:82:90:cb:14:39:4c:b6:7a:11:75:
a1:c6:21:56:37:d9:0d:ab:f0:a3:b4:a4:0a:19:0d:41:8c:de:
31:07:07:b1:e2:0d:5e:b3:33:ce:f9:af:a8:26:ca:a9:6b:eb:
89:d9:f8:b2:22:2f:8a:3a:bc:2f:81:13:2b:32:b6:5a:76:28:
90:94:a0:28:b0:33:da:d8:ea:ff:4c:60:07:0d:3d:3b:c6:17:
aa:67:4f:23:25:f5:8a:cb:a5:91:a6:be:a2:ce:ba:b8:7c:7f:
88:36:87:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org