Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hpGt-EJC9IJp2waRuUMya2iqLRY.roa
File: hpGt-EJC9IJp2waRuUMya2iqLRY.roa (raw, json)
Hash identifier: GTEqIrR/mql23hIyY+7byuNxHTEgO/IsrKYlu0JYH08=
Subject key identifier: 86:91:AD:F8:42:42:F4:82:69:DB:06:91:B9:43:32:6B:68:AA:2D:16
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184B5812A13D61A89F8E8F3092366916942
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hpGt-EJC9IJp2waRuUMya2iqLRY.roa
Signing time: Sat 26 Nov 2022 19:54:11 +0000
ROA not before: Sat 26 Nov 2022 19:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.69.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b5:81:2a:13:d6:1a:89:f8:e8:f3:09:23:66:91:69:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 26 19:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8691adf84242f48269db0691b943326b68aa2d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ea:c7:e5:27:d9:db:54:36:57:15:e2:35:28:
3e:34:68:1a:bc:ef:23:b9:74:6a:ac:2f:9d:2e:45:
f5:96:0d:ed:9c:8a:af:03:aa:bc:1a:ca:43:60:d8:
d7:1a:88:b1:7b:c4:fa:bb:30:af:fc:66:4a:21:e1:
cf:44:0a:02:ec:62:b0:8e:9c:90:76:c1:79:1f:a9:
c6:e2:03:18:ad:4b:8d:1d:83:0e:cb:04:25:68:7a:
33:9c:48:f8:80:f2:b3:2f:7f:29:43:5d:d6:1f:02:
32:8c:05:33:47:1c:bf:ad:36:7c:2c:4a:73:61:7e:
4a:d7:88:9a:a1:c6:c7:64:5f:08:b3:e9:ec:6f:2a:
79:cd:fc:6c:6d:75:89:22:95:74:2a:de:df:29:55:
2c:a7:a1:a4:37:dc:8a:ed:b0:e8:b1:fd:60:84:3d:
6c:50:08:e8:bb:46:b9:e7:4e:17:9e:60:55:b6:71:
75:39:31:40:1f:de:8e:c1:af:ea:9e:b4:0d:1b:f6:
63:94:fa:77:a2:cc:a3:46:05:6c:2b:50:07:4d:ba:
43:59:49:cc:ce:f1:43:76:79:3e:86:6d:54:d2:9c:
66:36:b2:c9:55:1a:4d:fb:ed:23:d2:1a:79:0d:36:
c3:a5:2e:b0:ac:7c:28:9a:ed:c5:58:c0:49:39:78:
0b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:91:AD:F8:42:42:F4:82:69:DB:06:91:B9:43:32:6B:68:AA:2D:16
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hpGt-EJC9IJp2waRuUMya2iqLRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.69.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
89:69:21:56:12:1e:a6:98:e7:09:42:80:72:4c:e5:ad:83:2d:
1b:82:9e:21:a4:c2:b3:7c:4a:fa:54:93:f1:14:eb:3b:1b:52:
63:d4:33:84:c0:5d:19:e7:20:ee:95:22:ed:0c:d5:93:17:db:
5e:fe:a9:a2:87:13:8e:b0:3c:2f:f0:4c:f7:50:84:24:66:9d:
f7:4f:04:b9:df:ce:bf:a5:ac:3d:25:6c:de:55:08:6b:2d:5b:
a7:67:df:d5:63:e0:9a:d1:34:ee:ea:e8:34:9b:9b:11:5a:8c:
fb:7b:5c:9e:7f:58:8d:4f:11:a1:ad:eb:86:95:b9:aa:52:74:
b0:a4:6b:64:48:b2:b0:20:74:e1:05:a3:74:10:f0:96:1a:5f:
31:2a:23:6a:97:61:4c:75:4b:49:a3:1c:eb:8a:27:3a:7c:3a:
6c:c2:0b:83:c7:83:0b:28:bc:b4:2b:b9:65:36:88:2c:ce:bc:
88:c8:0d:40:70:5b:2b:22:5f:19:06:ca:e3:be:d8:1a:7b:c4:
82:6f:cc:ea:1e:a5:6d:37:a2:4e:3f:38:b0:85:26:6b:16:81:
b4:5c:78:f3:ae:ec:fc:9b:a3:0a:f9:d3:0b:24:4a:5a:f9:f5:
70:f9:e5:2a:40:4b:b0:d9:9b:b7:ad:4a:39:4f:2b:16:f7:32:
52:64:ef:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org