Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/m2PtwYI0H_1FQSr4bKb-LHzpyyg.roa
File: m2PtwYI0H_1FQSr4bKb-LHzpyyg.roa (raw, json)
Hash identifier: cn0Pj59K2rFroMmTmEG77Qgb9ORLAyX3Q8CbMHBv6ZE=
Subject key identifier: 9B:63:ED:C1:82:34:1F:FD:45:41:2A:F8:6C:A6:FE:2C:7C:E9:CB:28
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018414172958861C601CF0BE5F349B3CEE75
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/m2PtwYI0H_1FQSr4bKb-LHzpyyg.roa
Signing time: Wed 26 Oct 2022 11:39:32 +0000
ROA not before: Wed 26 Oct 2022 11:39:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:800::/37 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c7:800::/37 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:17:29:58:86:1c:60:1c:f0:be:5f:34:9b:3c:ee:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 26 11:39:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b63edc182341ffd45412af86ca6fe2c7ce9cb28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:30:7f:a9:04:93:69:30:85:b8:d8:d8:b3:d1:
6d:c9:bb:dc:2a:0f:f1:aa:ca:82:8e:fc:8b:85:ae:
29:5a:3c:37:03:9f:bb:b4:df:54:3b:c5:5e:24:3b:
aa:99:7d:03:e7:0d:c0:f2:f6:cd:8f:d0:13:d0:54:
94:d9:bc:94:58:6b:26:a8:4b:85:b2:15:5a:f6:89:
0e:e1:b5:90:f3:ea:29:5a:56:e4:9a:45:0a:f2:7e:
9c:48:07:b6:04:b0:ad:33:ed:e2:d7:e5:ae:ce:dd:
86:70:7e:b2:13:ae:56:43:96:25:f3:35:d6:85:fd:
b8:c2:c0:ed:4f:5b:bc:ba:7f:55:bf:3b:9f:c7:59:
36:24:0f:7f:42:84:c0:25:9f:3a:6b:a6:a6:33:42:
6d:c5:90:e9:3e:81:ab:6b:26:1a:55:ea:66:38:f0:
a6:91:65:87:e5:a6:cd:53:55:71:e6:8e:2e:4d:87:
6c:fc:fc:e7:61:30:fe:b3:e9:97:4b:ec:93:9c:5c:
a0:aa:20:f8:e2:8e:7b:c5:67:ac:f5:ab:c1:7f:6c:
78:3d:47:f2:83:40:7e:07:3f:8a:b6:2d:f7:8d:da:
09:6c:f5:c5:f4:f6:0b:67:cb:bd:c0:f0:88:4c:5f:
45:30:8f:3c:30:64:ce:43:08:a0:67:3a:6d:77:e8:
80:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:63:ED:C1:82:34:1F:FD:45:41:2A:F8:6C:A6:FE:2C:7C:E9:CB:28
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/m2PtwYI0H_1FQSr4bKb-LHzpyyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c1:800::/37
2a0e:97c7:800::/37
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
1f:fb:84:94:20:ed:42:50:52:f8:a3:f6:77:98:a0:3b:97:26:
93:e7:28:4b:52:c6:c9:3c:44:7e:ef:42:42:08:06:6e:58:a1:
e7:98:4b:e1:d5:b2:a5:5d:ec:03:d2:23:f4:d3:05:c6:bf:19:
4d:9b:4d:4c:83:5d:4a:e4:1c:c5:b6:50:2e:bc:6b:05:cf:86:
8a:17:6a:a1:6a:4e:52:1c:67:a4:b1:81:10:be:d1:e4:41:9e:
f7:17:93:12:b0:13:95:e0:c3:18:7c:4d:22:7c:cc:5f:67:9a:
7f:40:a3:14:9a:06:1e:d0:b7:96:b5:a4:bf:f5:97:b7:a4:3b:
4e:44:94:9b:eb:5b:cb:d9:3f:28:71:64:16:aa:5d:b5:92:ed:
f2:2e:27:3a:fd:76:90:50:cb:6e:0f:19:51:28:4d:a9:5c:a2:
0f:56:44:2d:21:b3:ff:e0:01:de:fc:75:3d:04:19:e2:10:90:
77:9a:b4:4c:97:c7:85:7e:fc:b6:a4:8e:58:a2:e5:75:33:94:
aa:a3:cd:c0:93:4a:0d:77:d9:28:39:29:60:35:a4:d6:f0:22:
03:1c:dc:b0:ad:d9:c3:f5:68:34:2f:7c:28:28:19:7e:01:88:
cc:cf:5a:68:18:6b:cd:31:b0:be:d5:3e:b2:b4:60:f1:73:b9:
7b:0a:bd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org