Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q68dqR0rx8RmzcPrVl3CRxvsMnM.roa
File: q68dqR0rx8RmzcPrVl3CRxvsMnM.roa (raw, json)
Hash identifier: RY9JNZE2Cu2S3nyUiyFgBsJ26blrqZilw1McPAnb1ro=
Subject key identifier: AB:AF:1D:A9:1D:2B:C7:C4:66:CD:C3:EB:56:5D:C2:47:1B:EC:32:73
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018531B50C1F69B874C1092E314B308629D9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q68dqR0rx8RmzcPrVl3CRxvsMnM.roa
Signing time: Tue 20 Dec 2022 22:43:46 +0000
ROA not before: Tue 20 Dec 2022 22:43:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:31:b5:0c:1f:69:b8:74:c1:09:2e:31:4b:30:86:29:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 20 22:43:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abaf1da91d2bc7c466cdc3eb565dc2471bec3273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1c:a8:46:6d:b4:d2:70:b7:44:f7:05:03:c8:
42:a0:9f:12:80:56:87:e5:9e:dd:82:e5:2f:c6:01:
5b:ed:f5:63:f1:4a:3c:02:b5:06:f4:39:11:5a:1c:
2a:66:b2:bf:be:34:d5:69:5f:74:23:97:be:ba:22:
f8:63:0c:59:e8:ad:71:b5:a5:cf:44:89:16:c9:7e:
37:02:01:89:b1:20:28:58:cd:01:76:02:4c:2c:a8:
95:98:b1:e2:78:69:ed:d7:0f:a8:1b:02:dd:58:14:
06:0f:66:f7:5e:ec:90:46:9d:90:a8:46:f8:a1:1a:
24:4b:fe:b7:8e:c9:c4:2d:20:b6:ba:a6:a8:5c:2c:
18:5b:a2:18:80:7a:ce:4a:38:69:eb:36:95:d3:8a:
cf:2b:3e:46:bc:fd:99:06:ef:3c:ef:54:d8:b8:63:
11:2b:03:a9:97:7c:4b:25:37:75:71:d0:35:e7:d7:
18:9d:cd:8d:79:77:65:a2:f2:3f:4a:df:d5:36:bc:
71:6c:19:2e:62:67:a2:dd:dd:bd:6d:08:af:ac:c8:
ee:49:43:71:b5:fc:6b:35:92:96:73:7c:fc:86:43:
c4:59:e2:7c:3c:9e:fb:35:ca:1b:36:8a:3e:60:c5:
e0:2d:33:de:86:c4:18:eb:bb:91:9b:7d:06:c8:3f:
47:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AF:1D:A9:1D:2B:C7:C4:66:CD:C3:EB:56:5D:C2:47:1B:EC:32:73
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/q68dqR0rx8RmzcPrVl3CRxvsMnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
86:79:c4:f7:0b:ad:fb:d2:c9:ce:30:5d:9a:bd:42:43:f0:fe:
7e:ba:40:d9:7f:77:53:aa:bb:4c:83:10:d2:dd:4a:3c:63:5c:
84:8e:37:38:cd:48:b0:98:ad:4e:92:31:37:11:0c:c5:10:1a:
4b:63:83:89:b4:02:87:18:86:95:fd:3d:52:60:d4:7f:7f:e5:
a9:5e:47:4d:10:1e:a0:b6:8e:bd:9f:24:20:01:99:fa:d3:ae:
01:c1:68:52:fe:23:8a:10:76:7b:46:22:7d:2a:77:12:47:6c:
80:ab:71:1b:be:73:f3:78:69:22:37:ef:76:df:01:90:5b:76:
91:7f:24:fa:17:ca:2d:23:94:a2:7e:45:9a:c1:23:27:60:15:
81:0a:f9:c5:ed:5d:95:87:81:a1:c4:13:76:26:e2:79:04:00:
12:c4:b8:d5:a0:97:15:86:21:14:42:d2:62:45:6d:bd:2b:52:
0c:82:fa:16:00:56:b3:10:f5:ac:68:0c:b5:53:89:5c:82:f3:
6c:40:1d:af:42:04:03:e4:61:39:62:de:f2:f6:f2:1b:29:25:
a5:8a:76:08:d9:62:6c:77:e2:45:6d:13:83:9f:3e:5c:6a:69:
0a:90:61:02:63:42:31:e8:cc:cf:43:94:64:2d:5b:59:d0:7e:
bf:78:70:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org