Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qJDwZuMBkuwOuVXFzgKzKQROgKk.roa
File: qJDwZuMBkuwOuVXFzgKzKQROgKk.roa (raw, json)
Hash identifier: oeGoW9vVi3akOgbOjw8TlBmURAxjcgcHYC0sa4m46jU=
Subject key identifier: A8:90:F0:66:E3:01:92:EC:0E:B9:55:C5:CE:02:B3:29:04:4E:80:A9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01846B618220325B9EE20806698CEDDF5FDB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qJDwZuMBkuwOuVXFzgKzKQROgKk.roa
Signing time: Sat 12 Nov 2022 10:27:43 +0000
ROA not before: Sat 12 Nov 2022 10:27:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.131.186.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:6b:61:82:20:32:5b:9e:e2:08:06:69:8c:ed:df:5f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 12 10:27:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a890f066e30192ec0eb955c5ce02b329044e80a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6f:12:4b:fc:5d:14:7a:45:ca:e7:23:8c:d4:
32:7a:49:6f:1f:aa:a5:c9:87:6c:33:96:3d:d9:b4:
db:b5:56:72:02:59:de:19:eb:74:c0:25:bc:3c:3d:
fe:38:d3:32:d5:0e:82:0b:94:bc:56:94:51:f8:be:
09:12:0e:04:4d:bb:d8:16:3d:e9:0d:09:e9:96:80:
c4:5b:76:dd:46:f1:43:cc:c0:c1:89:cd:86:bf:5c:
73:54:6e:08:6f:99:36:74:f3:b8:1e:29:0a:a9:ab:
b8:07:2f:bc:a2:7e:90:8c:1b:fc:3d:02:a1:cd:55:
af:03:9f:e2:0f:f0:25:4f:4c:da:cf:51:39:50:bf:
d5:e6:05:50:1e:b9:53:fa:9a:4f:5b:df:8f:d9:31:
fa:7b:0e:92:7a:67:ef:68:35:85:70:7a:bc:47:f2:
06:ba:be:b9:21:88:54:44:2a:24:89:15:44:7d:3a:
34:c4:83:c8:ec:e4:60:0c:e0:be:5b:b7:fd:7b:cc:
a1:8e:74:59:aa:84:a3:96:87:18:db:bf:94:fe:95:
aa:17:3b:96:0c:e7:4e:fc:1a:6c:08:e7:63:d6:7b:
83:0b:25:3a:ce:bd:0b:11:6e:94:00:28:89:d9:60:
4c:d5:0f:ac:07:56:f3:8f:03:6f:b2:91:bd:bb:23:
b2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:90:F0:66:E3:01:92:EC:0E:B9:55:C5:CE:02:B3:29:04:4E:80:A9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qJDwZuMBkuwOuVXFzgKzKQROgKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.186.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
8b:f3:b1:75:db:21:70:e5:ab:f2:84:b5:8d:95:bc:2a:70:08:
a5:dd:e3:e8:06:9e:9b:0a:4b:b8:7f:73:a2:f4:f9:54:be:23:
6d:bc:9f:47:81:71:38:72:48:15:38:93:cd:c6:88:b8:60:66:
c5:2a:ed:e5:0e:e0:fc:33:01:7c:d7:ab:d3:27:b9:50:5e:5a:
ae:e6:b3:88:57:46:53:0b:be:2b:5a:08:3a:39:42:94:9a:48:
43:10:79:0a:52:fc:88:1c:f3:27:5e:54:46:e0:57:c6:74:fb:
b5:ec:03:38:ee:05:98:b4:10:96:70:46:f1:55:31:6f:e9:f1:
38:67:21:91:37:d6:c1:c9:4d:bc:a0:3a:91:59:f8:bb:84:81:
19:78:da:6c:74:89:dc:45:fb:0d:aa:34:2e:1a:7c:7a:9b:2e:
85:e8:00:1d:fe:8e:e9:c2:f6:eb:49:e4:a2:7e:73:5d:a1:f1:
80:f4:b0:06:bd:96:ab:07:d1:7b:2b:62:d7:c1:d4:1e:34:37:
06:c5:45:9f:52:e6:89:3f:b4:18:0e:42:c7:5f:b7:cf:26:55:
67:88:b1:27:bc:05:a7:45:6d:2b:32:5b:6a:aa:98:a7:1a:a4:
34:16:97:3a:c4:a7:75:df:7c:0a:a5:b0:58:d3:c5:d5:95:88:
46:5a:a8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org