Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/r6K33_iDiE_C4VkwJfPyoFkgu1s.roa
File: r6K33_iDiE_C4VkwJfPyoFkgu1s.roa (raw, json)
Hash identifier: HVkFMCiig44I3raj9ySf7y2VA/Fi8uNEbYHifYUJ+7Y=
Subject key identifier: AF:A2:B7:DF:F8:83:88:4F:C2:E1:59:30:25:F3:F2:A0:59:20:BB:5B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01851E12A2D4CF6AB2F3DCD144013D4034D1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/r6K33_iDiE_C4VkwJfPyoFkgu1s.roa
Signing time: Sat 17 Dec 2022 03:13:35 +0000
ROA not before: Sat 17 Dec 2022 03:13:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1e:12:a2:d4:cf:6a:b2:f3:dc:d1:44:01:3d:40:34:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 17 03:13:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afa2b7dff883884fc2e1593025f3f2a05920bb5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:91:69:58:17:34:32:02:be:1b:cc:a7:60:57:
8d:ee:e0:c1:f1:38:e5:2d:f3:7c:01:44:2a:00:ff:
97:19:01:59:6a:8e:79:0c:f9:1b:18:34:5a:ad:ed:
b8:97:d3:ea:9e:7e:3a:d5:e8:0d:27:81:98:c3:77:
fe:b9:d3:d4:30:9c:f4:bc:88:f7:1d:78:ab:0d:05:
ab:5e:95:cd:ea:21:6d:ca:9f:52:34:9c:13:a6:8c:
24:35:1f:ec:3a:37:2d:dc:8d:0a:78:2b:7d:5d:d3:
01:b0:cf:ec:10:75:42:77:c5:5d:55:e9:7d:50:e5:
54:eb:05:6a:1f:85:19:9a:4f:01:00:f9:80:e2:45:
54:c9:d9:ab:47:8c:48:38:9b:0a:1e:c3:03:56:e8:
73:12:f7:1a:3e:3d:b4:ea:f9:5a:43:ab:cf:8f:87:
9b:db:05:5f:74:21:4b:6d:36:ff:1b:2e:00:88:40:
c2:bd:36:3d:da:a2:f3:6b:ed:70:38:ac:b5:91:8a:
ea:02:94:42:03:e9:05:22:8c:87:a2:28:63:e7:ef:
91:29:47:50:f5:dd:47:2e:41:8c:3b:c4:93:cb:7b:
e6:5c:88:42:f9:9e:5c:f3:57:82:ce:90:4b:62:1d:
ed:29:41:7a:ed:54:98:b6:47:f7:57:fc:21:65:81:
ff:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A2:B7:DF:F8:83:88:4F:C2:E1:59:30:25:F3:F2:A0:59:20:BB:5B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/r6K33_iDiE_C4VkwJfPyoFkgu1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
85:9e:63:f4:8f:82:af:fe:78:ad:e6:71:7d:10:0c:ec:64:43:
b3:bb:1a:b6:81:6c:0e:39:a4:38:ad:6d:9e:60:1d:96:15:7e:
65:39:0c:71:73:22:36:91:01:aa:ff:85:75:f3:8a:d9:9d:45:
88:ae:1c:c0:6a:45:f9:a2:76:a1:3d:67:d2:16:d8:89:8b:8e:
9e:b4:65:60:d1:a5:5a:d5:fc:6b:f5:e9:a9:9c:1f:b6:74:af:
bd:45:fd:7d:cd:47:5f:c1:98:12:de:e0:eb:46:d7:36:4b:71:
95:15:45:74:0a:3e:22:eb:8a:c1:12:f3:27:7d:a1:dd:39:76:
f9:a7:db:2e:93:78:98:86:6b:25:7d:af:7e:17:ac:fe:36:fe:
64:2a:f3:6d:66:7e:54:87:8e:9e:07:86:23:e2:15:1e:f0:fd:
87:ba:9c:db:4b:8a:82:a8:2e:45:9f:7f:41:0e:c4:d5:05:41:
0d:fa:16:e8:38:18:32:be:17:bf:cf:ad:6d:9b:6c:42:5e:8c:
3d:a6:2f:5c:26:9a:7f:17:87:e1:28:35:b1:77:75:6f:83:04:
7c:be:66:ab:e1:bd:c6:78:db:24:4a:90:7a:64:8e:07:cb:c5:
00:73:b6:ce:ba:f7:b6:7d:84:79:16:87:8b:f8:91:8f:71:15:
ef:f8:01:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org