Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ta7tgmxgOMlsYluUA7UjncaqhGg.roa
File: ta7tgmxgOMlsYluUA7UjncaqhGg.roa (raw, json)
Hash identifier: WB2MElWyoYDCc6gixuGfPXLS+RC9UOuyVxnewPg78DQ=
Subject key identifier: B5:AE:ED:82:6C:60:38:C9:6C:62:5B:94:03:B5:23:9D:C6:AA:84:68
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182FC04698E157772F525DFEA373E904433
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ta7tgmxgOMlsYluUA7UjncaqhGg.roa
Signing time: Fri 02 Sep 2022 02:25:23 +0000
ROA not before: Fri 02 Sep 2022 02:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
193.58.239.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c7:400::/38 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fc:04:69:8e:15:77:72:f5:25:df:ea:37:3e:90:44:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 2 02:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5aeed826c6038c96c625b9403b5239dc6aa8468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e8:b8:22:f2:ca:07:0d:2c:82:ba:11:95:55:
b0:f2:c1:5e:5d:b5:60:fa:aa:9c:29:24:5c:5d:50:
5e:bc:60:3c:67:b2:9f:6e:f0:93:a7:0e:fe:61:35:
3c:6d:61:08:f9:07:c5:8a:d9:9b:d1:f5:8f:76:48:
11:ff:9e:e6:fe:73:69:c0:85:fa:32:aa:32:93:32:
d8:ff:e2:bf:4f:ee:dd:21:e1:cd:68:79:6d:e2:88:
87:cc:96:49:04:f7:4e:43:4f:72:ec:2f:b7:f0:27:
2e:e7:f3:e9:95:87:f3:4c:04:ae:f8:ef:9b:e0:38:
ae:87:ba:a5:16:d1:c9:32:18:78:40:5d:04:fa:aa:
72:69:be:c2:57:ae:98:a7:68:04:21:a6:4f:42:da:
bc:13:69:95:c8:4d:16:04:97:8f:c6:05:7d:92:b4:
25:2e:60:4e:1e:be:b6:5a:42:42:7c:e1:76:67:80:
b0:f9:4e:7f:a7:9d:6c:7e:20:30:97:0a:98:8d:7c:
65:d9:d5:1d:cb:79:34:bc:8e:09:93:e0:d8:b1:3a:
7b:28:e9:9e:75:a8:20:52:8f:8f:1d:1a:ae:67:f5:
ad:61:95:a0:62:c5:95:3a:4c:0f:fe:5f:8a:59:22:
a0:aa:19:8b:65:c6:15:ca:57:22:2c:4e:c7:d4:c6:
c6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AE:ED:82:6C:60:38:C9:6C:62:5B:94:03:B5:23:9D:C6:AA:84:68
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ta7tgmxgOMlsYluUA7UjncaqhGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
193.58.239.0/24
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c7:400::/38
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
20:be:4b:ee:b7:3a:c9:7a:d9:f7:6f:a6:93:78:de:45:05:c1:
20:a9:fa:c0:04:86:ba:59:86:01:9c:e3:ff:b2:37:f7:eb:21:
28:63:37:bf:a6:6d:6e:86:b7:b5:b9:ff:d0:48:b2:cf:e3:56:
1e:56:c5:62:ba:67:f1:5e:8e:b5:b1:82:cc:61:f1:a9:b6:0f:
e7:b8:01:f6:d8:62:39:50:c6:84:9c:82:25:f2:f3:df:74:42:
60:8b:df:1a:1c:68:f8:90:f3:21:ab:f9:ed:81:32:94:30:4a:
0e:5e:c3:b0:f5:10:24:74:13:22:b3:1d:de:11:87:43:ed:dd:
c7:55:3b:ba:c8:c7:bb:af:b4:de:2b:a4:64:4c:cc:9a:16:9c:
9e:b1:12:4c:23:46:0c:22:c3:6d:97:2f:c2:80:75:70:d9:98:
02:82:e4:7e:ca:63:74:c4:54:09:5d:d6:28:f9:1f:41:86:a7:
96:58:4c:df:98:12:d3:53:21:c8:0c:59:ed:ac:a0:78:7f:91:
26:ca:46:87:12:45:71:87:3c:1d:60:2e:e5:e9:03:58:4a:e3:
63:ce:d2:67:68:13:93:c9:f2:e6:b7:03:0c:db:b8:5b:0a:c1:
e5:ea:93:03:4f:01:ef:0a:73:7d:35:ea:cf:91:58:c2:9b:05:
5a:e2:dc:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org