Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wOO2Il79ljWm7IA85JUBRyUwywE.roa
File: wOO2Il79ljWm7IA85JUBRyUwywE.roa (raw, json)
Hash identifier: wJ9c4RnwyYhziBiftSLnahiWDijcRaa6sltN0pemfRo=
Subject key identifier: C0:E3:B6:22:5E:FD:96:35:A6:EC:80:3C:E4:95:01:47:25:30:CB:01
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01841358BB9A9367A724894103A85C4597CD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wOO2Il79ljWm7IA85JUBRyUwywE.roa
Signing time: Wed 26 Oct 2022 08:11:33 +0000
ROA not before: Wed 26 Oct 2022 08:11:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0e:97c6:4000::/34 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c7:800::/37 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:1c0::/44 maxlen: 44
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:58:bb:9a:93:67:a7:24:89:41:03:a8:5c:45:97:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 26 08:11:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0e3b6225efd9635a6ec803ce49501472530cb01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:82:5a:37:20:f2:00:bb:3d:29:59:1e:b9:
60:45:3e:58:b6:14:ee:1d:47:10:55:d3:5a:e4:cf:
4a:56:36:64:9b:6c:c3:d3:15:f5:f8:03:eb:9c:01:
59:68:c1:f0:59:45:84:96:72:4a:a4:a1:7d:7e:14:
be:83:74:36:f6:c2:55:29:40:03:8a:ce:f8:a0:71:
9e:d4:40:66:46:3b:fe:ec:d4:88:bf:c1:1e:c5:8b:
f7:3f:9d:58:5d:f7:08:2b:18:b4:d3:28:43:d0:e1:
21:4b:7b:61:ea:7f:3f:c7:3c:ec:c2:2b:f5:96:32:
82:9f:cb:e8:92:c6:df:ff:59:7d:f8:d7:23:40:5b:
8c:1f:52:db:e2:89:6a:4a:9f:6e:18:52:5a:d4:31:
2d:38:21:52:fc:f5:11:82:57:72:ab:d7:6b:7b:d6:
7c:a2:5f:c2:a2:ee:c7:fd:8f:fc:25:f2:14:15:44:
f0:ce:68:c6:ef:0f:82:c2:41:41:25:c5:60:04:c1:
fb:14:4c:f5:05:ba:bd:ee:f7:6e:41:ac:a5:42:16:
22:f6:39:97:08:35:b5:2f:ec:0f:b1:cb:ea:0a:43:
9e:11:8a:4a:f3:56:46:4a:cb:2d:14:16:21:73:8c:
79:b5:cd:1c:1f:51:46:15:8a:e1:d3:9b:df:3d:86:
64:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E3:B6:22:5E:FD:96:35:A6:EC:80:3C:E4:95:01:47:25:30:CB:01
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/wOO2Il79ljWm7IA85JUBRyUwywE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c6:4000::/34
2a0e:97c7:800::/37
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc40:1c0::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
34:82:64:ed:dc:e0:98:91:20:95:16:17:91:08:22:70:b8:57:
27:34:ec:0c:07:c8:d2:49:b9:7d:54:cc:28:5b:ae:7a:60:1e:
6b:a7:bb:68:e5:2c:14:5a:ca:b6:39:13:12:76:1f:93:e6:55:
ec:7c:3a:51:5d:53:3e:45:e8:f7:e0:4d:63:f1:bc:0a:0b:45:
93:d3:f6:25:b2:90:0c:cc:02:93:5f:a0:bc:8f:63:03:ec:1c:
ad:a5:d0:ff:b6:16:e6:27:e6:2f:99:38:77:42:d1:58:f7:cc:
e0:77:40:f1:64:9e:64:f3:c3:ee:df:70:e5:04:be:0d:c9:1c:
86:e9:5e:ab:ef:c5:03:eb:43:6f:83:b2:75:18:1e:b1:de:e6:
b0:0f:10:21:73:82:30:7f:26:c6:af:e5:15:9b:24:ad:90:e4:
84:b9:67:5f:ce:aa:45:39:9e:81:d4:f6:36:b1:7d:27:88:02:
6e:15:35:14:13:3a:4b:08:7b:0d:e4:41:e4:f0:18:14:05:86:
2b:18:5b:6a:b8:4f:44:06:71:f6:8f:1b:bd:f1:86:5a:1b:d4:
93:57:cd:84:c7:a3:f6:d3:42:09:bf:0b:2f:df:d4:3c:bd:4d:
95:99:a2:2f:8e:67:ba:48:71:08:25:92:47:c7:cc:c5:24:b0:
80:5f:42:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org