Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/z3Uaox4XW7Kkwq-jTeCFDbPAwRc.roa
File: z3Uaox4XW7Kkwq-jTeCFDbPAwRc.roa (raw, json)
Hash identifier: r3bU1KmisuVzhI9Cogw6GtV4S0phEJcCiNp4IwiVY+w=
Subject key identifier: CF:75:1A:A3:1E:17:5B:B2:A4:C2:AF:A3:4D:E0:85:0D:B3:C0:C1:17
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1281CC90
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/z3Uaox4XW7Kkwq-jTeCFDbPAwRc.roa
Signing time: Wed 02 Mar 2022 13:10:51 +0000
ROA not before: Wed 02 Mar 2022 13:10:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
2a10:cc46:100::/44 maxlen: 48
2a0e:97c0:260::/44 maxlen: 44
2a0f:e404:10a::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0f:e404:100::/48 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0f:e404:101::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0f:e404:107::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310496400 (0x1281cc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 2 13:10:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf751aa31e175bb2a4c2afa34de0850db3c0c117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8b:d2:67:03:1f:c6:b4:66:c9:af:5e:a5:a3:
8a:aa:a0:c5:8a:ab:71:b0:07:1b:1e:f2:93:cc:6f:
fe:cf:a4:37:a0:64:d2:1d:14:a0:7e:62:07:b9:b7:
4b:97:0a:24:38:87:ca:eb:96:e5:23:4c:0a:07:e8:
f5:14:2e:e7:87:e0:b4:59:07:4b:16:ae:03:4f:75:
09:12:aa:1a:6a:c7:0f:8b:38:bd:a2:c0:89:45:bd:
ec:b9:58:b7:bc:e6:b2:66:df:e1:0c:49:87:f3:0c:
1a:18:95:e1:d7:f5:28:20:eb:e3:a0:09:80:93:3b:
40:8d:85:1b:b4:7a:4f:73:3e:b3:2d:b9:ef:e8:a0:
3f:f3:3b:37:e0:08:48:d3:3d:a7:b1:13:ec:90:fb:
96:dc:1b:f5:1e:7f:6a:7a:d2:51:8b:a3:c2:c7:77:
9f:97:6b:d8:7c:f3:dc:ec:07:4a:56:dd:3c:b9:8a:
46:4c:bc:bd:69:9d:fe:4d:00:f6:f3:84:d9:70:41:
63:80:0d:21:cf:6a:e7:fe:02:72:ff:46:26:d7:21:
11:cc:4d:8f:5d:5c:70:79:2c:07:31:70:c6:30:da:
49:37:2c:f7:8d:73:1e:86:37:48:56:e0:58:78:70:
2b:6b:23:0b:ab:f7:fd:db:38:48:61:e2:55:03:de:
ed:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:75:1A:A3:1E:17:5B:B2:A4:C2:AF:A3:4D:E0:85:0D:B3:C0:C1:17
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/z3Uaox4XW7Kkwq-jTeCFDbPAwRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/22
45.136.136.0/22
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0f:e404:100::-2a0f:e404:102:ffff:ffff:ffff:ffff:ffff
2a0f:e404:107::/48
2a0f:e404:10a::/48
2a10:cc46:100::/44
Signature Algorithm: sha256WithRSAEncryption
1a:b4:f9:c5:41:08:19:d8:1a:48:c1:ac:bf:69:a1:86:7f:77:
c8:b0:02:94:48:fb:42:fd:d0:7d:a4:9d:b0:84:df:54:0e:0d:
89:a4:c5:5a:b9:45:04:04:05:1f:55:9a:78:a4:df:bf:b9:98:
7f:96:a9:6a:84:23:57:df:62:4a:e9:40:bb:31:4f:36:94:0b:
6d:1b:05:b9:86:08:db:f7:82:1e:98:24:f9:f5:16:a1:9f:8d:
b7:86:83:34:e6:73:02:04:7b:80:da:8a:7e:62:24:a4:96:33:
6c:b0:b4:9d:70:10:98:6a:02:f2:a2:10:d6:93:79:a7:4e:50:
12:4d:e0:39:0a:40:27:59:dc:b9:92:48:85:bd:c9:67:02:16:
5f:02:6d:fd:a0:3a:c8:27:00:e5:3d:a2:bf:85:0a:2e:cd:08:
69:f3:35:42:7f:e0:38:18:e1:8f:55:c9:a5:78:ee:13:e2:f1:
ad:c1:04:2f:b3:b2:9f:08:1f:7b:71:5e:cf:99:f8:1b:ba:fb:
a3:13:83:65:f9:96:8b:88:d8:9b:7d:ac:18:db:cf:86:81:d8:
9b:0a:b4:00:34:91:a0:db:1d:05:15:9d:6a:95:c4:4e:4f:50:
f3:c0:0a:2f:c3:a1:c9:20:3f:9e:14:d3:08:df:42:e8:05:62:
4b:98:f6:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org