Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/QqqY_b6FA6fvkVrvdtBJXUwVtFo.roa
File: QqqY_b6FA6fvkVrvdtBJXUwVtFo.roa (raw, json)
Hash identifier: yHNzIM/6f5B+MEsG3dAiR21jPu5ZfyC/duYq6YYjcpM=
Subject key identifier: 42:AA:98:FD:BE:85:03:A7:EF:91:5A:EF:76:D0:49:5D:4C:15:B4:5A
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 0181D5AFAB74907F8E3DF0A549B47B0F9E87
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/QqqY_b6FA6fvkVrvdtBJXUwVtFo.roa
Signing time: Wed 06 Jul 2022 22:44:28 +0000
ROA not before: Wed 06 Jul 2022 22:44:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12912
IP address blocks: 178.183.0.0/18 maxlen: 18
188.146.0.0/19 maxlen: 19
188.147.192.0/19 maxlen: 19
188.146.0.0/15 maxlen: 15
178.183.32.0/24 maxlen: 24
188.147.96.0/19 maxlen: 19
62.152.128.0/19 maxlen: 19
37.30.32.0/19 maxlen: 19
178.180.0.0/14 maxlen: 14
188.146.128.0/19 maxlen: 19
188.146.32.0/19 maxlen: 19
37.30.0.0/19 maxlen: 19
188.146.64.0/19 maxlen: 19
83.220.96.0/19 maxlen: 19
37.30.0.0/15 maxlen: 15
83.220.101.0/24 maxlen: 24
188.146.192.0/19 maxlen: 19
46.204.0.0/19 maxlen: 19
46.204.0.0/15 maxlen: 15
46.205.192.0/20 maxlen: 20
178.183.224.0/19 maxlen: 19
46.205.208.0/20 maxlen: 20
46.204.32.0/19 maxlen: 19
46.205.128.0/19 maxlen: 19
37.30.96.0/19 maxlen: 19
188.147.64.0/19 maxlen: 19
188.147.64.0/18 maxlen: 18
213.158.192.0/19 maxlen: 19
46.204.64.0/19 maxlen: 19
188.147.0.0/19 maxlen: 19
46.205.240.0/21 maxlen: 21
46.204.96.0/19 maxlen: 19
2001:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d5:af:ab:74:90:7f:8e:3d:f0:a5:49:b4:7b:0f:9e:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jul 6 22:44:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42aa98fdbe8503a7ef915aef76d0495d4c15b45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:df:40:bc:e6:12:44:4b:59:16:2c:fe:89:0b:
de:95:c5:1b:e4:f5:24:60:39:8c:2c:0e:4a:b3:14:
cf:20:7b:fc:71:ed:bb:3b:a7:5c:3e:0f:13:92:00:
49:d1:d6:2c:d0:3d:36:c9:26:0d:23:69:f1:90:4b:
cb:53:12:27:e8:1d:4a:d9:9e:c6:7f:b2:4c:e3:18:
74:bd:c9:55:e4:5f:3d:10:5d:97:9d:78:9d:1c:2c:
a7:da:3c:94:43:05:e6:cc:68:8a:ba:e7:95:12:a1:
ff:e5:00:41:d4:60:c2:d9:c7:c2:cf:5e:92:ea:b7:
eb:50:be:84:f3:c4:b9:42:71:7e:a9:44:80:29:22:
24:37:4a:35:ed:8e:85:dd:35:cf:41:42:e1:78:b8:
28:f6:5f:47:a2:72:03:f0:00:c5:25:67:84:ea:95:
5a:9f:fc:c1:13:a5:bb:aa:c2:2e:e3:32:b3:c5:91:
3a:e3:a3:dc:bc:59:28:48:28:01:04:7e:7d:5b:52:
67:50:ab:94:9e:89:76:31:ac:4e:d8:9c:49:a0:99:
93:40:c6:65:2f:e8:a7:66:85:52:9c:e9:9b:12:a3:
b0:a5:90:43:6f:55:a7:6f:0b:4a:95:23:b7:d6:37:
e2:ce:8f:09:fd:57:ca:90:40:e8:94:48:9a:48:a3:
90:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AA:98:FD:BE:85:03:A7:EF:91:5A:EF:76:D0:49:5D:4C:15:B4:5A
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/QqqY_b6FA6fvkVrvdtBJXUwVtFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.30.0.0/15
46.204.0.0/15
62.152.128.0/19
83.220.96.0/19
178.180.0.0/14
188.146.0.0/15
213.158.192.0/19
IPv6:
2001:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
84:30:93:7e:a6:68:64:70:77:ba:3e:78:09:55:cc:e2:14:3e:
30:3f:b3:45:0c:6b:ae:e8:c0:ce:92:9f:64:82:71:79:f9:9a:
5a:3d:37:4b:ad:90:80:24:7a:b7:04:26:4e:fd:ae:35:f8:d2:
0a:14:a7:68:ac:be:7f:91:36:c2:34:34:65:17:fa:97:ff:41:
cc:94:7d:0a:38:ed:df:cb:36:53:2c:db:20:59:aa:4a:a8:04:
ff:1c:bf:33:05:6d:ac:f6:a1:b5:29:33:78:dd:87:48:4f:9a:
4e:93:69:82:74:6a:75:f8:ab:0a:fa:61:82:14:13:6d:d9:a8:
2a:78:0b:49:19:91:6a:46:d3:09:0a:91:57:66:82:c4:ae:99:
b5:55:24:3c:25:0d:86:ac:b3:ae:72:ed:2b:a2:90:f7:a3:dd:
89:10:9f:2c:5b:b6:bf:82:81:ac:ef:4b:3e:e4:5f:81:01:79:
c9:57:8d:73:b3:a3:29:17:2a:5c:83:0f:94:c7:6a:28:81:9e:
63:93:09:a1:71:8d:97:2e:1b:e7:55:45:dc:1e:2a:43:b8:7f:
65:8c:45:ac:8f:80:99:09:f6:4e:68:4c:aa:31:84:06:62:7b:
b1:69:bb:eb:19:9d:cf:ed:0b:e4:d3:10:0c:62:b2:6d:41:ac:
5e:e3:97:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org