Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/jJLfwUs3V9GPn74qFXrSH3mMluI.roa
File: jJLfwUs3V9GPn74qFXrSH3mMluI.roa (raw, json)
Hash identifier: kauai6uelvrB5oRqn4G0CcvuZ86Rcrhmo9ugyenc+Y8=
Subject key identifier: 8C:92:DF:C1:4B:37:57:D1:8F:9F:BE:2A:15:7A:D2:1F:79:8C:96:E2
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 0181D2E4A4278F2F62061E8BC6A4166C55B6
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/jJLfwUs3V9GPn74qFXrSH3mMluI.roa
Signing time: Wed 06 Jul 2022 09:43:28 +0000
ROA not before: Wed 06 Jul 2022 09:43:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12912
IP address blocks: 178.183.0.0/18 maxlen: 18
188.146.0.0/19 maxlen: 19
188.147.192.0/19 maxlen: 19
188.146.0.0/15 maxlen: 15
178.183.32.0/24 maxlen: 24
188.147.96.0/19 maxlen: 19
62.152.128.0/19 maxlen: 19
37.30.32.0/19 maxlen: 19
178.180.0.0/14 maxlen: 14
188.146.128.0/19 maxlen: 19
188.146.32.0/19 maxlen: 19
37.30.0.0/19 maxlen: 19
188.146.64.0/19 maxlen: 19
37.30.0.0/15 maxlen: 15
83.220.96.0/19 maxlen: 19
83.220.101.0/24 maxlen: 24
188.146.192.0/19 maxlen: 19
46.204.0.0/19 maxlen: 19
46.204.0.0/15 maxlen: 15
46.205.192.0/20 maxlen: 20
178.183.224.0/19 maxlen: 19
46.205.208.0/20 maxlen: 20
46.204.32.0/19 maxlen: 19
46.205.128.0/19 maxlen: 19
37.30.96.0/19 maxlen: 19
188.147.64.0/19 maxlen: 19
213.158.192.0/19 maxlen: 19
46.204.64.0/19 maxlen: 19
188.147.0.0/19 maxlen: 19
46.205.240.0/21 maxlen: 21
46.204.96.0/19 maxlen: 19
2001:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:e4:a4:27:8f:2f:62:06:1e:8b:c6:a4:16:6c:55:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jul 6 09:43:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c92dfc14b3757d18f9fbe2a157ad21f798c96e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4d:c2:13:10:53:cc:c2:dd:21:fd:70:2e:0d:
8d:8b:13:0e:ea:10:84:18:48:3a:ea:d4:42:6b:be:
4c:5a:d1:ae:44:9f:a4:54:1a:7b:ae:a0:fb:fd:7e:
1d:62:34:15:44:ad:20:16:ca:1d:d0:f1:fc:8f:cc:
83:05:71:dc:38:7d:ed:1e:fc:05:d8:3e:28:cc:21:
a5:38:a3:de:40:ed:cc:12:2e:9f:20:2b:33:6f:55:
d6:01:16:a2:e6:9f:94:e5:5f:b9:37:ed:d2:46:ff:
8d:e8:d2:8d:db:92:ec:0b:90:0f:14:a1:9d:55:d2:
f2:5c:13:5c:fc:4e:0d:e7:2f:53:81:95:02:84:40:
0a:54:8f:2f:9b:19:81:3d:0f:62:4c:b3:76:34:94:
20:97:37:a1:b7:03:fd:34:a6:b5:0f:e2:1c:09:56:
70:96:f1:40:46:1d:01:f2:b0:2b:b3:73:6e:dd:8e:
6c:1b:34:42:73:15:37:0e:87:68:be:00:b3:00:69:
68:33:3b:84:4b:e9:0b:5d:09:18:34:a4:6b:6c:10:
ee:fc:49:f0:02:a5:51:71:d3:e9:fc:b2:41:0c:db:
6e:e7:b1:07:fb:a6:4d:91:88:b0:61:a0:2d:b5:3f:
a5:77:66:d5:6a:ea:83:e7:c5:5d:ad:d7:0d:9e:75:
96:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:92:DF:C1:4B:37:57:D1:8F:9F:BE:2A:15:7A:D2:1F:79:8C:96:E2
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/jJLfwUs3V9GPn74qFXrSH3mMluI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.30.0.0/15
46.204.0.0/15
62.152.128.0/19
83.220.96.0/19
178.180.0.0/14
188.146.0.0/15
213.158.192.0/19
IPv6:
2001:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
3a:40:28:8f:c5:3e:16:44:c1:2d:6d:25:16:f3:5b:82:d1:51:
e4:92:04:32:7f:f4:94:15:44:ee:3a:7f:5d:71:d0:2f:0e:5d:
57:3d:3a:23:de:2f:87:83:ef:d7:be:94:93:95:df:26:bc:05:
88:fc:93:84:0f:1f:65:74:67:33:65:c2:24:9f:e0:1f:01:bb:
0d:11:25:17:b0:c0:dc:88:37:5a:0e:d0:c3:9f:eb:37:b1:47:
b7:39:19:2c:30:d3:49:80:d2:eb:94:ec:51:ac:d7:4e:0b:b4:
3d:07:d0:2e:b2:ff:29:85:1c:b3:62:17:dc:5c:ae:82:81:bd:
4f:09:6a:e0:8d:c3:88:44:31:db:db:3f:f0:28:bb:f9:a9:22:
45:0b:30:8d:38:68:59:45:b9:45:28:72:a4:48:fb:a2:c9:bf:
51:19:d2:75:1d:40:7c:99:db:df:38:98:34:51:3c:5f:91:53:
ec:51:5f:dd:8d:23:37:7d:9d:e5:ea:ff:14:93:cc:34:cd:96:
9b:d0:63:d6:a1:20:c7:d4:3d:01:e1:03:51:54:1b:5a:8e:d0:
7e:a4:8a:03:63:a7:ec:0d:5e:fd:55:61:b0:db:de:20:f4:5f:
4b:88:20:69:9d:54:88:86:a2:5f:b5:64:1f:3e:e5:0c:41:05:
7a:62:ca:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:01 2023 by rpki-client on console-fra.rpki-client.org