Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/7V7Q03-yI2G8enJ80DypHQyMRog.roa
File: 7V7Q03-yI2G8enJ80DypHQyMRog.roa (raw, json)
Hash identifier: pv6LNaaJPvOaK0qReedUr2L/b3bygQWl+XBWOZZtkaY=
Subject key identifier: ED:5E:D0:D3:7F:B2:23:61:BC:7A:72:7C:D0:3C:A9:1D:0C:8C:46:88
Certificate issuer: /CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Certificate serial: 37E41C3B
Authority key identifier: DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/7V7Q03-yI2G8enJ80DypHQyMRog.roa
Signing time: Sat 01 Jan 2022 14:55:47 +0000
ROA not before: Sat 01 Jan 2022 14:55:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52145
IP address blocks: 185.21.120.0/24 maxlen: 24
185.21.121.0/24 maxlen: 24
185.21.122.0/24 maxlen: 24
185.21.123.0/24 maxlen: 24
185.21.120.0/22 maxlen: 22
46.253.85.0/24 maxlen: 24
46.253.80.0/20 maxlen: 20
46.253.80.0/23 maxlen: 23
46.253.82.0/24 maxlen: 24
46.253.83.0/24 maxlen: 24
46.253.84.0/24 maxlen: 24
46.253.86.0/24 maxlen: 24
46.253.87.0/24 maxlen: 24
46.253.88.0/24 maxlen: 24
46.253.89.0/24 maxlen: 24
46.253.90.0/24 maxlen: 24
46.253.91.0/24 maxlen: 24
46.253.88.0/21 maxlen: 21
46.253.92.0/24 maxlen: 24
46.253.93.0/24 maxlen: 24
46.253.94.0/24 maxlen: 24
46.253.95.0/24 maxlen: 24
185.71.140.0/24 maxlen: 24
185.71.141.0/24 maxlen: 24
185.71.142.0/24 maxlen: 24
185.71.143.0/24 maxlen: 24
185.71.140.0/22 maxlen: 22
2a04:19c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937696315 (0x37e41c3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Validity
Not Before: Jan 1 14:55:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed5ed0d37fb22361bc7a727cd03ca91d0c8c4688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:e3:85:88:28:dc:ce:f8:66:ee:00:de:2a:
f7:59:63:9f:5b:58:43:85:88:37:29:e3:97:02:e5:
66:5b:1d:04:bb:38:ad:58:06:63:23:b7:29:3b:d9:
b1:d4:1c:fd:e0:c0:ac:00:5f:f8:be:c7:1f:6e:cc:
bf:02:0f:f8:bc:02:49:73:63:24:d0:d4:24:e3:10:
b3:ef:68:cc:ea:1e:a8:79:54:7a:19:75:72:b1:1b:
5a:88:8a:5e:fa:b9:1e:ab:1a:c4:2f:e6:2d:b0:b7:
80:75:7c:59:d7:13:58:d8:84:0f:ea:2c:08:38:cc:
e9:2d:a7:39:68:31:6f:28:3d:a8:b9:64:90:a4:e6:
1b:ae:62:a4:df:d3:a0:01:64:d1:39:28:2d:03:d9:
b8:dc:6d:fe:a0:92:00:25:20:4d:a7:7b:fe:8b:4b:
34:bd:6e:c3:ef:5c:d8:8c:f3:a3:a8:13:06:3c:a0:
bb:26:65:c7:c8:c1:8f:6b:80:cb:1a:3c:20:f8:9c:
fd:26:57:61:18:58:10:71:cd:57:e4:e2:a8:14:67:
7e:e1:0f:a0:29:fd:a9:ae:1a:cc:77:2f:fd:7d:fd:
07:99:ba:26:af:ef:25:12:d0:7f:a1:43:40:81:17:
2d:0b:77:53:09:a8:38:9d:e2:59:82:94:cf:4f:96:
b9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5E:D0:D3:7F:B2:23:61:BC:7A:72:7C:D0:3C:A9:1D:0C:8C:46:88
X509v3 Authority Key Identifier:
keyid:DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/7V7Q03-yI2G8enJ80DypHQyMRog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.80.0/20
185.21.120.0/22
185.71.140.0/22
IPv6:
2a04:19c0::/29
Signature Algorithm: sha256WithRSAEncryption
31:43:f0:8a:2c:db:9e:d0:04:0f:d5:15:c0:d6:f8:9f:2a:56:
ff:3c:61:bd:87:06:8b:48:89:8b:aa:02:c6:51:56:79:3d:97:
64:57:e6:36:f3:3b:21:40:5f:0d:cb:78:26:87:5d:f8:69:c4:
00:56:6d:e5:7c:cc:60:d5:5a:8f:9a:71:8a:0a:43:d7:54:56:
42:a2:c6:cc:a2:dd:1a:ce:44:65:6c:47:a9:79:a2:e5:2d:b1:
1f:bc:18:db:0e:0f:75:1f:04:1b:be:a3:f6:1b:f3:34:f4:a0:
1c:66:e5:10:b6:c6:4f:8b:f6:e1:5b:3b:4e:21:ec:e0:77:a3:
cd:af:1a:51:96:14:e9:99:27:f7:6c:18:3f:66:67:19:66:d6:
64:7f:b9:11:57:af:57:b5:e3:b1:74:11:39:c8:d8:92:26:dd:
58:53:ad:ff:d5:ba:d3:86:8b:1b:44:21:73:ce:93:31:31:ce:
e0:6b:d3:a5:d2:45:26:c5:e7:c9:3c:a6:ab:c8:99:7a:fc:9d:
09:8d:65:0c:fa:66:29:cd:10:08:b7:26:38:b3:2e:8a:cb:93:
a4:ff:b6:ce:aa:fe:ea:10:70:98:93:b8:ea:2c:69:13:c9:46:
01:36:e2:70:84:77:b4:10:a8:6d:b7:6a:0e:16:e3:27:ea:15:
c6:fa:88:56
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:40 2023 by rpki-client on console-ams.rpki-client.org