Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Ui_-2HqAXZ3okxqOKYI5Qskq_ek.roa
File: Ui_-2HqAXZ3okxqOKYI5Qskq_ek.roa (raw, json)
Hash identifier: fFhrU5nFM6GrwV15uz0go4zDtlSDTYrtLt5dJhme6qs=
Subject key identifier: 52:2F:FE:D8:7A:80:5D:9D:E8:93:1A:8E:29:82:39:42:C9:2A:FD:E9
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AA8442C
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Ui_-2HqAXZ3okxqOKYI5Qskq_ek.roa
Signing time: Sat 01 Jan 2022 08:57:42 +0000
ROA not before: Sat 01 Jan 2022 08:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20485
IP address blocks: 217.150.32.0/19 maxlen: 19
83.234.0.0/16 maxlen: 16
80.237.0.0/17 maxlen: 17
188.43.0.0/16 maxlen: 16
80.82.160.0/19 maxlen: 19
62.33.111.0/24 maxlen: 24
185.13.160.0/22 maxlen: 22
62.33.0.0/16 maxlen: 16
2a00:1e48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178799660 (0xaa8442c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=522ffed87a805d9de8931a8e29823942c92afde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:07:f3:6c:50:10:5b:bc:e4:c3:52:35:bc:2f:
6f:c2:9d:59:9e:08:5b:40:5d:f6:5a:0f:67:13:61:
d3:bf:7e:b4:34:85:e3:2e:fe:b7:d8:cd:b4:b4:63:
5d:e8:e6:f8:ef:69:f6:81:71:d5:4b:5a:79:ec:39:
34:43:18:69:68:44:5d:0d:b7:7a:c7:89:3e:20:f6:
5b:ed:d5:fa:cf:6a:e1:9b:a6:02:22:29:33:5e:7c:
5c:1d:fe:9a:4f:64:a3:8d:57:5d:51:15:3c:5e:53:
88:f7:88:b6:5a:ce:ac:98:e8:d3:a3:cb:95:74:8e:
4d:01:f5:51:a9:a1:06:96:b3:5c:1b:b6:32:df:d0:
22:9e:83:39:d0:a7:b8:b5:fa:61:a8:0c:09:6a:08:
de:cc:18:27:7e:5a:2b:80:39:bc:e8:95:7e:8f:f5:
09:74:b8:06:78:b2:4b:b0:c0:9c:6f:90:fd:d7:4f:
e4:4f:10:18:13:72:22:2b:cb:d9:98:5d:52:84:9a:
75:06:7e:5e:c2:67:e1:59:c1:95:9b:a7:6a:a0:bf:
e9:e5:c6:98:f3:2e:e6:80:e0:a6:1d:6f:8f:b4:1c:
d4:be:47:66:3b:8f:71:1a:b1:31:77:0f:71:87:32:
70:84:92:d3:20:39:e5:c2:d8:c6:32:9e:47:60:5b:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2F:FE:D8:7A:80:5D:9D:E8:93:1A:8E:29:82:39:42:C9:2A:FD:E9
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Ui_-2HqAXZ3okxqOKYI5Qskq_ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.33.0.0/16
80.82.160.0/19
80.237.0.0/17
83.234.0.0/16
185.13.160.0/22
188.43.0.0/16
217.150.32.0/19
IPv6:
2a00:1e48::/32
Signature Algorithm: sha256WithRSAEncryption
de:ec:a5:6a:1b:b4:08:8f:12:67:5b:dc:d9:6c:5f:70:c9:91:
29:63:73:4f:dd:8a:14:81:c1:d0:45:f3:de:a8:28:e9:ff:8a:
3e:a6:98:cc:1f:5c:94:87:21:1e:df:77:70:59:9a:93:1b:c4:
c2:b7:81:b6:00:31:c7:15:da:65:c6:e6:c2:c5:da:f6:dc:bf:
44:4c:20:62:9a:38:96:8e:d6:bf:05:5a:c4:ac:15:cc:ff:8a:
c2:ff:f7:fb:89:8c:d3:d4:22:99:4b:ca:45:8f:9c:49:7c:ed:
6a:69:1e:58:2e:a6:8b:5a:46:e1:6e:49:47:2f:29:81:e4:3b:
af:de:8c:34:f3:25:1f:18:fa:e9:34:63:19:0f:6e:9b:31:50:
8c:4a:c2:18:08:f1:19:0f:a3:7b:4b:5d:d2:f9:52:10:1c:83:
e5:ff:07:2e:61:ce:37:12:91:88:bf:ef:0b:8e:8b:e3:2c:27:
c9:56:55:56:49:b8:2f:2e:f9:7b:09:8d:6c:41:11:b1:bd:a3:
5b:13:74:05:5d:81:3a:22:46:1c:84:3b:e6:21:fb:27:af:b7:
70:5c:80:ad:e1:a4:e5:09:f9:fa:0b:e1:ec:b7:1a:4f:b3:1a:
19:e7:f4:93:71:0d:5f:15:12:fc:10:66:70:59:4e:35:0a:bf:
5f:d6:ec:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:43 2023 by rpki-client on console-fra.rpki-client.org