Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/tVMdNfKtGcl4R418q2xsW0_ZvAo.roa
File: tVMdNfKtGcl4R418q2xsW0_ZvAo.roa (raw, json)
Hash identifier: U5cbKzfdt2da/KXdFWAJ0pNY+6Nly+nShHOUcqgiHpQ=
Subject key identifier: B5:53:1D:35:F2:AD:19:C9:78:47:8D:7C:AB:6C:6C:5B:4F:D9:BC:0A
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0C277500
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/tVMdNfKtGcl4R418q2xsW0_ZvAo.roa
Signing time: Mon 06 Jun 2022 11:22:20 +0000
ROA not before: Mon 06 Jun 2022 11:22:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20485
IP address blocks: 217.150.32.0/19 maxlen: 19
80.76.240.0/20 maxlen: 24
185.50.216.0/22 maxlen: 24
145.255.136.0/21 maxlen: 21
80.237.0.0/17 maxlen: 17
188.43.0.0/16 maxlen: 16
80.82.160.0/19 maxlen: 19
185.13.160.0/22 maxlen: 22
62.33.0.0/16 maxlen: 16
213.137.230.0/23 maxlen: 23
213.137.232.0/23 maxlen: 24
213.137.236.0/22 maxlen: 24
213.137.240.0/21 maxlen: 24
213.137.248.0/21 maxlen: 24
83.234.0.0/16 maxlen: 16
213.141.240.0/22 maxlen: 22
151.237.240.0/21 maxlen: 24
213.141.247.0/24 maxlen: 24
195.246.122.0/23 maxlen: 24
62.33.111.0/24 maxlen: 24
217.148.208.0/20 maxlen: 24
2a00:1e48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203912448 (0xc277500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jun 6 11:22:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5531d35f2ad19c978478d7cab6c6c5b4fd9bc0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:81:76:97:86:36:71:14:0a:9b:26:65:64:31:
96:db:6b:58:2c:49:7e:0b:89:82:4c:e2:bf:ab:fd:
30:62:11:97:63:f4:83:22:86:ec:c5:75:af:89:20:
0b:19:df:9b:46:5b:e1:1d:c4:03:6a:58:4d:e8:e6:
0a:3b:50:d5:11:a7:80:67:61:bd:df:c1:5f:a9:41:
f0:16:4a:fa:46:ce:80:b0:9a:68:c3:25:90:dd:10:
37:f1:55:f8:bc:d6:69:56:77:c6:8c:dc:2f:6e:ec:
5b:f4:9a:4a:80:9c:29:25:9d:ba:ea:ba:d6:92:d6:
77:82:21:c0:de:5d:71:f5:01:bd:08:60:37:bb:e6:
5b:de:73:4b:05:bc:fe:2a:6b:22:59:12:a3:bc:20:
4a:95:e4:08:32:ca:e0:6c:b0:48:59:58:1c:9a:d8:
85:60:48:20:6c:ca:8e:43:aa:ba:2d:db:ea:ad:fd:
32:53:29:18:70:b3:3b:82:d2:8f:6c:01:5d:72:ef:
8b:ac:a9:b1:73:7f:84:47:f0:84:35:b6:dd:1a:bb:
d0:d9:28:61:69:54:8f:07:39:47:a0:b9:2d:25:73:
8c:d9:38:7e:4a:66:0b:90:2e:39:d8:7c:35:8d:b6:
47:eb:67:02:79:d3:34:9d:8a:8e:84:2c:4d:54:31:
15:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:53:1D:35:F2:AD:19:C9:78:47:8D:7C:AB:6C:6C:5B:4F:D9:BC:0A
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/tVMdNfKtGcl4R418q2xsW0_ZvAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.33.0.0/16
80.76.240.0/20
80.82.160.0/19
80.237.0.0/17
83.234.0.0/16
145.255.136.0/21
151.237.240.0/21
185.13.160.0/22
185.50.216.0/22
188.43.0.0/16
195.246.122.0/23
213.137.230.0-213.137.233.255
213.137.236.0-213.137.255.255
213.141.240.0/22
213.141.247.0/24
217.148.208.0/20
217.150.32.0/19
IPv6:
2a00:1e48::/32
Signature Algorithm: sha256WithRSAEncryption
0e:c9:8c:67:a2:25:64:13:ba:fc:d6:24:d0:51:a0:e8:1c:05:
39:f7:39:ba:14:16:4e:01:53:53:e4:da:1e:4a:60:b4:1f:63:
eb:25:1f:5f:e7:ca:4e:e9:44:22:4e:76:06:da:a9:3b:60:31:
af:8b:8a:5d:4e:86:c3:95:70:5f:e9:87:7f:fc:77:e5:20:a3:
20:eb:1f:f3:2a:2b:8d:49:bd:36:04:06:65:c3:84:c3:7e:24:
52:9d:e2:de:b8:1c:aa:9b:ba:ce:54:b0:38:27:a0:a5:97:1d:
61:66:f2:70:6b:dc:40:a4:cb:1b:34:be:a4:89:44:0b:a9:e1:
2f:42:7c:b4:70:1a:3f:3e:e8:29:de:86:cf:48:d1:c4:69:f5:
25:65:1b:e8:b3:ec:7b:3a:de:e9:8f:39:ca:00:41:4c:a3:19:
07:6e:2c:b6:ad:1d:21:60:6c:51:a8:6e:25:5b:c0:9f:1c:32:
0e:5f:11:56:75:9d:cc:06:53:32:41:48:07:09:97:c0:ec:99:
83:bb:c3:94:11:07:ca:f2:54:cf:c7:21:a7:39:12:08:0b:e6:
56:94:f7:b4:c0:f2:74:a6:1d:ae:fc:99:ad:49:4b:cd:e2:37:
c4:69:00:26:0d:94:a9:e8:10:93:a4:34:91:5f:4a:71:b6:cb:
1e:1b:4a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-ams.rpki-client.org