Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/aKUYkVyjDMSGBGdMZlXW5gp-6TE.roa
File: aKUYkVyjDMSGBGdMZlXW5gp-6TE.roa (raw, json)
Hash identifier: vbaXHYuGJsyC6/VkaBvmiqK0ztgFqBgMdciH/7Rw0tA=
Subject key identifier: 68:A5:18:91:5C:A3:0C:C4:86:04:67:4C:66:55:D6:E6:0A:7E:E9:31
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018281032666641BFE286FCD03490092AEED
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/aKUYkVyjDMSGBGdMZlXW5gp-6TE.roa
Signing time: Tue 09 Aug 2022 05:10:43 +0000
ROA not before: Tue 09 Aug 2022 05:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 80.66.198.0/24 maxlen: 24
141.98.199.0/24 maxlen: 24
195.245.229.0/24 maxlen: 24
194.114.136.0/24 maxlen: 24
45.142.124.0/24 maxlen: 24
45.147.50.0/24 maxlen: 24
94.124.118.0/24 maxlen: 24
185.200.65.0/24 maxlen: 24
185.200.67.0/24 maxlen: 24
149.62.45.0/24 maxlen: 24
45.143.232.0/24 maxlen: 24
194.169.55.0/24 maxlen: 24
185.194.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:03:26:66:64:1b:fe:28:6f:cd:03:49:00:92:ae:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Aug 9 05:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68a518915ca30cc48604674c6655d6e60a7ee931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c5:70:a1:0e:d1:88:47:39:26:bc:91:d7:03:
15:ce:6c:45:2a:6b:92:cc:c1:e2:58:08:40:d3:1d:
90:38:00:11:3a:d8:be:75:40:76:bd:09:8c:0b:5e:
0a:8e:0c:93:b6:53:23:77:88:5c:6c:9f:8e:b8:63:
1a:8d:e5:f4:b9:dd:4d:f0:52:48:e0:af:05:d9:c5:
86:17:b3:63:8f:78:25:16:fa:37:88:9e:e6:e6:fc:
a2:ca:34:b5:82:8c:91:37:f0:29:63:d3:ac:5d:b4:
e5:c0:33:3c:12:66:74:ba:84:47:0b:f0:b6:bd:68:
6a:6c:72:96:9c:b4:ea:80:72:b3:93:08:1b:e3:0c:
66:ce:cb:84:a8:76:e7:87:f0:53:1d:10:b1:98:c1:
3a:4e:b1:48:8c:58:3a:e0:06:db:d1:a9:e7:be:26:
d9:cb:57:b8:dd:42:c8:f7:55:6f:3a:7e:a0:d8:9f:
40:91:f1:fc:8d:85:ba:9e:39:b7:11:a2:c5:27:3b:
19:96:28:e6:b9:76:5b:8b:e0:61:60:94:b2:4e:62:
a6:b9:76:eb:2f:be:da:95:88:e3:10:81:26:74:d3:
98:8b:3d:e5:3d:22:bc:30:91:fc:ea:3d:10:cb:2f:
94:ca:d7:77:07:0e:a6:71:d8:03:8f:fe:c4:5e:4c:
1b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A5:18:91:5C:A3:0C:C4:86:04:67:4C:66:55:D6:E6:0A:7E:E9:31
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/aKUYkVyjDMSGBGdMZlXW5gp-6TE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.124.0/24
45.143.232.0/24
45.147.50.0/24
80.66.198.0/24
94.124.118.0/24
141.98.199.0/24
149.62.45.0/24
185.194.55.0/24
185.200.65.0/24
185.200.67.0/24
194.114.136.0/24
194.169.55.0/24
195.245.229.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:8d:99:e3:66:8f:0e:3a:cf:f1:63:47:4d:8c:df:e1:d6:e5:
99:10:dd:b1:ce:36:70:3c:db:87:88:00:b5:1c:be:94:47:8d:
61:25:f2:b1:29:d8:5e:ca:81:36:07:78:db:4c:3f:81:d8:e3:
0c:f5:df:b4:11:ef:8e:0d:7c:0f:81:27:a2:0d:f7:38:a9:2b:
8b:2d:56:36:3b:e9:9e:7e:7f:5f:f5:9e:b4:fa:65:98:94:22:
77:13:64:3f:0e:57:ea:cc:87:dc:ac:b9:02:50:c4:96:ea:f6:
54:f4:ba:bb:73:4a:2c:10:70:14:55:d7:0d:75:5b:10:2f:ef:
35:82:b8:82:88:0c:45:7f:0e:36:ad:f8:3b:6f:94:aa:58:7c:
d7:cd:ff:2c:aa:b8:22:0d:9d:bf:02:fc:e3:d0:91:8f:56:fa:
b5:0e:05:87:7b:74:57:76:9a:6d:f1:fb:5b:d3:32:4c:40:d4:
18:51:f8:b4:93:de:5a:80:76:7a:65:fc:55:55:1c:97:47:e0:
82:1b:b3:69:64:28:cb:87:57:b1:3a:41:39:fc:e5:ae:d2:fe:
89:50:fa:03:7d:9b:ae:d1:47:2d:02:1b:fc:ef:a4:f3:eb:8c:
b0:95:b0:e3:08:67:98:0e:84:50:69:f0:17:b7:77:c2:57:f5:
da:88:e9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org