Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/QGr2JSNyfcd7M5YBS4LNBayEQTE.roa
File: QGr2JSNyfcd7M5YBS4LNBayEQTE.roa (raw, json)
Hash identifier: QDFiIM/b2T/kVslSjMZ94BQ4/gmkNof6mS3SgBq8OZI=
Subject key identifier: 40:6A:F6:25:23:72:7D:C7:7B:33:96:01:4B:82:CD:05:AC:84:41:31
Certificate issuer: /CN=2347aaab2206c08128f543730064a145a3effa14
Certificate serial: 142272BA
Authority key identifier: 23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/QGr2JSNyfcd7M5YBS4LNBayEQTE.roa
Signing time: Sat 01 Jan 2022 14:57:16 +0000
ROA not before: Sat 01 Jan 2022 14:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 195.58.96.0/19 maxlen: 19
62.119.0.0/16 maxlen: 16
212.75.64.0/19 maxlen: 19
178.28.0.0/14 maxlen: 14
78.82.0.0/16 maxlen: 16
62.13.0.0/17 maxlen: 17
212.73.160.0/19 maxlen: 19
213.214.192.0/18 maxlen: 18
213.112.0.0/14 maxlen: 14
79.102.0.0/16 maxlen: 16
80.68.96.0/20 maxlen: 20
94.234.0.0/16 maxlen: 16
81.26.224.0/19 maxlen: 19
213.242.128.0/18 maxlen: 18
195.43.192.0/18 maxlen: 18
62.65.64.0/18 maxlen: 18
213.238.192.0/18 maxlen: 18
85.224.0.0/13 maxlen: 13
83.226.0.0/15 maxlen: 15
46.194.0.0/15 maxlen: 15
92.32.0.0/14 maxlen: 14
213.163.128.0/19 maxlen: 19
82.182.0.0/15 maxlen: 15
62.127.0.0/16 maxlen: 16
213.204.128.0/18 maxlen: 18
217.174.64.0/19 maxlen: 19
195.66.32.0/19 maxlen: 19
195.54.96.0/19 maxlen: 19
84.216.0.0/14 maxlen: 14
212.73.0.0/19 maxlen: 19
212.105.0.0/17 maxlen: 17
213.150.128.0/19 maxlen: 19
2a02:1400::/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337801914 (0x142272ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2347aaab2206c08128f543730064a145a3effa14
Validity
Not Before: Jan 1 14:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=406af62523727dc77b3396014b82cd05ac844131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:10:a0:35:88:f5:1e:16:d9:69:f3:e3:b1:d5:
a3:9d:fd:d7:a7:23:cf:62:2a:54:7c:41:b8:73:8d:
07:1c:f1:82:0e:37:d0:aa:22:b1:fa:24:91:68:d4:
74:4b:2e:7b:09:e8:a0:39:13:5f:1d:1b:53:01:9b:
77:f2:87:d8:9b:d6:eb:48:e2:4d:75:f5:75:a6:72:
c7:87:43:d2:be:95:32:ee:a4:fd:57:a9:a7:72:84:
ec:3d:21:4d:14:f2:b1:da:dc:65:44:3a:8e:83:a9:
de:ea:a4:0d:4d:08:e2:69:d7:85:a2:66:2a:2d:ca:
b7:31:86:a8:a1:34:8a:98:14:e1:da:b9:d7:f4:4a:
f3:1d:f9:58:ce:2d:d5:5f:3b:bf:8d:c0:8d:a9:60:
68:39:63:16:0a:0e:44:a7:1a:10:4a:ee:33:33:3b:
f8:1c:a5:a0:88:96:94:b3:a5:45:88:e5:01:43:3a:
b5:2f:09:87:8e:f7:b2:83:db:e9:f6:ce:41:8a:db:
4c:ab:88:6f:88:62:99:50:dd:cc:83:26:78:9d:77:
b7:2d:76:7a:c1:cf:15:e7:a1:69:72:c7:f8:63:4a:
56:01:ef:e3:85:35:a8:96:2e:3b:92:09:60:0a:68:
98:80:44:99:28:ff:d7:c9:93:0c:71:8e:a7:36:47:
36:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6A:F6:25:23:72:7D:C7:7B:33:96:01:4B:82:CD:05:AC:84:41:31
X509v3 Authority Key Identifier:
keyid:23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/QGr2JSNyfcd7M5YBS4LNBayEQTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/I0eqqyIGwIEo9UNzAGShRaPv-hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.194.0.0/15
62.13.0.0/17
62.65.64.0/18
62.119.0.0/16
62.127.0.0/16
78.82.0.0/16
79.102.0.0/16
80.68.96.0/20
81.26.224.0/19
82.182.0.0/15
83.226.0.0/15
84.216.0.0/14
85.224.0.0/13
92.32.0.0/14
94.234.0.0/16
178.28.0.0/14
195.43.192.0/18
195.54.96.0/19
195.58.96.0/19
195.66.32.0/19
212.73.0.0/19
212.73.160.0/19
212.75.64.0/19
212.105.0.0/17
213.112.0.0/14
213.150.128.0/19
213.163.128.0/19
213.204.128.0/18
213.214.192.0/18
213.238.192.0/18
213.242.128.0/18
217.174.64.0/19
IPv6:
2a02:1400::/26
Signature Algorithm: sha256WithRSAEncryption
8d:5b:db:ef:dd:d0:be:46:0b:9e:6d:eb:f6:a1:3f:55:58:59:
36:c2:ac:4e:19:91:12:71:e8:88:0c:29:37:c8:84:4e:c0:b4:
43:87:9b:b0:a3:23:85:0a:c3:e9:ca:c5:6b:36:e2:24:ed:6f:
b5:92:dc:ca:78:bd:67:59:46:2a:11:c7:31:4e:b4:a0:20:e7:
a9:4a:51:b5:95:62:eb:b9:f5:de:4a:bd:a3:92:2f:16:02:be:
cf:4e:e0:67:d0:05:2a:47:11:bd:7b:65:3d:29:9e:ab:22:4c:
39:8a:8a:bd:8e:0d:d0:90:11:44:9a:bd:2a:d9:42:3e:bb:25:
82:7a:b1:ca:87:25:3b:aa:5f:35:00:b7:13:05:78:42:9c:0d:
e0:53:ff:f3:f7:c8:6c:7f:1e:c1:db:f7:45:60:ae:f7:ff:47:
fa:14:13:47:7c:91:c0:13:e1:de:bb:68:7a:c1:0d:22:d9:f4:
2a:84:93:14:ad:3f:b0:0d:e0:72:5f:31:c4:f4:82:84:f9:93:
79:ac:e8:f1:f8:06:f3:76:32:ae:4e:cb:65:e5:8e:a9:75:8e:
9a:06:97:40:43:3e:08:5c:64:0b:53:1b:15:96:5d:e1:f8:37:
e7:49:2a:1b:df:a4:a6:c5:f9:54:29:b2:9d:12:31:7c:a5:c2:
2c:b3:d2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:54 2024 by rpki-client on console-ams.rpki-client.org