Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/V7PpnVCas_3u_5JlLGwhuUUXhyc.roa
File: V7PpnVCas_3u_5JlLGwhuUUXhyc.roa (raw, json)
Hash identifier: lEHang6iBmptmgv4FUrHtFoc919emTXWDmVr4vP/1vY=
Subject key identifier: 57:B3:E9:9D:50:9A:B3:FD:EE:FF:92:65:2C:6C:21:B9:45:17:87:27
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 0184388FF7C54FA86F1A0D087F85A502E761
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/V7PpnVCas_3u_5JlLGwhuUUXhyc.roa
Signing time: Wed 02 Nov 2022 13:37:49 +0000
ROA not before: Wed 02 Nov 2022 13:37:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31034
IP address blocks: 185.58.116.0/22 maxlen: 24
185.58.120.0/22 maxlen: 24
94.177.192.0/18 maxlen: 24
89.46.104.0/21 maxlen: 24
95.110.128.0/17 maxlen: 24
31.14.128.0/20 maxlen: 24
31.11.32.0/21 maxlen: 24
77.81.224.0/20 maxlen: 24
217.198.140.0/24 maxlen: 24
46.37.0.0/19 maxlen: 24
89.46.192.0/21 maxlen: 24
62.149.128.0/17 maxlen: 24
188.213.160.0/20 maxlen: 24
176.107.144.0/20 maxlen: 24
80.73.224.0/20 maxlen: 24
89.36.208.0/22 maxlen: 24
5.249.128.0/19 maxlen: 24
195.231.0.0/17 maxlen: 24
217.61.0.0/18 maxlen: 24
89.46.64.0/20 maxlen: 24
94.177.160.0/19 maxlen: 24
185.56.8.0/22 maxlen: 24
80.211.0.0/16 maxlen: 24
194.182.110.0/23 maxlen: 24
2a00:6d40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:38:8f:f7:c5:4f:a8:6f:1a:0d:08:7f:85:a5:02:e7:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: Nov 2 13:37:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57b3e99d509ab3fdeeff92652c6c21b945178727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7e:89:9a:44:7d:5e:a0:8e:f6:9c:82:19:83:
50:99:e6:e5:71:ee:75:0c:30:96:9b:22:0d:be:b3:
4e:29:a4:0e:06:d8:e0:81:e0:ac:62:b9:08:52:bf:
4c:cf:3e:40:2c:17:88:68:c8:a1:66:0d:25:81:09:
c1:14:b3:75:af:46:57:35:8b:a9:da:8b:a8:19:88:
a5:ea:59:86:e0:59:8a:0d:fe:14:41:f1:27:89:41:
40:3d:15:4f:3c:09:ed:42:22:39:f1:94:c4:fe:af:
0e:72:98:02:98:22:2c:99:e5:2c:5e:ba:38:de:85:
73:1e:d3:c7:dd:ee:dc:e2:0d:ec:53:20:fd:3d:8f:
9d:03:9a:37:ad:c6:6b:e9:58:3e:5b:11:07:d8:4b:
da:00:05:1e:dc:0c:b3:b7:a1:83:80:6c:7f:4b:c9:
81:92:70:2a:b6:38:cc:17:62:23:6d:0d:cd:aa:3a:
32:71:21:5e:32:87:08:ac:30:dc:b7:d2:92:e8:68:
cd:3e:c1:f1:60:80:30:5f:58:3f:b3:98:73:a4:ff:
01:1d:e5:5e:0e:02:f2:6b:13:fa:d7:99:77:d4:a7:
18:e1:39:94:98:1a:83:86:1f:14:48:d4:8a:75:23:
82:e6:f4:e3:d6:db:e6:04:95:b8:6b:f6:3d:18:03:
8e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B3:E9:9D:50:9A:B3:FD:EE:FF:92:65:2C:6C:21:B9:45:17:87:27
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/V7PpnVCas_3u_5JlLGwhuUUXhyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.128.0/19
31.11.32.0/21
31.14.128.0/20
46.37.0.0/19
62.149.128.0/17
77.81.224.0/20
80.73.224.0/20
80.211.0.0/16
89.36.208.0/22
89.46.64.0/20
89.46.104.0/21
89.46.192.0/21
94.177.160.0-94.177.255.255
95.110.128.0/17
176.107.144.0/20
185.56.8.0/22
185.58.116.0-185.58.123.255
188.213.160.0/20
194.182.110.0/23
195.231.0.0/17
217.61.0.0/18
217.198.140.0/24
IPv6:
2a00:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
34:cf:0f:a4:95:ee:df:1b:a3:a4:e2:20:e6:32:ed:be:5b:23:
21:c6:34:ea:73:d5:45:59:83:26:91:f9:be:22:b8:35:65:31:
e7:91:16:12:80:34:25:95:9f:26:4a:ca:c9:6e:58:7e:e1:5c:
c6:6a:82:07:52:c7:88:b7:4d:d0:e5:b9:25:90:be:d6:f1:a9:
77:b3:cf:66:1a:8d:b6:33:54:b8:0a:dd:71:cd:1b:57:0c:a3:
79:d7:ba:9d:16:55:fe:98:2a:17:a3:42:51:d5:d0:03:e3:c2:
ec:70:29:77:73:7d:9e:a0:a1:93:53:2f:62:02:7f:92:96:10:
90:ae:57:39:43:a9:32:6d:a8:53:12:cc:1d:a5:7b:29:ed:53:
7f:27:e2:e9:29:9e:24:26:27:c5:51:70:15:4b:d4:72:a6:5b:
85:12:5a:59:9f:d5:af:5f:d7:51:c5:76:8a:a4:e7:b9:cc:eb:
8e:f7:fc:9c:8a:ea:b8:fa:a4:f7:50:23:b6:97:4c:c4:ed:95:
27:d9:54:8c:fd:6b:68:25:52:94:e6:0b:52:78:d0:70:d2:d7:
ae:00:d4:dc:45:89:2f:0b:1b:8e:76:0d:a3:c2:d4:39:6c:72:
1e:df:ca:a0:12:f9:e1:d9:53:99:96:c6:7d:7a:3d:2f:c1:77:
37:46:ef:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org