Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/RcDoc-fY5qLmN8bOY8EqkcmCF00.roa
File: RcDoc-fY5qLmN8bOY8EqkcmCF00.roa (raw, json)
Hash identifier: DdH+fQaTiJ5STtKur0c1SKFK6wLPjivXXHF3lSi1QJ8=
Subject key identifier: 45:C0:E8:73:E7:D8:E6:A2:E6:37:C6:CE:63:C1:2A:91:C9:82:17:4D
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 0184616474424C34B82DD640654334B809A1
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/RcDoc-fY5qLmN8bOY8EqkcmCF00.roa
Signing time: Thu 10 Nov 2022 11:54:44 +0000
ROA not before: Thu 10 Nov 2022 11:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 31.11.50.0/24 maxlen: 24
31.11.51.0/24 maxlen: 24
31.11.48.0/24 maxlen: 24
31.11.49.0/24 maxlen: 24
31.11.52.0/24 maxlen: 24
31.11.53.0/24 maxlen: 24
31.11.54.0/24 maxlen: 24
31.11.55.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.160.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.166.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.37.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/24 maxlen: 24
80.76.170.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.172.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.174.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:64:74:42:4c:34:b8:2d:d6:40:65:43:34:b8:09:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Nov 10 11:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45c0e873e7d8e6a2e637c6ce63c12a91c982174d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6c:df:25:4f:55:81:64:fb:98:09:81:84:c2:
16:16:06:a4:43:9f:ab:20:95:17:c4:fb:d2:92:ad:
3f:b3:48:21:c1:57:24:8c:98:63:6e:66:16:bd:bc:
47:b2:c4:98:34:cd:1c:ab:00:82:19:9e:c3:ce:07:
b6:56:35:07:c3:4e:a1:ed:f7:b9:14:4b:64:f2:46:
dc:c8:6f:85:f9:2d:15:a6:72:65:17:be:64:85:c8:
6f:66:d3:c4:65:21:95:fe:6d:2a:4d:38:f5:10:ca:
90:0f:b9:15:64:65:a3:55:65:4b:1c:48:69:6b:f2:
c1:ed:af:7a:86:85:ac:8c:f8:d0:c4:53:11:d0:e5:
50:3f:9b:00:cd:49:88:b6:6e:1b:8d:9b:b4:d0:fd:
14:3f:a7:3c:ff:7d:48:1b:bd:fd:11:e3:97:c6:42:
9a:0c:02:48:81:30:0d:b7:13:f9:86:d4:d9:f9:b4:
49:53:a1:c2:b6:f2:34:ff:1b:b2:f5:c6:ec:9a:4d:
b3:9e:3a:85:3c:32:69:60:59:cf:39:8c:fe:13:7f:
ee:69:70:13:4f:36:ba:bc:19:33:95:76:e0:9b:45:
ec:82:85:08:dc:c0:b4:95:02:2a:af:f5:59:84:d0:
a3:4a:e9:c0:70:e9:b9:da:61:a3:bf:c1:f9:80:ec:
65:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C0:E8:73:E7:D8:E6:A2:E6:37:C6:CE:63:C1:2A:91:C9:82:17:4D
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/RcDoc-fY5qLmN8bOY8EqkcmCF00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0-37.186.42.255
37.186.47.0-37.186.51.255
80.76.160.0/20
212.70.100.0/22
212.70.121.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:41:d2:1f:ba:53:a8:c3:db:23:e4:74:b5:f9:b5:8d:33:d7:
2a:b1:7a:94:03:2d:21:ec:c8:15:ac:c0:bd:97:d5:5b:4d:7e:
69:7f:52:1d:be:2e:cf:46:9e:d2:66:71:d6:1b:6f:81:05:83:
28:d8:29:84:45:45:7c:0c:5e:1f:14:dc:c5:21:16:bc:f8:a0:
7b:bc:b1:ed:99:e1:04:6b:9f:3b:d2:e8:d2:a3:a2:2f:a8:98:
a4:1c:82:38:a0:36:30:4d:24:76:5b:5f:72:19:71:2b:75:9a:
c4:ca:35:0f:1f:d9:99:f6:11:da:f5:b3:ac:a4:38:85:d1:de:
8d:ab:42:12:2e:1b:ce:42:09:d4:58:dd:28:86:18:b5:6e:aa:
c8:c1:ce:47:e3:58:32:78:33:55:38:65:69:98:2d:05:5e:6d:
50:a9:98:18:96:a0:8c:27:8e:44:33:d5:4a:84:a1:58:96:4b:
1b:fa:79:28:0d:3d:e1:ca:d3:27:65:4d:cb:b0:9d:c4:be:4b:
91:22:65:d7:58:1e:1f:b4:77:0f:1f:a3:d2:4b:25:43:56:7f:
86:0b:7a:05:16:29:0d:17:54:68:df:a2:b0:11:5d:63:68:57:
66:5e:b9:b2:a5:f6:44:27:c0:64:20:c0:fd:b9:0c:f6:49:0d:
64:0e:3b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org