Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/Gv5uAPgk9y5vCFd6Dq77Rgf1gB8.roa
File: Gv5uAPgk9y5vCFd6Dq77Rgf1gB8.roa (raw, json)
Hash identifier: dVP29+6WTq9H1nssLY8rXwHhAmqIlOxEvj5MP8ax/NU=
Subject key identifier: 1A:FE:6E:00:F8:24:F7:2E:6F:08:57:7A:0E:AE:FB:46:07:F5:80:1F
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 188773AD
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/Gv5uAPgk9y5vCFd6Dq77Rgf1gB8.roa
Signing time: Sat 01 Jan 2022 02:51:59 +0000
ROA not before: Sat 01 Jan 2022 02:51:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31122
IP address blocks: 78.137.128.0/18 maxlen: 18
92.51.192.0/18 maxlen: 18
185.53.32.0/24 maxlen: 24
84.203.0.0/16 maxlen: 16
185.53.35.0/24 maxlen: 24
83.147.128.0/18 maxlen: 18
89.234.64.0/18 maxlen: 18
176.52.216.0/22 maxlen: 22
46.183.104.0/23 maxlen: 23
212.126.32.0/19 maxlen: 19
176.52.220.0/23 maxlen: 23
212.126.60.0/22 maxlen: 22
80.93.16.0/20 maxlen: 20
92.51.208.0/20 maxlen: 20
217.78.0.0/20 maxlen: 20
2a02:220::/32 maxlen: 32
2a01:258::/32 maxlen: 32
2001:1bb8::/32 maxlen: 32
2a00:15b8::/32 maxlen: 32
2a00:15b8:400::/40 maxlen: 40
2a01:8aa0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411530157 (0x188773ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Jan 1 02:51:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1afe6e00f824f72e6f08577a0eaefb4607f5801f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d2:4f:b8:8c:88:de:94:36:21:3b:64:49:67:
8c:1c:23:5c:04:5e:e1:ba:40:75:6d:ef:7a:bb:58:
07:5a:67:c7:be:d3:5f:ff:9b:ae:6e:1a:80:34:66:
79:79:1f:cf:f2:21:27:eb:b0:1c:f7:b4:b9:52:4e:
17:7a:d7:4d:57:42:2d:be:c1:24:89:d7:1e:84:e8:
e8:26:81:ca:6f:b9:f6:72:b8:10:cd:cd:04:0f:cc:
dc:6a:ad:7d:b6:90:83:ca:35:7a:b4:3a:b6:ce:1d:
79:21:32:63:5d:46:50:ab:01:b2:b2:5f:3e:83:8a:
06:7f:68:af:1d:54:98:db:b0:e1:63:4d:45:b5:27:
21:67:35:a8:16:0b:c8:02:0d:dd:e8:5e:6e:e2:44:
ce:08:cd:2a:0c:15:51:04:b9:19:2f:3f:c2:5d:c6:
e6:a4:8a:bd:5b:4d:a3:0a:36:e6:9f:ac:68:11:8c:
fb:54:af:f9:81:85:c4:e4:e7:85:e0:3c:23:59:25:
49:84:92:59:c9:87:97:db:02:59:9f:07:07:c2:86:
11:0b:87:c8:04:b7:8a:9d:3b:f7:8e:f0:cd:56:6c:
4e:29:fa:6f:e4:bb:06:6a:52:3c:c8:7a:bc:ec:8e:
6c:81:33:0d:cf:8d:00:ed:73:bb:55:a9:c6:aa:29:
3e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FE:6E:00:F8:24:F7:2E:6F:08:57:7A:0E:AE:FB:46:07:F5:80:1F
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/Gv5uAPgk9y5vCFd6Dq77Rgf1gB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.104.0/23
78.137.128.0/18
80.93.16.0/20
83.147.128.0/18
84.203.0.0/16
89.234.64.0/18
92.51.192.0/18
176.52.216.0-176.52.221.255
185.53.32.0/24
185.53.35.0/24
212.126.32.0/19
217.78.0.0/20
IPv6:
2001:1bb8::/32
2a00:15b8::/32
2a01:258::/32
2a01:8aa0::/32
2a02:220::/32
Signature Algorithm: sha256WithRSAEncryption
27:a3:ad:63:70:57:13:17:00:25:8e:2b:9f:36:c4:95:1a:05:
1f:31:42:25:63:a8:a4:c5:e4:7c:c8:7e:a6:ab:bd:3d:ad:c3:
96:ae:22:a5:84:11:b4:ae:10:68:5d:fe:6f:a6:2b:00:cb:fc:
fd:8e:6b:58:93:b2:8e:a5:68:4f:8e:70:23:2b:d8:31:e9:43:
81:b3:d1:f6:c1:1e:38:0a:7c:46:7c:89:ed:b2:cd:49:9e:c0:
e8:f3:40:37:2f:8d:c7:04:8f:d0:c2:9f:19:5e:4f:33:3e:64:
ae:a1:82:c1:d3:e5:4a:71:ea:ca:64:93:3b:87:06:45:69:50:
6c:3b:cc:9e:bd:13:45:dc:a9:33:d1:46:75:ca:b7:ea:41:fe:
ec:10:38:51:d6:10:8a:1a:5a:f0:bf:07:51:36:bb:e2:6d:eb:
64:31:52:da:ad:fc:bc:3f:ad:50:56:f1:af:91:9e:98:98:c0:
9f:aa:1f:00:5a:6e:8c:34:99:ba:22:43:21:ee:54:2d:1a:2b:
f6:b7:6b:a9:4d:74:0c:f1:70:b7:a5:0e:10:ce:7a:5e:b1:fc:
f4:a0:39:b4:f3:01:fa:8b:1e:74:01:37:a1:01:83:f0:af:97:
91:2f:d4:d9:2e:a2:fa:d1:34:33:e0:6f:83:34:ce:78:cf:d6:
89:89:21:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-fra.rpki-client.org