Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/6ALF8ef7VDYNZ29JMdqLKGqXLyQ.roa
File: 6ALF8ef7VDYNZ29JMdqLKGqXLyQ.roa (raw, json)
Hash identifier: u4ALa/mFZC9HWg8orcjrzOw3mphTWugMqU4vtMsiFyA=
Subject key identifier: E8:02:C5:F1:E7:FB:54:36:0D:67:6F:49:31:DA:8B:28:6A:97:2F:24
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 358FB680
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/6ALF8ef7VDYNZ29JMdqLKGqXLyQ.roa
Signing time: Tue 25 Jan 2022 09:10:37 +0000
ROA not before: Tue 25 Jan 2022 09:10:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 62.56.192.0/20 maxlen: 24
216.147.96.0/20 maxlen: 24
87.236.180.0/22 maxlen: 24
45.230.12.0/22 maxlen: 24
91.126.32.0/19 maxlen: 24
91.126.64.0/19 maxlen: 24
185.239.36.0/22 maxlen: 24
147.161.64.0/18 maxlen: 24
91.126.16.0/20 maxlen: 24
91.126.160.0/19 maxlen: 24
74.126.176.0/20 maxlen: 24
143.131.192.0/18 maxlen: 24
110.93.8.0/22 maxlen: 24
185.203.208.0/22 maxlen: 24
91.126.96.0/19 maxlen: 24
64.190.114.0/23 maxlen: 24
91.126.128.0/19 maxlen: 24
135.129.224.0/20 maxlen: 24
98.96.184.0/21 maxlen: 24
103.202.232.0/22 maxlen: 24
45.130.132.0/22 maxlen: 24
91.126.192.0/19 maxlen: 24
45.133.138.0/23 maxlen: 24
91.126.224.0/19 maxlen: 24
91.126.232.0/21 maxlen: 24
173.243.32.0/20 maxlen: 24
2a00:1af4::/32 maxlen: 32
2a00:1af4:1000::/48 maxlen: 48
2a00:1af0::/29 maxlen: 29
2a00:1af4:1003::/48 maxlen: 48
2a00:1af1::/32 maxlen: 32
2a00:1af1::/36 maxlen: 36
2a00:1af2::/32 maxlen: 32
2a00:1af3::/32 maxlen: 32
2a00:1af0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 898610816 (0x358fb680)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Jan 25 09:10:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e802c5f1e7fb54360d676f4931da8b286a972f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6c:1a:01:4d:8e:f8:ea:f2:c2:c0:e9:51:73:
cf:85:5d:84:35:47:3c:aa:ea:e1:15:39:83:0b:b9:
c1:4a:52:41:72:38:18:d4:f4:76:1a:84:60:31:94:
85:19:30:9f:e0:ce:bf:da:c2:70:4a:02:13:79:81:
de:0f:d4:c5:e4:10:bc:a5:c0:bb:7f:87:1e:d8:fb:
a6:b4:a9:06:60:1f:f4:d0:54:74:a8:6f:e3:80:9e:
bd:98:09:f8:6f:d9:16:32:96:63:c3:dc:81:94:08:
b8:25:de:bf:18:ed:94:8c:9c:77:6d:bc:62:ac:e7:
1a:63:2d:08:96:43:46:f3:2a:51:e4:5d:a9:28:b7:
a4:22:32:6b:31:e6:19:c9:12:cb:5d:93:26:b9:1a:
0c:81:46:16:74:90:48:29:cd:b9:72:3c:99:c2:fe:
fd:e0:3e:5d:6b:23:06:a7:1a:01:b9:27:6a:50:fb:
a2:da:cc:b1:83:3b:9b:46:76:03:2b:09:81:ff:1f:
59:df:8c:72:4d:70:91:85:e1:28:61:15:77:dc:8a:
42:0b:37:7b:9c:9e:b9:31:f6:53:79:40:80:40:2c:
60:a2:0e:95:35:c4:b6:dd:22:89:c2:91:e2:8d:54:
96:c3:43:18:1c:f5:9e:7b:61:c9:8f:f0:82:ba:60:
d8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:02:C5:F1:E7:FB:54:36:0D:67:6F:49:31:DA:8B:28:6A:97:2F:24
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/6ALF8ef7VDYNZ29JMdqLKGqXLyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.132.0/22
45.133.138.0/23
45.230.12.0/22
62.56.192.0/20
64.190.114.0/23
74.126.176.0/20
87.236.180.0/22
91.126.16.0-91.126.255.255
98.96.184.0/21
103.202.232.0/22
110.93.8.0/22
135.129.224.0/20
143.131.192.0/18
147.161.64.0/18
173.243.32.0/20
185.203.208.0/22
185.239.36.0/22
216.147.96.0/20
IPv6:
2a00:1af0::/29
Signature Algorithm: sha256WithRSAEncryption
47:13:72:ae:fc:f8:41:8b:83:f7:ea:34:96:4a:7b:31:b3:86:
38:55:fc:c5:5c:dc:72:26:ce:4c:77:b8:70:8f:5d:72:5e:da:
d2:ca:2a:2b:f9:1a:39:3a:c1:9d:50:8e:c8:5d:1e:93:9f:ef:
32:bf:de:d2:58:98:45:0b:58:69:9c:85:9f:68:2a:1c:e0:d8:
f6:f1:6c:99:70:a1:e1:f6:df:07:bf:9c:7a:57:02:98:88:6a:
5e:4b:2e:fe:10:d4:3a:86:b9:ac:b4:0f:5a:39:53:93:e3:d4:
4e:77:7e:0d:2a:88:3b:25:0f:a5:e6:98:71:6c:9c:78:49:8f:
81:58:e6:92:12:b9:96:79:15:9c:33:89:72:2c:f1:e0:c9:96:
7d:09:a5:01:f0:ae:f5:16:18:85:ae:d1:e2:7a:23:0c:73:59:
4b:b2:ad:df:1f:3e:41:1c:79:5b:a9:0c:6a:e0:f9:80:be:0c:
98:25:29:84:1f:71:2e:2b:d4:2a:f0:e3:bb:f0:77:50:d1:f8:
c7:90:54:ea:75:85:84:74:a6:94:a2:7a:84:0f:46:b3:54:8c:
2e:54:80:d8:8a:d9:0c:64:f6:9e:f5:0d:ee:e2:5f:ba:62:4f:
68:0a:5b:e2:58:30:03:72:a5:76:6a:b0:0b:f5:3a:a0:bd:cb:
87:9c:e9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-ams.rpki-client.org