Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/ScbluoO0ztZqh3llwnFHzbiUXQ0.roa
File: ScbluoO0ztZqh3llwnFHzbiUXQ0.roa (raw, json)
Hash identifier: 19i+rrlYLpjHPPI6OsmL8CpqemSiFgSjuSOeXtBj8GE=
Subject key identifier: 49:C6:E5:BA:83:B4:CE:D6:6A:87:79:65:C2:71:47:CD:B8:94:5D:0D
Certificate issuer: /CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Certificate serial: 01846199924C646DE2732029B686A3568134
Authority key identifier: EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/ScbluoO0ztZqh3llwnFHzbiUXQ0.roa
Signing time: Thu 10 Nov 2022 12:52:45 +0000
ROA not before: Thu 10 Nov 2022 12:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 147.189.176.0/20 maxlen: 20
194.169.122.0/23 maxlen: 23
194.169.121.0/24 maxlen: 24
194.169.122.0/24 maxlen: 24
194.169.123.0/24 maxlen: 24
176.65.12.0/22 maxlen: 22
199.204.215.0/24 maxlen: 24
94.26.112.0/20 maxlen: 20
217.66.224.0/19 maxlen: 19
82.205.0.0/17 maxlen: 17
199.250.128.0/19 maxlen: 19
86.107.16.0/22 maxlen: 22
188.209.208.0/22 maxlen: 22
87.252.108.0/22 maxlen: 22
188.215.100.0/22 maxlen: 22
89.239.32.0/20 maxlen: 20
37.8.0.0/17 maxlen: 17
212.33.96.0/19 maxlen: 19
185.171.132.0/22 maxlen: 22
109.232.162.0/23 maxlen: 23
185.40.192.0/22 maxlen: 22
185.138.132.0/22 maxlen: 22
185.90.242.0/24 maxlen: 24
82.102.192.0/18 maxlen: 18
212.106.64.0/19 maxlen: 19
217.78.48.0/21 maxlen: 21
217.78.48.0/20 maxlen: 20
217.78.60.0/22 maxlen: 22
217.21.0.0/20 maxlen: 20
85.113.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:99:92:4c:64:6d:e2:73:20:29:b6:86:a3:56:81:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Validity
Not Before: Nov 10 12:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49c6e5ba83b4ced66a877965c27147cdb8945d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:13:11:97:55:ed:4a:61:bc:35:21:d6:6e:14:
74:53:b6:ed:70:8b:a6:19:df:4b:43:99:29:61:b8:
62:b4:dd:b7:5e:77:19:16:56:b6:1d:2f:7e:56:c0:
da:fc:e1:29:43:14:9b:79:e3:d9:31:25:68:9f:44:
41:84:26:d8:16:d0:0b:3f:0b:b9:10:ae:37:d6:d8:
e7:3e:ae:97:e9:e5:c9:d9:90:fa:1b:d5:ae:89:20:
37:e5:0d:20:64:20:4f:d8:8f:0e:ca:71:14:55:21:
f0:a8:44:57:1c:16:fa:43:6a:93:3f:00:9d:07:97:
ac:87:db:6a:79:dc:27:59:a6:85:fd:88:6f:0a:a2:
8b:14:91:4f:bc:ab:c2:68:c1:2f:9c:d5:30:32:32:
28:1c:be:dc:6d:72:d4:3f:38:e7:a8:77:1c:16:47:
5f:b4:6f:df:52:70:47:ee:5c:22:e8:1e:15:f3:74:
e5:57:52:1f:b1:57:b1:28:8b:bc:ee:5f:f9:ff:7e:
84:2c:8d:d8:85:8e:3a:4a:55:39:3c:18:a7:cc:8d:
21:19:c3:ae:92:0f:a1:62:42:7a:e2:93:42:98:a8:
58:6d:01:95:a7:6e:93:b9:50:9d:59:68:65:4a:b9:
cd:3f:9e:09:bd:7f:45:b4:0e:15:6d:1a:58:bc:32:
5c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C6:E5:BA:83:B4:CE:D6:6A:87:79:65:C2:71:47:CD:B8:94:5D:0D
X509v3 Authority Key Identifier:
keyid:EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/ScbluoO0ztZqh3llwnFHzbiUXQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7DpjPvLAglGlhgNWLlaqbvqT7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.8.0.0/17
82.102.192.0/18
82.205.0.0/17
85.113.96.0/19
86.107.16.0/22
87.252.108.0/22
89.239.32.0/20
94.26.112.0/20
109.232.162.0/23
147.189.176.0/20
176.65.12.0/22
185.40.192.0/22
185.90.242.0/24
185.138.132.0/22
185.171.132.0/22
188.209.208.0/22
188.215.100.0/22
194.169.121.0-194.169.123.255
199.204.215.0/24
199.250.128.0/19
212.33.96.0/19
212.106.64.0/19
217.21.0.0/20
217.66.224.0/19
217.78.48.0/20
Signature Algorithm: sha256WithRSAEncryption
26:00:72:92:82:6e:62:c5:7e:55:cb:97:f9:15:52:85:1f:cd:
2b:26:ff:98:1e:ec:e4:62:70:5c:dc:b7:07:fd:fd:d9:69:39:
ee:14:27:c3:70:61:ff:c4:62:f4:1b:35:6c:de:45:b3:71:7d:
2d:35:9f:2d:ad:61:9e:7e:04:e8:b2:99:bc:07:56:d6:14:1c:
fa:f0:a8:70:49:ee:90:31:c7:b2:74:00:ba:e0:e1:21:eb:44:
17:70:0f:72:a6:d6:0d:e8:9d:7a:18:92:54:a2:3d:fe:e1:f0:
62:69:da:bf:6b:77:2a:2d:42:8d:bb:1a:00:a8:1a:3f:03:58:
4d:2b:c4:be:1b:70:c6:b4:01:34:d3:e5:f2:f7:ca:76:91:42:
b8:90:46:df:89:00:de:c7:22:1c:11:be:9c:14:ff:dd:c1:e6:
98:49:b3:81:e2:f0:7a:06:cb:71:bc:6a:60:4d:ec:64:cc:ce:
01:c2:56:89:2f:50:a4:f8:b3:9c:71:2a:35:a2:1e:69:6d:25:
88:a8:c5:f9:b3:2a:2c:61:f3:da:3f:7d:43:61:a8:17:48:a7:
07:68:a4:84:8a:38:ae:ad:e8:22:78:93:70:59:80:48:07:ce:
31:50:74:e1:ff:02:0f:1c:5a:d8:21:86:b8:bb:e4:80:f9:2f:
a6:66:e6:c1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:32 2023 by rpki-client on console-fra.rpki-client.org