Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/Ve2-yQPxSVEYfC6YozHP4GKnxtg.roa
File: Ve2-yQPxSVEYfC6YozHP4GKnxtg.roa (raw, json)
Hash identifier: yKSjcKOaTZu4C8kRy2AwzuE0miQAYHBzxhBDm51tznU=
Subject key identifier: 55:ED:BE:C9:03:F1:49:51:18:7C:2E:98:A3:31:CF:E0:62:A7:C6:D8
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 0185118A95AB0008592308538D660DC9F918
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/Ve2-yQPxSVEYfC6YozHP4GKnxtg.roa
Signing time: Wed 14 Dec 2022 16:49:33 +0000
ROA not before: Wed 14 Dec 2022 16:49:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212330
IP address blocks: 45.113.239.0/24 maxlen: 24
103.229.80.0/24 maxlen: 24
185.16.25.0/24 maxlen: 24
193.3.137.0/24 maxlen: 24
94.176.40.0/24 maxlen: 24
128.0.45.0/24 maxlen: 24
185.96.160.0/24 maxlen: 24
86.111.151.0/24 maxlen: 24
86.111.150.0/24 maxlen: 24
185.113.104.0/24 maxlen: 24
31.223.185.0/24 maxlen: 24
185.113.106.0/24 maxlen: 24
86.105.220.0/24 maxlen: 24
93.115.252.0/24 maxlen: 24
2a10:fa43::/32 maxlen: 32
2a10:fa42::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:8a:95:ab:00:08:59:23:08:53:8d:66:0d:c9:f9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Dec 14 16:49:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55edbec903f14951187c2e98a331cfe062a7c6d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7b:c0:07:26:8b:97:2c:65:98:9a:6e:52:0e:
fc:73:60:b5:56:af:6a:2d:72:c8:84:d6:f5:23:33:
49:50:9c:ab:24:c3:42:da:a7:ba:9b:28:a9:93:5b:
6e:be:5b:2b:11:7b:28:93:47:ce:ec:d0:57:96:4b:
b8:3c:bd:d5:32:03:5b:14:fb:35:fe:13:fa:80:9f:
6b:43:cd:01:73:9a:fc:4b:d4:30:1d:78:36:d3:e7:
dd:12:5d:bd:59:38:6c:0e:55:fb:1a:74:39:b7:8f:
9d:87:c1:b8:9c:79:d1:f1:da:25:09:15:28:74:1c:
57:fb:cd:28:d6:47:95:f8:f2:3f:06:ef:52:4c:57:
32:17:97:0f:4e:48:26:6c:29:69:4d:a3:bb:42:6d:
4f:4a:f2:dc:24:f0:8a:31:74:33:81:02:9c:f9:b9:
56:2f:33:00:cf:6a:f9:41:19:f8:9d:10:c4:9e:94:
a9:7b:cb:58:0c:2a:cd:20:0e:e4:9f:77:62:14:2e:
c8:fa:02:3a:08:60:90:9e:60:03:b4:c4:29:c7:fd:
87:c3:9b:ef:c4:ba:21:8d:71:3b:1d:f8:5b:c6:67:
59:07:e8:ef:1a:5e:7a:27:ff:e5:75:12:26:4c:c7:
68:69:65:18:65:23:47:13:f4:0e:7e:b3:15:2c:07:
5e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:ED:BE:C9:03:F1:49:51:18:7C:2E:98:A3:31:CF:E0:62:A7:C6:D8
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/Ve2-yQPxSVEYfC6YozHP4GKnxtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.185.0/24
45.113.239.0/24
86.105.220.0/24
86.111.150.0/23
93.115.252.0/24
94.176.40.0/24
103.229.80.0/24
128.0.45.0/24
185.16.25.0/24
185.96.160.0/24
185.113.104.0/24
185.113.106.0/24
193.3.137.0/24
IPv6:
2a10:fa42::/31
Signature Algorithm: sha256WithRSAEncryption
40:c1:f6:8f:8e:fd:35:86:e9:86:d1:02:49:98:15:5d:02:88:
19:84:4e:b9:40:17:7b:64:73:90:76:b5:3c:76:50:59:70:c9:
e2:50:cf:f6:70:3a:d5:a8:92:77:24:90:ef:26:6d:48:6f:93:
d2:c3:ae:8c:a5:26:cf:d9:61:cd:57:53:08:4f:e2:73:f6:67:
69:21:1d:3b:24:ea:9b:7f:f3:1e:6b:44:f5:dc:50:19:37:78:
16:46:b0:f7:cb:f2:7f:3f:9b:52:ab:d6:29:9e:a1:2c:dc:1e:
9f:79:4b:90:0c:db:08:31:6c:7e:f4:49:fb:70:f0:98:77:8c:
bc:fd:fa:d3:ef:0f:2f:4b:c7:90:f3:93:1f:b7:4a:5c:0f:7e:
66:72:8b:d0:74:bc:10:fa:28:4c:50:fe:a9:84:17:4e:bc:ea:
89:73:05:83:e4:a0:02:46:55:52:2d:2a:27:95:cd:e3:80:f4:
46:24:a1:ab:19:d1:9c:52:95:12:4d:15:8b:3c:38:6e:da:e2:
02:61:06:35:3a:11:98:53:ff:7c:ea:ab:60:ec:40:28:a8:13:
0e:1b:e5:cc:aa:9f:1d:2c:a6:2a:c1:11:9b:ad:ac:22:e2:f9:
b4:1a:71:9f:ea:43:d4:2d:b7:88:dd:c4:b3:79:8e:c6:b5:8f:
a5:b5:42:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:08 2024 by rpki-client on console-fra.rpki-client.org