Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/o19SaMcR7JZ5MvL--wK_OLiHs54.roa
File: o19SaMcR7JZ5MvL--wK_OLiHs54.roa (raw, json)
Hash identifier: 9rdiNa5dmf3zT2l+K5hZ1az37+DE7muqLl1ee5KNKhw=
Subject key identifier: A3:5F:52:68:C7:11:EC:96:79:32:F2:FE:FB:02:BF:38:B8:87:B3:9E
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 0183F13CB8AA2A5D72AD4931BA00B6A85310
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/o19SaMcR7JZ5MvL--wK_OLiHs54.roa
Signing time: Wed 19 Oct 2022 17:13:51 +0000
ROA not before: Wed 19 Oct 2022 17:13:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212330
IP address blocks: 45.113.239.0/24 maxlen: 24
103.229.80.0/24 maxlen: 24
77.81.176.0/24 maxlen: 24
185.16.25.0/24 maxlen: 24
193.3.137.0/24 maxlen: 24
94.176.40.0/24 maxlen: 24
128.0.45.0/24 maxlen: 24
185.96.160.0/24 maxlen: 24
86.111.151.0/24 maxlen: 24
86.111.150.0/24 maxlen: 24
185.113.104.0/24 maxlen: 24
31.223.185.0/24 maxlen: 24
185.113.106.0/24 maxlen: 24
86.105.220.0/24 maxlen: 24
93.115.252.0/24 maxlen: 24
2a10:fa43::/32 maxlen: 32
2a10:fa42::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f1:3c:b8:aa:2a:5d:72:ad:49:31:ba:00:b6:a8:53:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Oct 19 17:13:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a35f5268c711ec967932f2fefb02bf38b887b39e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fc:5a:55:55:ad:d3:0d:0c:0c:47:2d:10:7a:
dc:04:3a:fc:7a:e6:50:42:1f:a7:05:d5:82:dd:42:
64:d6:fa:f7:89:b7:45:33:3d:28:86:58:ac:2a:84:
e5:ae:da:57:0a:9f:4d:16:90:0e:eb:6a:a4:ca:3b:
87:3d:b9:3e:44:79:f2:1d:41:e4:35:80:93:ba:1b:
b0:e2:a6:e1:af:6a:33:73:28:f1:79:eb:1c:24:a4:
b0:9d:e3:a5:d1:a0:fa:77:0b:42:cc:df:ef:91:ef:
64:b4:d2:03:35:1e:06:54:0b:91:83:72:2b:87:3d:
cb:f2:60:ed:b5:80:5b:4b:5e:0d:24:52:f3:ff:b0:
30:fe:9c:09:51:70:fe:fe:60:18:e1:cd:00:75:2b:
c7:c3:d1:30:99:5c:cb:e1:36:c6:1d:56:0f:61:16:
43:cb:36:47:96:79:38:a5:0e:09:98:a7:09:3b:11:
88:02:7c:92:f5:e4:4c:42:0d:c7:d1:70:40:81:80:
05:99:54:48:01:f7:38:a4:28:c8:79:73:d4:e2:cb:
d2:de:fc:8e:77:d4:2b:e4:95:41:b6:1b:07:9c:70:
56:1d:65:48:a7:9c:31:6b:53:29:e0:24:38:b6:d3:
32:ee:0e:22:ee:98:3e:7d:e7:c3:16:57:fc:ac:46:
f6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5F:52:68:C7:11:EC:96:79:32:F2:FE:FB:02:BF:38:B8:87:B3:9E
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/o19SaMcR7JZ5MvL--wK_OLiHs54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.185.0/24
45.113.239.0/24
77.81.176.0/24
86.105.220.0/24
86.111.150.0/23
93.115.252.0/24
94.176.40.0/24
103.229.80.0/24
128.0.45.0/24
185.16.25.0/24
185.96.160.0/24
185.113.104.0/24
185.113.106.0/24
193.3.137.0/24
IPv6:
2a10:fa42::/31
Signature Algorithm: sha256WithRSAEncryption
62:a8:ea:64:8b:48:88:de:a2:8a:32:c6:74:86:17:f1:0a:7d:
9f:73:82:6b:90:d2:d7:66:15:91:87:3d:f4:60:53:fc:9b:f0:
ca:62:92:cb:2f:ab:03:38:7e:74:50:7a:ec:d2:7b:6f:2d:9c:
51:ea:f3:f2:42:36:aa:0d:d6:80:7f:cf:69:6e:e6:0c:5f:61:
b6:e8:8a:2d:ea:62:1b:65:d9:a6:1f:32:95:bb:7c:c2:0b:ba:
25:c5:3c:0c:dd:a4:b6:27:c4:e6:aa:30:a5:84:01:d8:2b:ae:
bc:80:e1:b1:e5:de:c3:8c:50:00:b8:50:c2:cd:93:6d:1f:2d:
c2:a8:3b:b0:ab:aa:8e:a2:8d:7f:f4:de:61:36:17:fc:32:d8:
de:c7:b6:f1:7e:f1:2b:df:ac:b5:d1:0d:10:f0:dd:1e:fe:5f:
8f:08:29:a9:9f:6a:2b:6f:bb:db:7e:db:fc:14:e9:b8:cb:b5:
38:a3:a2:fd:66:be:f7:3b:21:df:99:62:65:f4:f0:90:c7:f2:
ef:3e:e0:9a:ed:26:96:f8:7f:17:8a:a1:b8:8f:02:bc:ba:71:
43:07:44:7f:ef:17:f8:d0:f8:c3:95:48:a9:0b:07:2d:29:6c:
73:00:89:ce:d7:43:b4:de:be:68:42:5b:95:eb:60:a4:d2:26:
31:61:1e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:08 2024 by rpki-client on console-fra.rpki-client.org