Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/H3HMhGovBwvW-KW6x2tlauktiTU.roa
File: H3HMhGovBwvW-KW6x2tlauktiTU.roa (raw, json)
Hash identifier: EQMzH+rYphI3IWAhdi9ga2WZ7xbfImffM18O6S99UiE=
Subject key identifier: 1F:71:CC:84:6A:2F:07:0B:D6:F8:A5:BA:C7:6B:65:6A:E9:2D:89:35
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 37DAC2EF
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/H3HMhGovBwvW-KW6x2tlauktiTU.roa
Signing time: Fri 27 May 2022 23:29:13 +0000
ROA not before: Fri 27 May 2022 23:29:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 80.231.202.0/24 maxlen: 24
5.23.0.0/19 maxlen: 19
80.231.216.0/24 maxlen: 24
80.231.235.0/24 maxlen: 24
195.219.204.0/24 maxlen: 24
80.231.176.0/21 maxlen: 21
195.219.232.0/24 maxlen: 24
195.219.235.0/24 maxlen: 24
195.219.238.0/24 maxlen: 24
195.219.240.0/24 maxlen: 24
195.219.246.0/24 maxlen: 24
80.231.187.0/24 maxlen: 24
195.219.248.0/21 maxlen: 21
195.219.253.0/24 maxlen: 24
195.219.40.0/24 maxlen: 24
80.231.0.0/16 maxlen: 16
80.231.8.0/21 maxlen: 21
80.231.11.0/24 maxlen: 24
80.231.22.0/24 maxlen: 24
195.219.0.0/16 maxlen: 16
195.219.22.0/24 maxlen: 24
80.231.93.0/24 maxlen: 24
80.231.94.0/24 maxlen: 24
80.231.96.0/21 maxlen: 21
195.219.168.0/23 maxlen: 23
80.231.112.0/21 maxlen: 21
80.231.56.0/24 maxlen: 24
80.231.71.0/24 maxlen: 24
2a01:3e0::/32 maxlen: 32
2a01:3e0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937083631 (0x37dac2ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: May 27 23:29:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f71cc846a2f070bd6f8a5bac76b656ae92d8935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d8:d4:94:50:4d:9c:63:af:92:17:31:ff:05:
f7:c1:5a:97:f6:bd:7e:14:5d:fa:f0:60:7b:24:9c:
24:52:ca:cb:8e:e4:f5:1b:09:ef:46:df:ea:46:cd:
8a:cd:a6:6c:ce:17:69:f4:da:27:0e:bd:2c:c8:7c:
45:b9:fc:ed:b7:e5:16:ef:a9:05:42:32:68:27:19:
74:cb:83:f7:f8:7e:07:12:9a:c3:7f:28:04:af:94:
c2:75:6c:cb:ef:31:fb:d1:2d:56:25:8d:cc:bb:6a:
84:84:e3:8c:e2:d4:05:fa:c8:f2:d8:f6:84:82:af:
2a:ee:0b:8c:e2:6d:8e:3a:17:2b:23:3f:32:33:d5:
f8:69:23:78:87:51:71:f3:dc:ae:c0:13:25:43:d4:
23:e6:6a:36:39:3e:71:76:5a:09:00:e4:4d:ef:b2:
04:f7:78:e9:9b:fd:37:56:da:65:7d:07:c9:e6:66:
da:94:94:63:69:2d:98:1a:53:f0:ed:b6:26:ad:6b:
0b:6f:5e:b8:ac:81:1c:ad:b8:ce:81:f3:c9:07:5f:
9d:9d:4b:9e:a6:01:e4:68:b0:8f:63:c1:de:a2:96:
ec:d9:da:b5:1e:94:3b:c2:b2:8b:d4:d4:ca:82:37:
e5:5f:61:3a:83:bb:b6:cd:fb:47:62:4c:c4:b6:b7:
c1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:71:CC:84:6A:2F:07:0B:D6:F8:A5:BA:C7:6B:65:6A:E9:2D:89:35
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/H3HMhGovBwvW-KW6x2tlauktiTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.0.0/19
80.231.0.0/16
195.219.0.0/16
IPv6:
2a01:3e0::/29
Signature Algorithm: sha256WithRSAEncryption
db:13:a2:f0:1f:8f:53:bb:e0:b1:49:b5:aa:5b:c8:cc:c3:54:
6b:51:dd:72:83:41:c7:d2:9f:db:65:e7:e1:74:40:96:33:f7:
07:90:46:38:c2:4c:ff:70:e2:9b:94:47:df:94:ee:65:08:90:
c9:b8:8f:9f:cd:3d:d9:86:6e:14:5b:fd:e7:22:0e:69:59:e6:
ad:ce:0f:46:3b:d0:56:c3:59:c8:fd:a0:c7:62:9f:62:44:f9:
2f:1c:2f:e9:66:41:39:7f:b7:25:c5:0e:78:a2:f3:8b:12:a9:
c0:16:bb:60:8c:e4:94:fa:b5:fc:c9:dd:ff:95:8b:20:24:ad:
37:d6:7c:55:9e:39:e3:eb:3f:6b:6b:ac:d3:47:b4:78:05:2d:
39:31:ad:ba:c1:b2:ab:a5:c4:79:ba:67:3e:b5:e2:33:4b:a4:
e2:46:4c:39:42:d3:33:d5:40:f7:0c:da:00:44:2c:51:6a:94:
3f:56:ed:88:bd:13:63:3f:d5:67:e3:09:42:cc:20:ee:37:4a:
6d:f6:21:91:a6:ff:99:10:e0:e8:8f:30:72:ff:22:78:e5:69:
5c:c4:13:75:ca:d2:f1:40:d9:9d:07:e2:d8:02:2f:e2:88:af:
0d:8d:2b:bd:36:4f:96:e3:e5:62:07:04:c8:16:4a:c6:2f:d9:
cc:b0:4e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org