Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/qVVmCpPiqlD8IM0Lwj11-INyMOU.roa
File: qVVmCpPiqlD8IM0Lwj11-INyMOU.roa (raw, json)
Hash identifier: Gk74Qg5P/X6DdXlHf/g2G6BuKp2NjtCEIN1XsUm5U90=
Subject key identifier: A9:55:66:0A:93:E2:AA:50:FC:20:CD:0B:C2:3D:75:F8:83:72:30:E5
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 368CDF49
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/qVVmCpPiqlD8IM0Lwj11-INyMOU.roa
Signing time: Sat 01 Jan 2022 01:01:03 +0000
ROA not before: Sat 01 Jan 2022 01:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 80.231.202.0/24 maxlen: 24
5.23.0.0/19 maxlen: 19
80.231.216.0/24 maxlen: 24
80.231.235.0/24 maxlen: 24
195.219.204.0/24 maxlen: 24
80.231.176.0/21 maxlen: 21
195.219.232.0/24 maxlen: 24
195.219.235.0/24 maxlen: 24
195.219.238.0/24 maxlen: 24
195.219.240.0/24 maxlen: 24
195.219.246.0/24 maxlen: 24
80.231.187.0/24 maxlen: 24
195.219.248.0/21 maxlen: 21
195.219.253.0/24 maxlen: 24
80.231.0.0/16 maxlen: 16
80.231.8.0/21 maxlen: 21
80.231.11.0/24 maxlen: 24
80.231.22.0/24 maxlen: 24
195.219.0.0/16 maxlen: 16
195.219.22.0/24 maxlen: 24
80.231.93.0/24 maxlen: 24
80.231.94.0/24 maxlen: 24
80.231.96.0/21 maxlen: 21
195.219.168.0/23 maxlen: 23
80.231.112.0/21 maxlen: 21
80.231.56.0/24 maxlen: 24
80.231.71.0/24 maxlen: 24
2a01:3e0::/32 maxlen: 32
2a01:3e0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915201865 (0x368cdf49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a955660a93e2aa50fc20cd0bc23d75f8837230e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2b:c1:e8:de:b2:11:8a:39:89:e2:63:c2:c8:
14:22:0f:8d:7f:a3:5e:5d:48:13:eb:1d:ce:1b:4b:
7f:69:a3:da:ab:51:d9:29:c9:5b:07:db:4d:85:e5:
3a:37:80:cd:1f:9e:b1:13:4e:8e:b7:bf:85:4c:99:
42:7c:f6:b8:62:e5:03:63:c7:ce:55:d1:e8:98:1d:
15:c7:35:88:1b:bc:a3:b4:9d:d4:d2:30:05:ab:0f:
cb:d2:2a:66:41:2f:c9:7d:48:fe:08:22:50:ed:29:
1d:20:52:ba:65:6e:45:b4:f8:9a:ab:56:41:17:00:
07:16:9f:43:32:5e:90:33:04:14:b5:73:74:7d:86:
11:14:3d:14:c8:61:a4:35:bd:18:45:ae:ca:a4:11:
ef:8e:dc:6c:f2:0e:f3:86:b0:95:cb:7d:25:0f:9a:
29:c8:52:09:ac:96:c5:fe:87:f5:f9:9e:9d:c8:62:
b4:e4:db:53:92:2a:e4:80:61:77:ad:ed:03:40:9b:
ff:66:ad:ec:f7:71:de:ba:5b:39:77:69:57:c5:89:
29:25:39:51:90:f7:54:f4:4e:63:73:8d:1d:93:02:
72:ed:d0:cd:31:b4:3d:0e:af:af:4a:df:4a:b6:24:
9d:94:21:32:8b:b6:8d:1c:81:85:80:76:74:62:f6:
f5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:55:66:0A:93:E2:AA:50:FC:20:CD:0B:C2:3D:75:F8:83:72:30:E5
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/qVVmCpPiqlD8IM0Lwj11-INyMOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.0.0/19
80.231.0.0/16
195.219.0.0/16
IPv6:
2a01:3e0::/29
Signature Algorithm: sha256WithRSAEncryption
9c:77:18:75:3b:be:b7:eb:6e:c6:54:cb:01:d1:e5:7a:a6:82:
a1:33:f1:3e:b4:f7:23:b5:2c:b5:ce:26:95:c7:24:14:20:20:
79:f4:0b:ab:bb:0a:03:57:d5:25:b2:d5:44:c6:fa:16:ff:aa:
56:ec:d8:a6:14:4d:e9:56:3b:ae:3f:79:aa:41:25:34:ac:10:
41:08:76:55:3b:4e:37:9f:e1:0d:03:06:14:2d:82:ee:3c:ed:
b1:c2:93:8c:ec:c9:97:7d:7e:ff:69:f0:96:a8:07:2e:2d:8c:
39:3e:bf:30:d9:63:2f:99:16:a7:e5:6e:dd:ab:e0:ce:0b:4c:
1c:6b:91:b0:7b:17:6c:e7:94:92:58:aa:38:22:37:55:5a:5b:
b3:84:a3:b1:b5:3e:f9:45:6b:33:0f:19:6b:5f:39:04:2b:36:
f8:36:09:57:05:9c:2f:cf:e0:da:3b:26:20:d0:51:23:e1:8e:
96:35:68:c6:4a:13:4e:1c:fc:f0:ce:98:6c:91:74:73:c7:0e:
9b:d1:c2:30:ef:3a:c3:2f:81:83:4b:fe:2e:5c:d4:a2:c2:ff:
0b:44:f7:71:91:61:5e:be:61:fd:26:9e:42:65:b3:b6:36:d6:
40:8c:05:59:11:98:4d:f9:2d:30:02:d6:02:23:05:ff:5e:7d:
4c:5c:91:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:30 2024 by rpki-client on console-fra.rpki-client.org