Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/R_3ry2lEkvGt1Tymj7CafpF3PVQ.roa
File: R_3ry2lEkvGt1Tymj7CafpF3PVQ.roa (raw, json)
Hash identifier: D7769Eju41F/7oPwoKJ9WC5HaMaHRVfs/gmxpdV2NUw=
Subject key identifier: 47:FD:EB:CB:69:44:92:F1:AD:D5:3C:A6:8F:B0:9A:7E:91:77:3D:54
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 071DE49E
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/R_3ry2lEkvGt1Tymj7CafpF3PVQ.roa
Signing time: Sat 01 Jan 2022 15:01:36 +0000
ROA not before: Sat 01 Jan 2022 15:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 185.219.208.0/22 maxlen: 22
78.31.64.0/21 maxlen: 21
93.186.192.0/20 maxlen: 20
83.136.80.0/21 maxlen: 21
46.20.32.0/20 maxlen: 20
85.114.128.0/19 maxlen: 19
5.104.104.0/21 maxlen: 21
85.14.192.0/18 maxlen: 18
62.141.32.0/20 maxlen: 20
37.157.248.0/21 maxlen: 21
46.228.192.0/20 maxlen: 20
194.107.129.0/24 maxlen: 24
81.30.144.0/20 maxlen: 20
80.82.208.0/20 maxlen: 20
91.212.159.0/24 maxlen: 24
91.212.153.0/24 maxlen: 24
146.0.32.0/20 maxlen: 20
89.163.128.0/17 maxlen: 17
91.194.84.0/24 maxlen: 24
213.202.192.0/18 maxlen: 18
5.199.128.0/20 maxlen: 20
185.15.244.0/22 maxlen: 22
217.79.176.0/20 maxlen: 20
193.111.198.0/23 maxlen: 23
2a01:480::/32 maxlen: 32
2001:4ba1::/32 maxlen: 32
2001:4ba0::/32 maxlen: 32
2001:4ba3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119399582 (0x71de49e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Jan 1 15:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47fdebcb694492f1add53ca68fb09a7e91773d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:eb:f5:09:98:f1:cb:da:5d:32:f6:26:13:75:
eb:ce:1c:e4:b2:8e:13:6a:67:47:5e:68:c7:72:a8:
e1:5b:ed:67:38:48:bd:52:ad:b9:b9:b2:79:82:64:
b3:75:ee:1d:fc:b8:54:e7:b4:ab:03:fc:bd:75:73:
bc:f3:20:6d:8e:33:ee:c4:8d:c7:37:1a:a8:d2:ac:
42:7c:c1:c3:bd:0f:70:97:de:79:7d:b4:86:80:7a:
15:46:40:fd:a3:d9:54:34:8e:02:4b:3a:a6:c9:33:
58:e0:ed:3c:67:be:18:26:8b:e4:52:ab:0f:c0:f8:
11:e9:a9:74:17:26:c9:81:bd:6b:2d:d2:7d:5e:fd:
0a:e9:8a:68:97:66:14:9e:4a:6a:aa:34:3e:55:be:
ec:56:ec:5d:0d:32:0c:72:39:f2:27:80:96:de:e5:
a2:0a:02:d2:6e:f5:e0:aa:87:66:81:22:66:4b:d3:
9d:cb:ab:76:74:ab:93:2f:84:32:fb:e6:f6:66:3b:
e8:80:88:4e:22:17:09:ce:7e:a4:1f:7d:86:be:53:
d0:13:05:90:0b:0d:fc:c8:99:89:b5:00:54:42:91:
f4:67:90:77:e6:fd:d8:6f:08:bf:65:b7:85:2d:08:
59:1e:e3:0e:1c:a4:da:a1:0a:ff:cd:27:bf:10:ee:
4c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FD:EB:CB:69:44:92:F1:AD:D5:3C:A6:8F:B0:9A:7E:91:77:3D:54
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/R_3ry2lEkvGt1Tymj7CafpF3PVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.104.0/21
5.199.128.0/20
37.157.248.0/21
46.20.32.0/20
46.228.192.0/20
62.141.32.0/20
78.31.64.0/21
80.82.208.0/20
81.30.144.0/20
83.136.80.0/21
85.14.192.0/18
85.114.128.0/19
89.163.128.0/17
91.194.84.0/24
91.212.153.0/24
91.212.159.0/24
93.186.192.0/20
146.0.32.0/20
185.15.244.0/22
185.219.208.0/22
193.111.198.0/23
194.107.129.0/24
213.202.192.0/18
217.79.176.0/20
IPv6:
2001:4ba0::/31
2001:4ba3::/32
2a01:480::/32
Signature Algorithm: sha256WithRSAEncryption
bb:19:d3:58:9c:0f:22:f2:41:b4:07:ff:86:1f:ad:e0:dc:43:
f2:1f:60:40:b9:06:7a:a2:70:3b:ef:95:4f:e5:aa:d9:8d:e2:
e4:6d:0b:9c:60:34:fd:70:99:d3:f2:45:b2:5c:5a:83:11:34:
da:d3:2e:51:ca:60:9a:ae:74:65:22:cb:28:c9:53:dd:d1:cf:
4c:3a:ca:3f:e8:b5:c5:66:6e:6a:9f:c3:9a:5d:3e:9b:d0:54:
0f:05:97:0e:45:1e:f1:7f:0a:59:24:50:49:17:54:2b:46:f9:
5e:0d:48:24:f0:d9:9d:68:f3:6f:86:bf:ff:e1:a4:c0:df:05:
a6:64:20:28:e0:10:7a:7b:f7:8e:aa:f2:2f:33:28:8b:39:a7:
56:75:fc:6e:b8:bc:39:85:3b:60:55:58:26:0f:13:51:d6:0e:
13:f1:6b:64:41:d1:a6:77:42:b4:35:b8:be:61:67:56:2b:97:
48:22:9b:f6:b4:8d:74:70:38:a9:7a:ab:90:09:4f:0f:7a:eb:
ce:7b:93:6f:b8:46:6d:fa:43:5b:9c:b0:92:f0:3f:e3:9a:e0:
54:4a:7d:51:26:a6:d5:c7:89:57:1d:23:be:38:af:5c:7f:8a:
c5:74:cf:76:03:fe:78:63:2b:2b:ac:84:e8:ed:f7:e6:de:68:
51:4e:36:8e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:21 2024 by rpki-client on console-ams.rpki-client.org