Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/PH4kod8RbyU5UhuYYIS6qXKIs_4.roa
File: PH4kod8RbyU5UhuYYIS6qXKIs_4.roa (raw, json)
Hash identifier: u1zfsfWQ3eoBvL3kVWOGUl/y0GTL4XntdKs0UCFJSrU=
Subject key identifier: 3C:7E:24:A1:DF:11:6F:25:39:52:1B:98:60:84:BA:A9:72:88:B3:FE
Certificate issuer: /CN=37af48131ecd9dca3def2b2de788f15060627755
Certificate serial: 343CC613
Authority key identifier: 37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/PH4kod8RbyU5UhuYYIS6qXKIs_4.roa
Signing time: Tue 05 Apr 2022 13:17:45 +0000
ROA not before: Tue 05 Apr 2022 13:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 109.255.128.0/17 maxlen: 17
188.141.0.0/17 maxlen: 17
188.141.0.0/18 maxlen: 18
185.54.226.0/23 maxlen: 23
185.54.224.0/22 maxlen: 22
185.54.224.0/23 maxlen: 23
79.97.0.0/17 maxlen: 17
79.97.0.0/16 maxlen: 16
188.141.64.0/18 maxlen: 18
79.97.128.0/17 maxlen: 17
37.228.224.0/19 maxlen: 19
89.101.0.0/16 maxlen: 16
37.228.192.0/19 maxlen: 19
37.228.192.0/18 maxlen: 18
46.7.0.0/17 maxlen: 17
46.7.0.0/16 maxlen: 16
176.61.0.0/17 maxlen: 17
176.61.0.0/18 maxlen: 18
176.61.64.0/18 maxlen: 18
89.100.0.0/16 maxlen: 16
5.179.48.0/20 maxlen: 20
109.255.0.0/17 maxlen: 17
89.100.0.0/15 maxlen: 15
109.255.0.0/16 maxlen: 16
5.179.64.0/22 maxlen: 22
5.179.64.0/21 maxlen: 21
5.179.68.0/22 maxlen: 22
46.7.128.0/17 maxlen: 17
5.179.32.0/20 maxlen: 20
5.179.32.0/19 maxlen: 19
2a02:8080::/30 maxlen: 30
2a02:8080::/29 maxlen: 29
2a02:8084::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 876398099 (0x343cc613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37af48131ecd9dca3def2b2de788f15060627755
Validity
Not Before: Apr 5 13:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c7e24a1df116f2539521b986084baa97288b3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:22:dc:fd:a4:f8:2b:33:df:14:61:64:25:ee:
62:89:01:63:22:6b:0b:48:71:f8:65:3a:b7:25:92:
22:6d:1c:bf:8d:13:a8:3e:93:76:ea:91:20:b2:1a:
b6:70:84:0f:1a:cb:d0:08:5e:30:92:46:53:42:f0:
c2:44:31:e0:27:9c:92:dd:f0:ad:91:1d:4b:8b:44:
35:eb:36:b1:e9:36:8a:ba:94:73:14:c5:af:4f:9d:
56:66:8a:81:99:0a:a9:e1:cf:a8:39:dd:0c:40:4b:
71:32:97:80:45:5b:4a:4a:fa:b8:44:ce:bf:0e:24:
45:b2:a4:16:35:c1:f8:8c:f0:54:05:fe:f0:51:fa:
89:d4:59:c7:eb:3a:3a:ff:36:ab:3c:18:72:4c:1a:
f7:13:18:18:32:d7:7f:b0:36:d3:94:8f:1c:77:01:
16:c4:fd:99:11:f2:67:d7:13:5f:d9:05:26:09:11:
ba:29:4b:10:6d:b0:57:e6:16:d6:fb:81:bc:90:99:
91:e5:7a:ed:66:ad:a2:b2:15:54:d3:67:e3:82:04:
69:52:55:6a:4e:89:bf:38:50:ee:5c:1b:f9:be:0d:
e4:c4:c8:c5:44:b0:fd:73:47:b2:bd:c3:b4:74:d5:
c5:68:40:fd:11:df:1f:2e:10:ce:51:7b:5a:37:e6:
b3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7E:24:A1:DF:11:6F:25:39:52:1B:98:60:84:BA:A9:72:88:B3:FE
X509v3 Authority Key Identifier:
keyid:37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/PH4kod8RbyU5UhuYYIS6qXKIs_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.179.32.0-5.179.71.255
37.228.192.0/18
46.7.0.0/16
79.97.0.0/16
89.100.0.0/15
109.255.0.0/16
176.61.0.0/17
185.54.224.0/22
188.141.0.0/17
IPv6:
2a02:8080::/29
Signature Algorithm: sha256WithRSAEncryption
0d:ed:21:47:96:b3:af:89:68:0d:d2:aa:51:a6:ae:a8:6a:5c:
b1:41:af:d4:51:85:6e:d6:f1:67:25:07:a8:74:bd:78:78:03:
15:fb:83:c8:c8:0a:db:db:6a:b6:33:38:58:67:11:29:5e:9b:
b3:1a:02:a6:b9:be:2c:ca:4d:1a:18:2b:12:c5:c6:3c:8c:2f:
df:0c:b6:8c:16:44:d4:f3:7f:e5:38:8e:ec:0e:da:d0:52:83:
b4:44:6e:1c:62:0d:b1:b2:32:f8:dc:81:f0:bf:4c:81:26:2d:
5a:b8:e8:d9:56:02:d9:e0:9f:d6:cf:8a:7f:c9:c1:08:00:51:
c5:cf:96:b9:5c:7e:fa:f3:65:39:10:76:f6:85:7a:ec:2c:d3:
fe:3c:1f:66:48:6d:65:e2:b0:1b:d0:17:c8:39:07:92:b1:81:
71:59:12:28:db:1f:ab:1b:3b:15:5d:5d:2f:6c:4d:4c:47:b8:
29:97:79:51:dd:36:e6:64:0e:6d:0a:62:64:9b:db:ff:66:6d:
2e:c8:e2:e0:fe:8a:d5:af:81:ec:b5:6e:0e:53:f0:61:c9:9b:
9b:72:04:08:9b:99:ab:ff:93:b4:fc:66:f5:b3:e1:2f:c8:b2:
6b:78:87:0b:f5:c7:4e:c6:55:f6:89:5e:58:de:0a:11:49:95:
22:84:d8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:23 2024 by rpki-client on console-ams.rpki-client.org