Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/pR106ut6evFA0QMyn_EifzgAK6M.roa
File: pR106ut6evFA0QMyn_EifzgAK6M.roa (raw, json)
Hash identifier: vjBCozg0AptDxjXs9hSs5FJg5cGXr/DOkRfLrX4IXio=
Subject key identifier: A5:1D:74:EA:EB:7A:7A:F1:40:D1:03:32:9F:F1:22:7F:38:00:2B:A3
Certificate issuer: /CN=37af48131ecd9dca3def2b2de788f15060627755
Certificate serial: 3370CA00
Authority key identifier: 37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/pR106ut6evFA0QMyn_EifzgAK6M.roa
Signing time: Sat 01 Jan 2022 06:02:02 +0000
ROA not before: Sat 01 Jan 2022 06:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 109.255.128.0/17 maxlen: 17
188.141.0.0/17 maxlen: 17
188.141.0.0/18 maxlen: 18
79.97.0.0/17 maxlen: 17
79.97.0.0/16 maxlen: 16
188.141.64.0/18 maxlen: 18
79.97.128.0/17 maxlen: 17
37.228.224.0/19 maxlen: 19
89.101.0.0/16 maxlen: 16
37.228.192.0/19 maxlen: 19
37.228.192.0/18 maxlen: 18
46.7.0.0/17 maxlen: 17
46.7.0.0/16 maxlen: 16
176.61.0.0/17 maxlen: 17
176.61.0.0/18 maxlen: 18
176.61.64.0/18 maxlen: 18
89.100.0.0/16 maxlen: 16
5.179.48.0/20 maxlen: 20
109.255.0.0/17 maxlen: 17
89.100.0.0/15 maxlen: 15
109.255.0.0/16 maxlen: 16
5.179.64.0/21 maxlen: 21
5.179.64.0/22 maxlen: 22
5.179.68.0/22 maxlen: 22
46.7.128.0/17 maxlen: 17
5.179.32.0/20 maxlen: 20
5.179.32.0/19 maxlen: 19
2a02:8080::/30 maxlen: 30
2a02:8080::/29 maxlen: 29
2a02:8084::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 863029760 (0x3370ca00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37af48131ecd9dca3def2b2de788f15060627755
Validity
Not Before: Jan 1 06:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a51d74eaeb7a7af140d103329ff1227f38002ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d0:5c:5e:89:d5:eb:a3:d7:04:c8:b6:75:b6:
35:64:75:1f:6b:34:9b:24:37:c9:19:fb:e5:44:17:
2d:f3:5c:9c:e1:47:58:d1:01:90:a6:df:e4:a0:bc:
ae:01:3b:6a:2e:c4:a2:f1:cf:cf:0c:57:7b:27:49:
2c:bc:50:9f:d9:ea:61:5c:64:19:a7:8c:02:d0:75:
70:e4:c2:7c:c9:0d:0e:0e:cc:bb:d3:6b:f1:93:d5:
56:37:03:8d:a7:94:bc:b5:8d:01:e7:d8:d9:d9:67:
58:f0:e1:77:a0:71:d5:23:23:ca:21:45:33:aa:98:
14:14:82:01:78:50:03:3b:15:bb:aa:19:2c:9e:bb:
72:aa:03:f3:52:8a:50:d5:9a:ab:bd:bd:40:bd:23:
c1:2a:e7:60:d3:5b:18:5c:fb:40:63:d2:af:38:f2:
da:5e:01:3d:3d:8c:84:01:d1:97:22:8b:04:d8:76:
26:42:fb:47:c9:c9:fb:74:41:3f:5c:0d:91:d8:3e:
fa:c6:3a:8c:90:41:d0:95:71:8f:ba:3f:79:89:d6:
9a:92:79:7a:50:59:4b:e2:ee:cd:3d:42:18:90:d8:
9d:be:d8:6d:d2:be:e4:98:34:e6:5d:be:99:cc:af:
70:d9:9e:2a:12:d8:72:28:0a:91:1a:6f:7d:aa:18:
82:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1D:74:EA:EB:7A:7A:F1:40:D1:03:32:9F:F1:22:7F:38:00:2B:A3
X509v3 Authority Key Identifier:
keyid:37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/pR106ut6evFA0QMyn_EifzgAK6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.179.32.0-5.179.71.255
37.228.192.0/18
46.7.0.0/16
79.97.0.0/16
89.100.0.0/15
109.255.0.0/16
176.61.0.0/17
188.141.0.0/17
IPv6:
2a02:8080::/29
Signature Algorithm: sha256WithRSAEncryption
53:3d:74:e3:5a:33:1e:67:1f:10:12:d4:d6:c7:02:e0:9c:a8:
21:3d:05:be:1d:f3:52:3f:58:00:c7:a1:0a:93:c2:45:19:a8:
67:b4:3d:91:43:be:d1:f0:1d:94:58:fc:58:fc:c5:6e:94:a7:
5f:3d:04:96:df:ec:fc:bc:64:30:7c:64:d2:b5:f2:4b:9b:c8:
ef:cd:5c:df:82:ff:65:07:55:46:17:0b:12:63:55:b2:c8:6a:
d1:59:e2:d3:10:56:fa:73:fb:a9:19:02:e7:8b:83:46:2e:c9:
ec:a6:23:5a:b3:db:06:06:32:ae:5a:9a:01:39:21:fd:db:9e:
45:46:4a:7f:d7:41:b3:e5:a0:31:45:90:58:5d:0d:c8:cc:d1:
24:3f:95:d5:c8:59:51:71:63:2b:bf:43:10:5b:57:f7:47:21:
da:17:7a:95:3c:3b:90:b8:b9:1e:e3:59:8d:0b:9f:46:94:bc:
9f:67:43:b6:01:1d:57:25:99:9a:d1:6d:72:3c:dd:df:23:4b:
aa:df:9d:37:9d:62:ca:0a:44:1b:63:1d:99:bb:63:0c:74:a3:
2f:46:08:b7:c0:f1:4f:c6:9e:8f:06:f2:ab:d6:fa:e7:79:7e:
fa:b0:1c:07:ad:af:92:34:f1:85:6c:c9:f9:dd:4a:6d:45:c0:
01:3f:c9:73
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIEM3DKADANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
N2FmNDgxMzFlY2Q5ZGNhM2RlZjJiMmRlNzg4ZjE1MDYwNjI3NzU1MB4XDTIyMDEw
MTA2MDIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTUxZDc0ZWFlYjdh
N2FmMTQwZDEwMzMyOWZmMTIyN2YzODAwMmJhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANPQXF6J1euj1wTItnW2NWR1H2s0myQ3yRn75UQXLfNcnOFH
WNEBkKbf5KC8rgE7ai7EovHPzwxXeydJLLxQn9nqYVxkGaeMAtB1cOTCfMkNDg7M
u9Nr8ZPVVjcDjaeUvLWNAefY2dlnWPDhd6Bx1SMjyiFFM6qYFBSCAXhQAzsVu6oZ
LJ67cqoD81KKUNWaq729QL0jwSrnYNNbGFz7QGPSrzjy2l4BPT2MhAHRlyKLBNh2
JkL7R8nJ+3RBP1wNkdg++sY6jJBB0JVxj7o/eYnWmpJ5elBZS+LuzT1CGJDYnb7Y
bdK+5Jg05l2+mcyvcNmeKhLYcigKkRpvfaoYgq8CAwEAAaOCAkYwggJCMB0GA1Ud
DgQWBBSlHXTq63p68UDRAzKf8SJ/OAArozAfBgNVHSMEGDAWgBQ3r0gTHs2dyj3v
Ky3niPFQYGJ3VTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L042OUlFeDdObmNvOTd5c3Q1NGp4VUdCaWQxVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGYvMzVmYWVkLWMyZDctNGNiOS05N2Y1LWRmNmYyMGRjYjk0Yi8x
L3BSMTA2dXQ2ZXZGQTBRTXluX0VpZnpnQUs2TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYv
MzVmYWVkLWMyZDctNGNiOS05N2Y1LWRmNmYyMGRjYjk0Yi8xL042OUlFeDdObmNv
OTd5c3Q1NGp4VUdCaWQxVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBc
BggrBgEFBQcBBwEB/wRNMEswOgQCAAEwNDAMAwQFBbMgAwQDBbNAAwQGJeTAAwMA
LgcDAwBPYQMDAVlkAwMAbf8DBAewPQADBAe8jQAwDQQCAAIwBwMFAyoCgIAwDQYJ
KoZIhvcNAQELBQADggEBAFM9dONaMx5nHxAS1NbHAuCcqCE9Bb4d81I/WADHoQqT
wkUZqGe0PZFDvtHwHZRY/Fj8xW6Up189BJbf7Py8ZDB8ZNK18kubyO/NXN+C/2UH
VUYXCxJjVbLIatFZ4tMQVvpz+6kZAueLg0YuyeymI1qz2wYGMq5amgE5If3bnkVG
Sn/XQbPloDFFkFhdDcjM0SQ/ldXIWVFxYyu/QxBbV/dHIdoXepU8O5C4uR7jWY0L
n0aUvJ9nQ7YBHVclmZrRbXI83d8jS6rfnTedYsoKRBtjHZm7Ywx0oy9GCLfA8U/G
no8G8qvW+ud5fvqwHAetr5I08YVsyfndSm1FwAE/yXM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:23 2024 by rpki-client on console-ams.rpki-client.org