Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/tG1hV9mngN9Z-lyQGH4dq8i9jIA.roa
File: tG1hV9mngN9Z-lyQGH4dq8i9jIA.roa (raw, json)
Hash identifier: 8QoCeqsIeuS5IBCrqo2iWyzziaFjpF+/E8tCZiJzKgE=
Subject key identifier: B4:6D:61:57:D9:A7:80:DF:59:FA:5C:90:18:7E:1D:AB:C8:BD:8C:80
Certificate issuer: /CN=37af48131ecd9dca3def2b2de788f15060627755
Certificate serial: 01832199135754B62B7EC52C7AD9A49A233A
Authority key identifier: 37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/tG1hV9mngN9Z-lyQGH4dq8i9jIA.roa
Signing time: Fri 09 Sep 2022 09:33:43 +0000
ROA not before: Fri 09 Sep 2022 09:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 109.255.128.0/17 maxlen: 17
188.141.0.0/17 maxlen: 17
188.141.0.0/18 maxlen: 18
185.54.226.0/23 maxlen: 23
185.54.224.0/22 maxlen: 22
185.54.224.0/23 maxlen: 23
79.97.0.0/17 maxlen: 17
79.97.0.0/16 maxlen: 16
188.141.64.0/18 maxlen: 18
79.97.128.0/17 maxlen: 17
37.228.224.0/19 maxlen: 19
89.101.0.0/16 maxlen: 16
46.255.152.0/21 maxlen: 21
46.255.152.0/22 maxlen: 22
46.255.156.0/22 maxlen: 22
37.228.192.0/19 maxlen: 19
37.228.192.0/18 maxlen: 18
46.7.0.0/17 maxlen: 17
46.7.0.0/16 maxlen: 16
176.61.0.0/17 maxlen: 17
176.61.0.0/18 maxlen: 18
176.61.64.0/18 maxlen: 18
89.100.0.0/16 maxlen: 16
5.179.48.0/20 maxlen: 20
109.255.0.0/17 maxlen: 17
89.100.0.0/15 maxlen: 15
109.255.0.0/16 maxlen: 16
5.179.64.0/21 maxlen: 21
5.179.64.0/22 maxlen: 22
5.179.68.0/22 maxlen: 22
46.7.128.0/17 maxlen: 17
78.24.16.0/21 maxlen: 21
78.24.16.0/22 maxlen: 22
78.24.20.0/22 maxlen: 22
5.179.32.0/20 maxlen: 20
5.179.32.0/19 maxlen: 19
2a02:8080::/30 maxlen: 30
2a02:8080::/29 maxlen: 29
2a02:8084::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:99:13:57:54:b6:2b:7e:c5:2c:7a:d9:a4:9a:23:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37af48131ecd9dca3def2b2de788f15060627755
Validity
Not Before: Sep 9 09:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b46d6157d9a780df59fa5c90187e1dabc8bd8c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f9:09:a1:ec:3f:84:60:d0:ff:64:82:c0:58:
6e:a4:41:3e:32:ee:4f:61:0e:99:67:a3:05:49:83:
28:b2:0d:5a:a2:a9:22:e1:e1:1a:5c:f9:f2:36:ad:
b0:ba:50:9d:9b:c1:2d:14:c0:5d:97:08:64:a2:87:
7f:46:74:ed:a1:a8:99:2d:e0:f8:0a:9c:f4:ef:5f:
fb:0a:af:16:6b:b5:55:06:36:f1:a2:cb:7e:9e:85:
2e:74:df:a6:51:f4:8c:b7:27:bf:65:10:d9:73:01:
60:92:ff:af:46:d8:6c:a4:33:bd:49:c9:40:53:7d:
41:72:1b:cc:01:c4:77:57:81:c1:69:35:7c:56:b7:
73:51:21:21:76:7b:1b:59:48:2a:08:e2:35:55:76:
f7:aa:86:3f:63:bb:27:5c:47:f1:43:e3:32:c9:1b:
74:ea:c3:cd:de:50:da:6b:37:2d:a4:04:4d:ae:f0:
62:d3:dc:c2:c1:31:8d:4d:da:c8:31:2d:7b:92:96:
44:6e:5b:de:75:f9:30:f8:ae:0f:27:97:a9:5c:13:
35:e3:0c:91:4e:f1:d0:38:f9:b4:05:86:1c:57:c8:
12:f6:b3:60:0c:c2:df:f3:9d:3d:dd:c4:c0:b0:19:
88:01:81:22:a6:53:c9:6c:9c:0c:cf:72:d0:cd:ab:
bc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6D:61:57:D9:A7:80:DF:59:FA:5C:90:18:7E:1D:AB:C8:BD:8C:80
X509v3 Authority Key Identifier:
keyid:37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/tG1hV9mngN9Z-lyQGH4dq8i9jIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.179.32.0-5.179.71.255
37.228.192.0/18
46.7.0.0/16
46.255.152.0/21
78.24.16.0/21
79.97.0.0/16
89.100.0.0/15
109.255.0.0/16
176.61.0.0/17
185.54.224.0/22
188.141.0.0/17
IPv6:
2a02:8080::/29
Signature Algorithm: sha256WithRSAEncryption
19:65:29:33:78:ee:94:f8:2e:f0:f5:4f:8c:cb:ec:90:2e:69:
2e:b7:3e:1b:04:e1:ce:7c:5b:cc:ea:f2:06:50:cc:c0:b2:a8:
1a:af:e4:97:90:ae:57:32:5b:ac:da:06:c7:14:f2:8c:67:15:
79:9e:3c:bc:79:e2:5f:3a:08:a3:fb:e0:c7:28:41:9c:c2:cc:
d9:57:62:2c:0b:09:12:9e:d7:1b:09:ce:a7:c9:82:d6:22:50:
4a:cc:07:2a:5a:95:7b:14:49:6a:d1:4d:f3:48:4d:8b:f9:9d:
a3:fe:a3:a6:09:8c:3c:f2:41:66:4d:55:87:48:ad:9a:cb:f0:
7a:39:e1:10:66:23:85:92:cd:42:74:de:d1:e5:71:16:6c:65:
5c:b1:82:9e:d8:5b:df:f0:d2:34:6d:a2:0b:1b:8a:4e:93:98:
77:10:02:8e:65:eb:77:cd:2d:76:83:f5:59:5e:32:52:c5:b6:
7a:a8:cb:34:89:ce:73:c8:b3:ca:7f:a3:48:20:18:d3:4e:f9:
21:5e:76:3d:1f:6e:9a:c9:c2:7f:f5:f2:33:67:5b:54:ae:a1:
31:ae:1a:49:b9:9a:1f:d0:3b:7f:78:0a:5b:7f:8f:28:9a:20:
b7:a4:53:a9:10:35:53:1a:46:24:cd:69:71:92:82:39:7a:39:
b5:f2:78:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:00 2024 by rpki-client on console-fra.rpki-client.org