Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/4SymZo976Uo8jNjTpzP6neQ2wCc.roa
File: 4SymZo976Uo8jNjTpzP6neQ2wCc.roa (raw, json)
Hash identifier: BdtbLznAi+nPBXXyrJgIpPJtSkD6Tkqnp7dYNY+krUI=
Subject key identifier: E1:2C:A6:66:8F:7B:E9:4A:3C:8C:D8:D3:A7:33:FA:9D:E4:36:C0:27
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1B8E339D
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/4SymZo976Uo8jNjTpzP6neQ2wCc.roa
Signing time: Mon 04 Apr 2022 09:17:42 +0000
ROA not before: Mon 04 Apr 2022 09:17:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 46.31.78.0/24 maxlen: 24
46.31.77.0/24 maxlen: 24
46.31.76.0/24 maxlen: 24
185.73.203.0/24 maxlen: 24
185.73.201.0/24 maxlen: 24
185.73.200.0/24 maxlen: 24
185.73.202.0/24 maxlen: 32
185.17.112.0/24 maxlen: 24
185.17.113.0/24 maxlen: 32
185.17.115.0/24 maxlen: 24
185.17.114.0/24 maxlen: 24
2a05:4640::/29 maxlen: 48
2a04:7c0:1::/48 maxlen: 48
2a04:7c0::/29 maxlen: 48
2a04:7c0::/33 maxlen: 48
2a04:7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 462304157 (0x1b8e339d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Apr 4 09:17:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e12ca6668f7be94a3c8cd8d3a733fa9de436c027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fd:d4:7c:c4:15:93:54:da:d2:5d:e6:bc:5e:
57:c5:18:9b:54:cd:9d:bd:9c:41:87:b3:de:5d:0c:
83:6f:fc:ef:c8:de:88:c5:63:a8:81:54:6c:48:97:
a6:b1:2b:8e:5b:07:69:f3:16:23:e9:21:a4:e4:c2:
a8:be:02:99:f6:91:fd:22:63:aa:4d:41:95:85:cd:
7e:ca:55:32:dc:0e:72:b4:cd:69:38:4c:5b:68:6f:
02:5b:98:61:29:59:0f:b0:0c:65:12:2a:b1:2d:c6:
36:be:43:81:ea:80:2d:4c:c5:a0:a1:ba:87:a3:5c:
df:96:16:8e:8d:92:b1:01:a3:fe:5e:b8:33:a3:76:
ac:89:f2:41:8b:6c:0d:6b:42:54:1e:7d:be:55:01:
bf:b1:ff:f1:9c:33:f6:53:91:73:d6:6e:91:74:f3:
8b:56:39:bb:36:1c:2b:f4:e5:23:aa:fa:f2:0b:2d:
fd:08:82:bb:70:21:45:41:9f:34:e6:14:ac:cb:36:
a1:9b:45:1d:af:28:05:7c:34:79:e1:f6:67:dc:ab:
68:60:90:2d:17:ea:df:ba:52:05:22:ce:35:d1:61:
5b:18:bf:85:ad:33:50:d6:1c:12:8f:1e:0d:3b:a6:
7d:ad:28:82:f0:63:9e:75:c2:a9:98:05:d3:0e:fc:
7a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2C:A6:66:8F:7B:E9:4A:3C:8C:D8:D3:A7:33:FA:9D:E4:36:C0:27
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/4SymZo976Uo8jNjTpzP6neQ2wCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.76.0-46.31.78.255
185.17.112.0/22
185.73.200.0/22
IPv6:
2a04:7c0::/29
2a05:4640::/29
Signature Algorithm: sha256WithRSAEncryption
3c:27:0a:dc:51:d3:5b:00:e0:ca:e9:d4:cc:73:04:5a:ef:ec:
b0:0e:a6:18:f3:b9:45:f7:86:42:26:b9:5d:89:c4:b0:9f:cb:
c9:a7:8c:60:ee:87:0a:b9:4b:81:c4:97:f5:02:ed:6a:37:7c:
23:04:8f:ad:87:44:8d:d1:da:00:80:e4:16:f1:cb:01:73:74:
88:37:4d:2d:ce:3a:31:af:8c:31:a0:7f:a5:b4:e3:78:75:b2:
34:03:f3:82:8d:04:48:70:01:f9:f3:f5:b2:96:69:d4:f2:f8:
51:87:96:f6:7b:56:b1:67:02:bf:95:e7:23:51:2e:85:9e:18:
45:c2:86:e6:eb:5d:3e:4e:ff:e4:e0:e7:e9:88:e7:df:20:f1:
59:d8:ba:cc:27:39:d2:31:e8:5a:c3:fd:de:65:d5:14:7f:a4:
26:7b:4b:51:38:0c:c6:1b:1f:67:44:f0:28:c2:39:93:77:1e:
db:b8:d9:7e:d3:93:a8:20:fc:2c:30:f1:73:63:d5:d3:76:a9:
00:3e:42:f6:d9:55:4a:2b:c1:e0:d2:cb:2f:ed:dc:c5:15:3f:
37:52:01:a4:fc:9c:30:95:34:53:cd:28:e4:1e:c2:0c:4b:40:
87:42:d6:11:1d:db:8e:e0:f3:74:e6:d8:2d:5e:df:ab:cf:83:
a6:3e:86:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org