Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3a382a-3dda-4796-b320-3fdfb4140f24/1/4TfxYOuLCmuKiO10Nu0Lh-UU7DE.roa
File: 4TfxYOuLCmuKiO10Nu0Lh-UU7DE.roa (raw, json)
Hash identifier: j6Wop2EOVS1c7lwqOU+4jIf5vafy4LySY8RauKixshc=
Subject key identifier: E1:37:F1:60:EB:8B:0A:6B:8A:88:ED:74:36:ED:0B:87:E5:14:EC:31
Certificate issuer: /CN=bf809a7e6ca14d0a1a976673e0319e34e956ed3d
Certificate serial: 01828CFFFED992148869DCF2D6DD8E0ECBAB
Authority key identifier: BF:80:9A:7E:6C:A1:4D:0A:1A:97:66:73:E0:31:9E:34:E9:56:ED:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4CafmyhTQoal2Zz4DGeNOlW7T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3a382a-3dda-4796-b320-3fdfb4140f24/1/4TfxYOuLCmuKiO10Nu0Lh-UU7DE.roa
Signing time: Thu 11 Aug 2022 13:02:43 +0000
ROA not before: Thu 11 Aug 2022 13:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35332
IP address blocks: 87.236.0.0/21 maxlen: 24
77.242.112.0/20 maxlen: 24
188.92.56.0/21 maxlen: 24
37.235.112.0/21 maxlen: 24
208.88.128.0/22 maxlen: 24
185.113.212.0/22 maxlen: 24
139.28.200.0/22 maxlen: 24
2a00:a000::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:ff:fe:d9:92:14:88:69:dc:f2:d6:dd:8e:0e:cb:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf809a7e6ca14d0a1a976673e0319e34e956ed3d
Validity
Not Before: Aug 11 13:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e137f160eb8b0a6b8a88ed7436ed0b87e514ec31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9b:cd:7e:98:9d:58:70:3f:d5:07:85:53:7f:
4b:03:3b:52:9c:fd:76:f6:25:a9:aa:2c:58:d8:38:
4f:2a:06:21:92:a4:2c:f2:79:8a:45:ed:35:d1:c4:
03:9b:2a:cd:07:28:2b:6e:05:b8:a1:25:8d:ba:f0:
0f:04:18:5a:e9:7f:8b:3e:ae:a5:04:42:cc:97:01:
c0:ed:ea:d0:f1:6a:69:ff:fa:2e:5c:41:ff:60:f6:
fd:c3:22:d2:24:48:6c:68:49:cf:70:53:89:6f:d8:
86:6b:23:19:c1:89:0b:39:4b:20:01:33:de:7f:e9:
48:e4:be:4b:c2:19:d9:a5:72:63:6d:7e:34:83:4a:
52:10:e0:42:c6:43:2f:66:59:50:60:07:ed:6a:30:
20:ae:b6:ae:26:a9:20:11:d1:e0:19:29:1b:9d:25:
4d:15:13:01:08:89:45:08:77:ac:a8:37:5d:d6:64:
fe:34:ec:db:34:5c:32:4b:10:04:a2:68:ca:3c:e7:
45:14:11:8f:c0:c6:da:bc:b7:a3:4d:fe:67:6e:4a:
fd:3c:85:98:bf:37:42:08:82:bc:b0:a0:49:f7:3e:
36:0f:d3:90:86:de:cd:1d:60:fc:ff:31:4d:f3:7f:
59:d1:8f:3e:bf:b8:da:a8:a7:ce:8b:d5:6c:2b:2b:
64:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:37:F1:60:EB:8B:0A:6B:8A:88:ED:74:36:ED:0B:87:E5:14:EC:31
X509v3 Authority Key Identifier:
keyid:BF:80:9A:7E:6C:A1:4D:0A:1A:97:66:73:E0:31:9E:34:E9:56:ED:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4CafmyhTQoal2Zz4DGeNOlW7T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3a382a-3dda-4796-b320-3fdfb4140f24/1/4TfxYOuLCmuKiO10Nu0Lh-UU7DE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3a382a-3dda-4796-b320-3fdfb4140f24/1/v4CafmyhTQoal2Zz4DGeNOlW7T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.112.0/21
77.242.112.0/20
87.236.0.0/21
139.28.200.0/22
185.113.212.0/22
188.92.56.0/21
208.88.128.0/22
IPv6:
2a00:a000::/32
Signature Algorithm: sha256WithRSAEncryption
8c:a1:3d:51:71:f4:a6:14:9f:8c:09:58:5d:99:2a:5f:ac:09:
09:e2:66:37:a1:cc:d0:4d:b1:74:1a:7d:c3:45:8f:75:4b:ab:
9b:86:04:4e:53:4b:16:4a:f9:e9:9d:8d:cc:dd:f5:4a:52:1e:
bc:a0:55:07:6d:ce:2d:fe:3d:c7:0a:2a:c6:8e:1e:fd:d5:b1:
99:87:6f:c3:fb:25:00:27:b2:de:55:46:00:a0:dd:d7:95:8e:
59:b0:7c:27:fc:e3:35:b3:fb:04:ab:3b:a0:f8:58:7c:6f:2d:
46:37:9e:43:08:e2:23:a7:44:4f:27:d6:3b:4c:a7:0c:87:79:
ff:92:ab:0e:90:96:5a:70:28:ca:c6:fa:75:d4:56:c1:a8:b4:
83:ff:2d:e8:43:2b:71:d7:8a:a4:d7:85:84:0e:11:85:e8:f0:
14:d3:da:44:93:14:c0:40:41:ea:d9:53:07:fe:cd:0c:2b:36:
ed:01:33:76:ea:7a:a7:ce:bb:c5:a1:c4:01:a2:30:7a:95:e1:
05:1b:16:5f:ed:a4:96:9e:65:56:7c:66:29:ff:a2:63:a8:cd:
67:c3:80:0d:9a:b6:97:13:54:de:9f:a9:f0:ca:ee:d4:03:92:
b6:02:79:56:8c:7b:c9:00:0d:12:c8:f8:33:13:75:71:25:f3:
89:e7:20:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:00 2024 by rpki-client on console-fra.rpki-client.org