Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/4Gg9Yu5TpHgAdXlY-qRsnlVZA7E.roa
File: 4Gg9Yu5TpHgAdXlY-qRsnlVZA7E.roa (raw, json)
Hash identifier: u7vtSS8J8mk9pQiTTlx/olZd78PVnSwnmEVNJ6z691E=
Subject key identifier: E0:68:3D:62:EE:53:A4:78:00:75:79:58:FA:A4:6C:9E:55:59:03:B1
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 103E6251
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/4Gg9Yu5TpHgAdXlY-qRsnlVZA7E.roa
Signing time: Fri 28 Jan 2022 15:20:07 +0000
ROA not before: Fri 28 Jan 2022 15:20:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206564
IP address blocks: 212.19.40.0/24 maxlen: 32
82.98.80.0/24 maxlen: 32
82.98.91.0/24 maxlen: 32
213.83.48.0/24 maxlen: 32
212.19.48.0/24 maxlen: 32
212.19.47.0/24 maxlen: 32
82.98.105.0/24 maxlen: 32
212.19.61.0/24 maxlen: 24
82.98.127.0/24 maxlen: 24
213.83.1.0/24 maxlen: 32
213.83.17.0/24 maxlen: 32
82.98.67.0/24 maxlen: 32
82.98.78.0/24 maxlen: 32
82.98.74.0/24 maxlen: 32
2a02:2e0:3e8::/48 maxlen: 128
2a02:2e0:41b::/48 maxlen: 128
2a02:2e0:1::/48 maxlen: 48
2a02:2e0:41c::/48 maxlen: 128
2a02:2e0:a::/48 maxlen: 48
2a02:2e0:3f5::/48 maxlen: 128
2a02:2e0:3ee::/48 maxlen: 128
2a02:2e0:cd4e::/48 maxlen: 48
2a02:2e0:fffe::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272523857 (0x103e6251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 28 15:20:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0683d62ee53a47800757958faa46c9e555903b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:50:7b:7e:df:8b:53:39:5d:f4:c4:fd:d8:b7:
e4:7e:fb:ce:d9:be:14:d9:9c:ce:60:5d:5e:6d:e2:
b1:75:c1:52:99:c0:36:8c:09:e5:59:b4:c8:b6:68:
cf:ed:d8:d1:59:ad:ad:e7:ed:07:e2:8b:36:20:47:
b8:91:54:2d:37:dd:ec:0f:e1:4e:f1:c6:80:a0:cb:
e2:06:91:81:a9:75:9b:21:8d:53:69:3e:2a:66:a4:
3d:0a:c0:96:f0:5f:2e:9c:99:ab:0b:e2:38:85:aa:
e5:eb:93:a5:25:87:96:02:13:9e:cc:d2:e3:a2:2d:
a6:e9:d5:e6:3c:9c:d0:52:99:ed:2a:cc:fc:53:ff:
62:0a:7a:2a:93:44:de:9f:f1:28:bd:79:35:4a:2f:
1e:a8:e1:64:cd:b0:24:14:ab:d6:12:61:a3:45:8a:
e5:85:61:fe:5d:e6:87:a8:0f:5d:d4:b7:f7:2a:84:
de:b1:8a:75:65:0c:5f:49:cb:8a:e9:f9:97:3a:ab:
72:9b:3f:bc:51:58:78:18:02:97:76:42:37:a7:b9:
78:fa:a7:7c:bf:8a:bc:ab:ff:2e:89:7d:66:0f:8a:
ff:57:88:d3:a2:36:6f:74:c8:ca:b2:25:cd:4e:27:
a4:7a:a3:58:31:11:8a:1e:59:db:31:bd:70:27:2c:
fc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:68:3D:62:EE:53:A4:78:00:75:79:58:FA:A4:6C:9E:55:59:03:B1
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/4Gg9Yu5TpHgAdXlY-qRsnlVZA7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.67.0/24
82.98.74.0/24
82.98.78.0/24
82.98.80.0/24
82.98.91.0/24
82.98.105.0/24
82.98.127.0/24
212.19.40.0/24
212.19.47.0-212.19.48.255
212.19.61.0/24
213.83.1.0/24
213.83.17.0/24
213.83.48.0/24
IPv6:
2a02:2e0:1::/48
2a02:2e0:a::/48
2a02:2e0:3e8::/48
2a02:2e0:3ee::/48
2a02:2e0:3f5::/48
2a02:2e0:41b::-2a02:2e0:41c:ffff:ffff:ffff:ffff:ffff
2a02:2e0:cd4e::/48
2a02:2e0:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
81:e3:0b:3e:dc:06:28:1e:fb:80:3b:54:f4:99:9d:b9:f6:4f:
e3:74:f1:3d:29:a5:9a:f5:22:1e:c2:7d:4e:cf:39:d0:47:29:
06:e9:cb:00:23:79:0f:4b:68:17:5f:80:c7:2e:84:d4:93:ca:
d8:ef:aa:08:6b:a3:4c:ab:a4:42:57:f0:97:94:7d:40:50:6b:
81:f9:aa:73:7c:3c:63:09:a3:8f:7d:57:04:ce:e7:16:33:c2:
b3:7a:98:40:7c:73:0a:9b:3e:36:9a:37:88:cc:e1:79:6b:9b:
3f:47:ea:dc:bb:52:94:cd:e4:8b:e4:63:59:7b:14:96:b0:9a:
79:f0:ae:57:d0:6d:e7:35:4e:19:45:b8:69:28:76:9b:48:b3:
ef:b6:ad:06:09:e8:9b:c6:cc:8d:af:db:ad:96:1d:3e:bc:7c:
28:b3:e5:a5:70:ee:f2:94:dd:c1:b9:83:73:20:2a:91:c6:b2:
8f:ba:5f:ed:dc:b1:26:c1:d7:16:f5:b5:5e:36:1f:f8:6c:61:
5d:17:00:27:b7:7b:a5:54:77:24:f5:58:eb:47:11:14:f4:88:
1e:e1:da:c0:c8:05:e5:1e:7f:c7:90:9f:cd:26:55:27:00:ee:
c3:41:8e:ca:51:f2:9c:13:23:9f:58:23:30:c3:41:6d:f9:53:
b9:82:12:0d
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgIEED5iUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDhiYTBhNTJjNDIxMjlhZjFkNGY3NDNmZWIzM2JiMTQ0ZDRiYjVjMB4XDTIyMDEy
ODE1MjAwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTA2ODNkNjJlZTUz
YTQ3ODAwNzU3OTU4ZmFhNDZjOWU1NTU5MDNiMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI9Qe37fi1M5XfTE/di35H77ztm+FNmczmBdXm3isXXBUpnA
NowJ5Vm0yLZoz+3Y0VmtreftB+KLNiBHuJFULTfd7A/hTvHGgKDL4gaRgal1myGN
U2k+KmakPQrAlvBfLpyZqwviOIWq5euTpSWHlgITnszS46ItpunV5jyc0FKZ7SrM
/FP/Ygp6KpNE3p/xKL15NUovHqjhZM2wJBSr1hJho0WK5YVh/l3mh6gPXdS39yqE
3rGKdWUMX0nLiun5lzqrcps/vFFYeBgCl3ZCN6e5ePqnfL+KvKv/Lol9Zg+K/1eI
06I2b3TIyrIlzU4npHqjWDERih5Z2zG9cCcs/E8CAwEAAaOCArcwggKzMB0GA1Ud
DgQWBBTgaD1i7lOkeAB1eVj6pGyeVVkDsTAfBgNVHSMEGDAWgBQ9i6ClLEISmvHU
90P+szuxRNS7XDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BZdWdwU3hDRXByeDFQZERfck03c1VUVXUxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvZmY2ZjRhLThkNWYtNDViMi04NzVjLWE1NjgzODQ0ZTc5Mi8x
LzRHZzlZdTVUcEhnQWRYbFktcVJzbmxWWkE3RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
ZmY2ZjRhLThkNWYtNDViMi04NzVjLWE1NjgzODQ0ZTc5Mi8xL1BZdWdwU3hDRXBy
eDFQZERfck03c1VUVXUxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
zAYIKwYBBQUHAQcBAf8EgbwwgbkwXAQCAAEwVgMEAFJiQwMEAFJiSgMEAFJiTgME
AFJiUAMEAFJiWwMEAFJiaQMEAFJifwMEANQTKDAMAwQA1BMvAwQA1BMwAwQA1BM9
AwQA1VMBAwQA1VMRAwQA1VMwMFkEAgACMFMDBwAqAgLgAAEDBwAqAgLgAAoDBwAq
AgLgA+gDBwAqAgLgA+4DBwAqAgLgA/UwEgMHACoCAuAEGwMHACoCAuAEHAMHACoC
AuDNTgMHACoCAuD//jANBgkqhkiG9w0BAQsFAAOCAQEAgeMLPtwGKB77gDtU9Jmd
ufZP43TxPSmlmvUiHsJ9Ts850EcpBunLACN5D0toF1+Axy6E1JPK2O+qCGujTKuk
Qlfwl5R9QFBrgfmqc3w8Ywmjj31XBM7nFjPCs3qYQHxzCps+Npo3iMzheWubP0fq
3LtSlM3ki+RjWXsUlrCaefCuV9Bt5zVOGUW4aSh2m0iz77atBgnom8bMja/brZYd
Prx8KLPlpXDu8pTdwbmDcyAqkcayj7pf7dyxJsHXFvW1XjYf+GxhXRcAJ7d7pVR3
JPVY60cRFPSIHuHawMgF5R5/x5CfzSZVJwDuw0GOylHynBMjn1gjMMNBbflTuYIS
DQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:36 2024 by rpki-client on console-ams.rpki-client.org