Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/fYiy9_a0BiBtllDcn8Oe5KYOEds.roa
File: fYiy9_a0BiBtllDcn8Oe5KYOEds.roa (raw, json)
Hash identifier: 4cwDPLpL/rkKa455WqArVkV2wxQpKFuIYI1FwDrCV4M=
Subject key identifier: 7D:88:B2:F7:F6:B4:06:20:6D:96:50:DC:9F:C3:9E:E4:A6:0E:11:DB
Certificate issuer: /CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Certificate serial: 328F3EFB
Authority key identifier: C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/fYiy9_a0BiBtllDcn8Oe5KYOEds.roa
Signing time: Tue 15 Feb 2022 14:32:36 +0000
ROA not before: Tue 15 Feb 2022 14:32:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29283
IP address blocks: 85.184.64.0/19 maxlen: 19
89.33.144.0/21 maxlen: 21
85.184.78.0/24 maxlen: 24
94.199.120.0/21 maxlen: 21
185.6.62.0/24 maxlen: 24
185.6.60.0/22 maxlen: 22
185.6.60.0/24 maxlen: 24
185.6.61.0/24 maxlen: 24
213.174.96.0/19 maxlen: 19
213.174.127.0/24 maxlen: 24
2a02:6c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 848248571 (0x328f3efb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Validity
Not Before: Feb 15 14:32:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d88b2f7f6b406206d9650dc9fc39ee4a60e11db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:03:6b:6c:19:f7:b2:67:6f:1d:a0:1e:d7:56:
13:98:b8:e5:9a:98:76:09:cb:3d:44:af:f4:56:61:
32:55:08:4f:c1:d4:eb:5b:90:d1:9d:9b:0d:36:f9:
fa:49:65:2b:14:66:bf:bf:6b:fc:db:d3:24:ae:34:
bb:e7:b6:5a:d5:4e:d3:13:dd:7d:c6:da:27:8b:0b:
2e:a1:84:fb:f9:e0:62:45:8f:d1:59:05:c4:32:57:
b9:c4:4a:13:7d:f2:60:6f:4e:aa:ee:6b:10:4b:b2:
81:6e:d9:22:f9:fe:b9:b8:c7:61:6d:c8:25:0d:8a:
a4:de:a6:8e:a8:64:23:91:e8:03:3f:ce:a1:5c:24:
b9:1c:8a:31:08:9e:03:2d:17:c0:ba:ad:bd:33:ca:
3f:76:c8:4c:a0:c0:89:e6:b5:92:59:e7:4c:d9:d7:
5e:a7:a2:af:f1:55:4c:0e:04:4a:ae:ca:d1:3e:97:
01:14:de:15:e9:e3:f1:a3:2e:39:69:0a:6c:c1:08:
73:25:29:cb:a9:6d:7f:6a:4a:9b:94:f2:32:f2:ca:
c0:ac:a6:a6:05:40:a9:a9:5e:04:21:bc:34:7d:c6:
31:6e:b4:a0:19:6f:4a:c1:dc:34:49:75:99:61:f9:
72:62:1b:13:00:48:93:f8:87:60:f6:40:10:13:fe:
0c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:88:B2:F7:F6:B4:06:20:6D:96:50:DC:9F:C3:9E:E4:A6:0E:11:DB
X509v3 Authority Key Identifier:
keyid:C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/fYiy9_a0BiBtllDcn8Oe5KYOEds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.184.64.0/19
89.33.144.0/21
94.199.120.0/21
185.6.60.0/22
213.174.96.0/19
IPv6:
2a02:6c40::/32
Signature Algorithm: sha256WithRSAEncryption
26:ca:12:5a:fc:07:e3:f2:41:5f:5f:85:b0:d8:9e:b2:74:10:
73:a6:63:ef:3f:0f:c2:bb:e1:74:10:5b:33:de:89:9b:ba:fb:
f2:43:ec:34:90:d2:cc:8a:09:07:ce:46:b3:8d:21:7e:a2:1d:
1c:96:ce:ed:c8:6c:b7:55:e2:8f:06:a7:90:ab:5e:35:87:ea:
80:10:19:a2:63:f9:87:1f:08:5d:d6:8f:0e:24:9a:62:e9:42:
18:49:e1:37:f4:f7:4a:97:7e:ef:d0:56:5d:ee:7a:c0:3c:46:
ec:f6:dc:d6:3d:9c:18:5b:ad:ba:2c:72:b8:e1:71:6a:6f:1a:
af:38:87:a3:6a:42:b1:e0:d1:d2:ee:1a:db:96:93:c3:b0:96:
f1:cc:a6:76:46:c7:3a:b4:1e:f3:4a:d1:df:f8:de:1a:26:95:
5b:8d:01:4b:5d:bd:d9:d2:4e:c2:d7:26:d0:65:b6:4a:f1:5a:
e7:1e:e4:f2:04:01:b7:3f:dd:49:6a:4b:0c:96:5b:85:68:00:
68:3e:f8:82:0e:35:15:fc:94:63:b6:e2:ad:33:fa:ce:fe:22:
d4:c5:98:ba:80:60:2f:a9:0d:27:92:a6:f0:21:11:bc:d2:6a:
de:8a:b2:61:0d:31:7f:19:cd:26:cd:b3:80:72:1f:e2:b1:06:
a8:b4:a5:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgIEMo8++zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWVkNjRjOTNkZGZkZjJmNDliN2VhMWMyM2VhYWQwODcwMjQ5YTMzMB4XDTIyMDIx
NTE0MzIzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q4OGIyZjdmNmI0
MDYyMDZkOTY1MGRjOWZjMzllZTRhNjBlMTFkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMkDa2wZ97Jnbx2gHtdWE5i45ZqYdgnLPUSv9FZhMlUIT8HU
61uQ0Z2bDTb5+kllKxRmv79r/NvTJK40u+e2WtVO0xPdfcbaJ4sLLqGE+/ngYkWP
0VkFxDJXucRKE33yYG9Oqu5rEEuygW7ZIvn+ubjHYW3IJQ2KpN6mjqhkI5HoAz/O
oVwkuRyKMQieAy0XwLqtvTPKP3bITKDAiea1klnnTNnXXqeir/FVTA4ESq7K0T6X
ARTeFenj8aMuOWkKbMEIcyUpy6ltf2pKm5TyMvLKwKympgVAqaleBCG8NH3GMW60
oBlvSsHcNEl1mWH5cmIbEwBIk/iHYPZAEBP+DLsCAwEAAaOCAjAwggIsMB0GA1Ud
DgQWBBR9iLL39rQGIG2WUNyfw57kpg4R2zAfBgNVHSMEGDAWgBTJ7WTJPd/fL0m3
6hwj6q0IcCSaMzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3llMWt5VDNmM3k5SnQtb2NJLXF0Q0hBa21qTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTgvMmEyYWIyLTMwOTgtNGEwZi04MDljLTM1ZWQ1YjUzZGEwNS8x
L2ZZaXk5X2EwQmlCdGxsRGNuOE9lNUtZT0Vkcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTgv
MmEyYWIyLTMwOTgtNGEwZi04MDljLTM1ZWQ1YjUzZGEwNS8xL3llMWt5VDNmM3k5
SnQtb2NJLXF0Q0hBa21qTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBG
BggrBgEFBQcBBwEB/wQ3MDUwJAQCAAEwHgMEBVW4QAMEA1khkAMEA17HeAMEArkG
PAMEBdWuYDANBAIAAjAHAwUAKgJsQDANBgkqhkiG9w0BAQsFAAOCAQEAJsoSWvwH
4/JBX1+FsNiesnQQc6Zj7z8PwrvhdBBbM96Jm7r78kPsNJDSzIoJB85Gs40hfqId
HJbO7chst1XijwankKteNYfqgBAZomP5hx8IXdaPDiSaYulCGEnhN/T3Spd+79BW
Xe56wDxG7Pbc1j2cGFutuixyuOFxam8arziHo2pCseDR0u4a25aTw7CW8cymdkbH
OrQe80rR3/jeGiaVW40BS1292dJOwtcm0GW2SvFa5x7k8gQBtz/dSWpLDJZbhWgA
aD74gg41FfyUY7birTP6zv4i1MWYuoBgL6kNJ5Km8CERvNJq3oqyYQ0xfxnNJs2z
gHIf4rEGqLSlAg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:57 2024 by rpki-client on console-fra.rpki-client.org