Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/3IYmMz1xmieKSpF6XyjKDNBqp_c.roa
File: 3IYmMz1xmieKSpF6XyjKDNBqp_c.roa (raw, json)
Hash identifier: 84PaNyOHc42NZT3EdCSVTR0Xoo/HDNwZXQ7ceNiQRMs=
Subject key identifier: DC:86:26:33:3D:71:9A:27:8A:4A:91:7A:5F:28:CA:0C:D0:6A:A7:F7
Certificate issuer: /CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Certificate serial: 04CB7073
Authority key identifier: 0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/3IYmMz1xmieKSpF6XyjKDNBqp_c.roa
Signing time: Sat 14 May 2022 09:23:41 +0000
ROA not before: Sat 14 May 2022 09:23:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5606
IP address blocks: 128.140.224.0/21 maxlen: 24
176.223.110.0/24 maxlen: 24
84.247.28.0/24 maxlen: 24
188.213.33.0/24 maxlen: 24
188.241.222.0/24 maxlen: 24
109.205.91.0/24 maxlen: 24
109.205.88.0/24 maxlen: 24
109.205.90.0/24 maxlen: 24
109.205.89.0/24 maxlen: 24
193.41.251.0/24 maxlen: 24
109.205.95.0/24 maxlen: 24
188.212.37.0/24 maxlen: 24
86.104.3.0/24 maxlen: 24
188.213.132.0/23 maxlen: 24
86.104.17.0/24 maxlen: 24
188.211.236.0/24 maxlen: 24
89.38.241.0/24 maxlen: 24
188.212.152.0/24 maxlen: 24
37.156.182.0/23 maxlen: 24
77.81.2.0/24 maxlen: 24
89.38.231.0/24 maxlen: 24
185.8.152.0/22 maxlen: 24
85.204.108.0/24 maxlen: 24
193.226.128.0/18 maxlen: 24
89.37.143.0/24 maxlen: 24
85.204.75.0/24 maxlen: 24
194.105.1.0/24 maxlen: 24
2001:4d80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80441459 (0x4cb7073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Validity
Not Before: May 14 09:23:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc8626333d719a278a4a917a5f28ca0cd06aa7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ee:e1:1a:ca:c3:fd:9f:c9:d7:da:15:ce:49:
b3:f9:b0:ff:11:2b:85:37:d2:7b:0d:f7:cc:81:95:
86:42:0d:61:f7:b9:0f:bd:98:91:ed:88:71:7d:e3:
43:e8:62:48:85:0a:f6:7f:09:b5:85:e5:a8:ef:23:
04:29:63:fd:d6:83:e8:01:06:b4:4f:47:f0:70:2b:
35:6e:00:9d:24:65:5f:fc:6f:19:e4:69:ef:12:fe:
04:d9:21:ed:0e:42:c3:cb:e7:16:93:51:63:48:f3:
59:b0:40:9e:a7:e7:ee:a0:91:a8:a3:8a:ed:ce:0f:
e1:41:13:43:4b:17:f5:9b:b6:38:dd:45:8c:81:ad:
c0:34:18:4f:84:e4:8a:87:55:27:14:a3:e4:dd:a5:
78:e6:92:ec:99:a9:f5:77:e5:58:42:5a:84:5c:dd:
0d:4c:b8:54:60:62:da:bd:a8:50:cd:42:b6:66:02:
c0:58:37:4a:91:2a:a1:19:b8:b0:22:dc:63:85:1b:
7a:09:ab:1e:56:38:68:af:d8:87:68:34:f4:b0:cc:
31:b2:90:a6:b2:fa:09:8f:72:84:cd:4c:ab:e5:3b:
03:c0:10:91:56:b1:c6:66:05:67:08:8d:d1:11:46:
bd:6a:3d:05:9f:86:d0:85:ef:b1:56:b0:5a:53:3a:
e0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:86:26:33:3D:71:9A:27:8A:4A:91:7A:5F:28:CA:0C:D0:6A:A7:F7
X509v3 Authority Key Identifier:
keyid:0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/3IYmMz1xmieKSpF6XyjKDNBqp_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/CvYXmN0YllwCevp_k64DD_Xh124.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.182.0/23
77.81.2.0/24
84.247.28.0/24
85.204.75.0/24
85.204.108.0/24
86.104.3.0/24
86.104.17.0/24
89.37.143.0/24
89.38.231.0/24
89.38.241.0/24
109.205.88.0/22
109.205.95.0/24
128.140.224.0/21
176.223.110.0/24
185.8.152.0/22
188.211.236.0/24
188.212.37.0/24
188.212.152.0/24
188.213.33.0/24
188.213.132.0/23
188.241.222.0/24
193.41.251.0/24
193.226.128.0/18
194.105.1.0/24
IPv6:
2001:4d80::/32
Signature Algorithm: sha256WithRSAEncryption
ba:81:03:d0:91:a7:bc:c6:64:d9:c4:22:af:21:91:5a:9f:9f:
0f:ad:2c:1e:e3:f4:e6:10:80:61:7d:42:f8:48:71:7c:a5:68:
28:72:08:69:1c:ab:f4:e2:6e:f3:9a:2a:ad:71:1a:82:5a:b4:
55:a1:c4:33:a6:45:87:84:5f:f4:21:b5:7a:33:af:df:74:57:
29:13:b2:64:dd:40:fa:d1:de:1a:fb:85:31:08:d8:04:f6:63:
af:c0:8b:09:b9:1b:c5:83:a4:be:12:7e:7f:ee:07:cf:ee:28:
a7:a2:81:20:7c:c0:11:70:ca:d1:86:a3:31:bd:27:e2:75:42:
4f:57:14:f2:90:6c:23:fe:c7:5a:82:62:cc:fa:95:41:a5:ae:
ac:09:d9:90:e4:69:ea:9c:01:d3:5e:8e:69:09:5a:0f:14:cd:
96:70:32:c7:fc:ae:8b:d5:7a:d7:45:22:53:af:a2:c9:cc:25:
e3:a9:ef:27:71:cc:90:d4:51:c7:84:a8:66:31:01:b0:74:85:
9c:26:56:a0:47:9b:79:c5:4b:58:fb:ac:0b:df:d7:5c:04:20:
08:e2:93:e0:40:56:4b:c3:09:35:70:81:45:56:c9:9f:c3:25:
55:e4:fc:90:9b:f3:89:7f:d3:11:b9:aa:be:5f:9d:72:85:08:
86:6c:96:f7
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgIEBMtwczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YWY2MTc5OGRkMTg5NjVjMDI3YWZhN2Y5M2FlMDMwZmY1ZTFkNzZlMB4XDTIyMDUx
NDA5MjM0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGM4NjI2MzMzZDcx
OWEyNzhhNGE5MTdhNWYyOGNhMGNkMDZhYTdmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXu4RrKw/2fydfaFc5Js/mw/xErhTfSew33zIGVhkINYfe5
D72Yke2IcX3jQ+hiSIUK9n8JtYXlqO8jBClj/daD6AEGtE9H8HArNW4AnSRlX/xv
GeRp7xL+BNkh7Q5Cw8vnFpNRY0jzWbBAnqfn7qCRqKOK7c4P4UETQ0sX9Zu2ON1F
jIGtwDQYT4TkiodVJxSj5N2leOaS7Jmp9XflWEJahFzdDUy4VGBi2r2oUM1CtmYC
wFg3SpEqoRm4sCLcY4UbegmrHlY4aK/Yh2g09LDMMbKQprL6CY9yhM1Mq+U7A8AQ
kVaxxmYFZwiN0RFGvWo9BZ+G0IXvsVawWlM64JUCAwEAAaOCAqcwggKjMB0GA1Ud
DgQWBBTchiYzPXGaJ4pKkXpfKMoM0Gqn9zAfBgNVHSMEGDAWgBQK9heY3RiWXAJ6
+n+TrgMP9eHXbjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0N2WVhtTjBZbGx3Q2V2cF9rNjRERF9YaDEyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvNjE1MTY0LTZkOTYtNDg4YS05NmJhLWQ2ZTFlMzQ3ZjljNy8x
LzNJWW1NejF4bWllS1NwRjZYeWpLRE5CcXBfYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
NjE1MTY0LTZkOTYtNDg4YS05NmJhLWQ2ZTFlMzQ3ZjljNy8xL0N2WVhtTjBZbGx3
Q2V2cF9rNjRERF9YaDEyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
vAYIKwYBBQUHAQcBAf8EgawwgakwgZcEAgABMIGQAwQBJZy2AwQATVECAwQAVPcc
AwQAVcxLAwQAVcxsAwQAVmgDAwQAVmgRAwQAWSWPAwQAWSbnAwQAWSbxAwQCbc1Y
AwQAbc1fAwQDgIzgAwQAsN9uAwQCuQiYAwQAvNPsAwQAvNQlAwQAvNSYAwQAvNUh
AwQBvNWEAwQAvPHeAwQAwSn7AwQGweKAAwQAwmkBMA0EAgACMAcDBQAgAU2AMA0G
CSqGSIb3DQEBCwUAA4IBAQC6gQPQkae8xmTZxCKvIZFan58PrSwe4/TmEIBhfUL4
SHF8pWgocghpHKv04m7zmiqtcRqCWrRVocQzpkWHhF/0IbV6M6/fdFcpE7Jk3UD6
0d4a+4UxCNgE9mOvwIsJuRvFg6S+En5/7gfP7iinooEgfMARcMrRhqMxvSfidUJP
VxTykGwj/sdagmLM+pVBpa6sCdmQ5GnqnAHTXo5pCVoPFM2WcDLH/K6L1XrXRSJT
r6LJzCXjqe8nccyQ1FHHhKhmMQGwdIWcJlagR5t5xUtY+6wL39dcBCAI4pPgQFZL
wwk1cIFFVsmfwyVV5PyQm/OJf9MRuaq+X51yhQiGbJb3
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:34 2023 by rpki-client on console-ams.rpki-client.org