Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/_4IYDj_EebKniwI2XMDtDdTblwY.roa
File: _4IYDj_EebKniwI2XMDtDdTblwY.roa (raw, json)
Hash identifier: FxjHbOz/zWqF/9yndAdeOuofXWcgVA+wWGqPVaV4zkU=
Subject key identifier: FF:82:18:0E:3F:C4:79:B2:A7:8B:02:36:5C:C0:ED:0D:D4:DB:97:06
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 4346B24F
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/_4IYDj_EebKniwI2XMDtDdTblwY.roa
Signing time: Sat 01 Jan 2022 07:59:54 +0000
ROA not before: Sat 01 Jan 2022 07:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39326
IP address blocks: 37.235.54.0/24 maxlen: 24
151.236.19.0/24 maxlen: 24
2a03:f80:441::/48 maxlen: 48
2a03:f80:44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1128706639 (0x4346b24f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff82180e3fc479b2a78b02365cc0ed0dd4db9706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e8:7b:48:35:a8:9e:f3:e9:a1:af:4e:c1:c0:
f9:16:39:c3:68:4d:99:a9:9f:06:d5:b8:d7:4f:6f:
2b:ae:06:9f:e2:dc:82:43:e6:fa:f6:48:b2:8d:fd:
61:cb:8a:fa:b6:e1:a3:8c:59:fb:3f:94:84:d7:87:
fc:4b:50:12:f0:a2:8f:a9:d3:25:ed:cd:83:ff:e6:
dd:f3:70:4e:b0:2a:2e:32:45:e8:ef:89:2f:57:03:
d8:69:12:b9:58:f7:29:51:10:96:09:ea:05:63:11:
d4:32:14:fb:a5:20:90:52:49:25:f5:8b:c8:36:82:
8d:bf:b3:8b:27:ca:fe:6e:97:c5:17:b4:3a:bd:78:
eb:bd:f9:a1:5a:eb:28:5d:2c:40:2d:20:7d:7f:b4:
29:3c:a6:24:33:b4:fe:a6:59:13:d3:7a:f8:d3:8f:
8e:ad:b8:eb:fe:73:57:7f:eb:36:f3:9b:3d:4e:2f:
13:50:ba:ba:0d:5f:49:91:8f:c4:b2:17:fd:32:c4:
29:18:0c:3c:e2:c0:77:f4:f1:52:84:84:d3:a5:84:
f0:7e:49:2b:d6:2c:e1:c5:8a:4a:62:cf:f9:d9:f0:
8d:a9:23:56:0a:36:e0:6f:48:ba:29:c2:35:9f:c5:
ea:bd:76:53:8c:60:2c:8b:b4:45:e7:14:74:09:b2:
79:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:82:18:0E:3F:C4:79:B2:A7:8B:02:36:5C:C0:ED:0D:D4:DB:97:06
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/_4IYDj_EebKniwI2XMDtDdTblwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.54.0/24
151.236.19.0/24
IPv6:
2a03:f80:44::/48
2a03:f80:441::/48
Signature Algorithm: sha256WithRSAEncryption
64:27:54:f7:6b:3f:fa:b5:2b:1f:4e:76:d3:52:2f:8a:f1:0d:
df:69:c1:9e:2c:7e:1a:d2:c9:f5:d7:98:e2:b8:a5:96:04:3e:
3d:d0:84:05:26:78:f6:f4:29:1c:51:33:06:81:24:a2:e0:8a:
9e:55:87:80:7d:82:ba:76:1f:32:22:c6:0f:18:29:31:9e:63:
9e:9b:02:88:27:4e:8d:99:70:23:4e:a8:f3:10:f0:3d:dc:89:
03:c2:dc:cf:bc:18:f7:da:77:99:e8:c0:5b:fd:87:a7:b3:74:
74:c4:8a:20:24:51:88:99:27:6c:6b:30:c7:a1:62:8d:d6:bc:
70:46:34:46:98:f6:fd:7d:ee:c6:00:10:fd:68:d8:2f:87:63:
9b:6e:c7:51:2f:6e:05:1d:1b:52:69:e3:48:6b:ad:79:1f:b8:
71:75:fa:cb:58:8e:1e:53:d1:af:12:94:e1:96:91:b5:67:5b:
99:f2:0d:39:7e:c6:63:f9:61:9c:b6:95:03:08:ff:bd:c9:00:
42:0e:7e:84:6f:f8:5e:13:1c:f8:89:c7:5d:8a:17:27:ad:4e:
34:43:28:a2:8c:d5:b8:92:3d:10:26:a7:76:86:60:55:4c:dc:
0c:e5:50:4c:2a:55:fd:d4:83:c6:8a:46:81:2a:31:e2:29:e9:
ad:66:a2:32
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIEQ0ayTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MjE3YjQ3MmM4NDFjMWQ2ODU1MGEyNGYxOTM2ZDI5Y2M2YzI4ZjZhMB4XDTIyMDEw
MTA3NTk1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmY4MjE4MGUzZmM0
NzliMmE3OGIwMjM2NWNjMGVkMGRkNGRiOTcwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMzoe0g1qJ7z6aGvTsHA+RY5w2hNmamfBtW4109vK64Gn+Lc
gkPm+vZIso39YcuK+rbho4xZ+z+UhNeH/EtQEvCij6nTJe3Ng//m3fNwTrAqLjJF
6O+JL1cD2GkSuVj3KVEQlgnqBWMR1DIU+6UgkFJJJfWLyDaCjb+ziyfK/m6XxRe0
Or146735oVrrKF0sQC0gfX+0KTymJDO0/qZZE9N6+NOPjq246/5zV3/rNvObPU4v
E1C6ug1fSZGPxLIX/TLEKRgMPOLAd/TxUoSE06WE8H5JK9Ys4cWKSmLP+dnwjakj
Vgo24G9IuinCNZ/F6r12U4xgLIu0RecUdAmyefECAwEAAaOCAikwggIlMB0GA1Ud
DgQWBBT/ghgOP8R5sqeLAjZcwO0N1NuXBjAfBgNVHSMEGDAWgBTSF7RyyEHB1oVQ
ok8ZNtKcxsKPajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBoZTBjc2hCd2RhRlVLSlBHVGJTbk1iQ2oyby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTAvMjkwZTQ0LWI0NzktNDZjZi1hYjRiLWIzOGUyNjc3YjNkYy8x
L180SVlEal9FZWJLbml3STJYTUR0RGRUYmx3WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTAv
MjkwZTQ0LWI0NzktNDZjZi1hYjRiLWIzOGUyNjc3YjNkYy8xLzBoZTBjc2hCd2Rh
RlVLSlBHVGJTbk1iQ2oyby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/
BggrBgEFBQcBBwEB/wQwMC4wEgQCAAEwDAMEACXrNgMEAJfsEzAYBAIAAjASAwcA
KgMPgABEAwcAKgMPgARBMA0GCSqGSIb3DQEBCwUAA4IBAQBkJ1T3az/6tSsfTnbT
Ui+K8Q3facGeLH4a0sn115jiuKWWBD490IQFJnj29CkcUTMGgSSi4IqeVYeAfYK6
dh8yIsYPGCkxnmOemwKIJ06NmXAjTqjzEPA93IkDwtzPvBj32neZ6MBb/Yens3R0
xIogJFGImSdsazDHoWKN1rxwRjRGmPb9fe7GABD9aNgvh2ObbsdRL24FHRtSaeNI
a615H7hxdfrLWI4eU9GvEpThlpG1Z1uZ8g05fsZj+WGctpUDCP+9yQBCDn6Eb/he
Exz4icddihcnrU40QyiijNW4kj0QJqd2hmBVTNwM5VBMKlX91IPGikaBKjHiKemt
ZqIy
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org