Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/P9orm2SjD1BVJt1Qh9etmphlfDg.roa
File: P9orm2SjD1BVJt1Qh9etmphlfDg.roa (raw, json)
Hash identifier: +FcTgOnVmh4E58yEL8RvUboyp4XZKV2GtmA76J7fmgY=
Subject key identifier: 3F:DA:2B:9B:64:A3:0F:50:55:26:DD:50:87:D7:AD:9A:98:65:7C:38
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 1BF64C05
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/P9orm2SjD1BVJt1Qh9etmphlfDg.roa
Signing time: Sat 01 Jan 2022 05:00:41 +0000
ROA not before: Sat 01 Jan 2022 05:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21412
IP address blocks: 185.198.32.0/22 maxlen: 22
77.87.8.0/21 maxlen: 21
185.26.132.0/22 maxlen: 22
80.240.0.0/20 maxlen: 20
178.250.32.0/21 maxlen: 21
37.157.144.0/21 maxlen: 21
178.16.32.0/20 maxlen: 20
5.20.0.0/21 maxlen: 32
5.20.8.0/21 maxlen: 21
5.20.16.0/20 maxlen: 20
5.20.32.0/19 maxlen: 19
212.52.32.0/19 maxlen: 19
217.77.16.0/20 maxlen: 20
87.247.64.0/18 maxlen: 18
5.20.112.0/21 maxlen: 21
5.20.120.0/21 maxlen: 21
5.20.128.0/19 maxlen: 19
87.239.112.0/21 maxlen: 21
31.209.64.0/20 maxlen: 20
5.20.64.0/19 maxlen: 19
185.54.12.0/22 maxlen: 22
5.20.96.0/21 maxlen: 21
5.20.104.0/21 maxlen: 21
46.251.32.0/19 maxlen: 19
5.20.224.0/21 maxlen: 21
5.20.232.0/21 maxlen: 21
91.187.160.0/19 maxlen: 19
5.20.240.0/20 maxlen: 20
212.117.0.0/19 maxlen: 19
79.133.224.0/19 maxlen: 19
5.20.160.0/19 maxlen: 19
81.29.16.0/20 maxlen: 20
217.17.80.0/20 maxlen: 20
80.243.16.0/20 maxlen: 20
5.20.192.0/19 maxlen: 19
77.221.64.0/19 maxlen: 19
2a00:7600::/32 maxlen: 32
2a04:eb00::/29 maxlen: 29
2a01:a1c0::/32 maxlen: 32
2a04:ce00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 469126149 (0x1bf64c05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Jan 1 05:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fda2b9b64a30f505526dd5087d7ad9a98657c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7f:67:02:d1:8c:c1:5f:d6:cc:37:2c:2e:46:
3d:d4:78:a9:f0:d0:00:e2:33:d3:1c:b2:9d:2f:ee:
ab:27:3b:66:cf:4e:82:1b:84:d6:08:7e:62:70:d2:
f7:7a:1b:c3:53:41:4d:82:be:54:d6:a3:d3:23:02:
71:97:60:d5:f0:51:36:49:5b:ca:ee:a6:9d:33:83:
34:cb:a6:74:14:a6:0a:c1:ac:9f:64:18:ae:99:de:
13:f2:4c:0f:43:8b:eb:df:01:66:70:b7:5f:1a:e2:
e0:d4:2e:21:aa:00:28:78:89:61:7f:55:b4:7d:78:
f8:17:ae:a2:57:f1:c5:2d:09:8b:98:0d:ea:66:21:
fb:16:dc:12:05:6e:48:14:3e:8c:e8:21:51:b5:0d:
e7:1b:17:04:ce:38:1f:7e:61:3f:34:76:2d:98:53:
69:44:6d:ab:9b:1d:1f:91:0f:fc:50:d8:29:38:41:
a0:02:e5:06:8e:17:92:51:2e:96:6f:57:23:ad:43:
42:3a:5d:0d:5a:65:89:be:4f:69:5e:1c:e9:af:d0:
bf:a0:1a:8a:58:1d:5e:2d:28:4f:85:a6:d4:88:d6:
19:f2:2b:b9:ca:9f:cd:35:2c:07:9f:7e:a8:72:7a:
54:38:36:2e:98:2b:2b:7f:b5:6c:80:52:a9:ef:a0:
9b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DA:2B:9B:64:A3:0F:50:55:26:DD:50:87:D7:AD:9A:98:65:7C:38
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/P9orm2SjD1BVJt1Qh9etmphlfDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.20.0.0/16
31.209.64.0/20
37.157.144.0/21
46.251.32.0/19
77.87.8.0/21
77.221.64.0/19
79.133.224.0/19
80.240.0.0/20
80.243.16.0/20
81.29.16.0/20
87.239.112.0/21
87.247.64.0/18
91.187.160.0/19
178.16.32.0/20
178.250.32.0/21
185.26.132.0/22
185.54.12.0/22
185.198.32.0/22
212.52.32.0/19
212.117.0.0/19
217.17.80.0/20
217.77.16.0/20
IPv6:
2a00:7600::/32
2a01:a1c0::/32
2a04:ce00::/29
2a04:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
88:fe:95:18:7d:bf:8b:b3:aa:3e:7c:4b:5b:df:d5:e1:23:29:
ed:b8:9b:47:49:b7:07:12:1d:c4:32:66:b9:c7:9f:e3:f6:c9:
68:0d:cc:7d:8d:8c:7e:a1:cf:bb:35:f9:02:89:f0:a7:2d:08:
3f:9a:ae:c7:88:e7:2d:69:7a:4c:8c:a4:73:25:5e:50:1a:37:
34:b6:99:ba:66:32:95:a4:8b:c8:ac:71:8d:27:6a:45:28:58:
98:7c:6d:79:d1:ad:a7:07:ce:08:24:17:4d:6f:bc:64:6a:ee:
0c:39:68:9e:4f:d5:4a:a5:7e:43:d3:2f:bc:65:4b:8a:2e:7c:
43:d8:2c:f5:92:d2:95:5c:d1:3e:e4:c6:db:dd:23:4b:2e:1a:
1f:08:ff:3a:52:d6:49:f5:2f:f6:6e:93:16:2c:6b:12:f4:be:
d4:14:03:63:9f:aa:58:ef:fd:ad:b6:ca:62:fb:d1:2b:fa:6d:
20:d0:ee:44:18:67:93:44:54:b8:0b:bd:6a:19:d8:e5:21:62:
8e:3d:7b:62:0a:fd:2c:dc:b8:1b:bf:dd:2f:38:47:10:71:99:
96:14:ab:7f:78:f3:e0:a1:90:ed:e5:35:dd:08:8b:f3:ca:ec:
18:bc:d4:d3:12:2d:52:ba:ab:8f:ce:8e:d0:0c:42:8e:e6:32:
56:77:79:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org