Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/BoTcvx6h2Z2g07yVW7Mz9J5Jxlc.roa
File: BoTcvx6h2Z2g07yVW7Mz9J5Jxlc.roa (raw, json)
Hash identifier: h+VymBPeXM5B1NisbEGaFNWSARR5IeFNuC+ghVzuc28=
Subject key identifier: 06:84:DC:BF:1E:A1:D9:9D:A0:D3:BC:95:5B:B3:33:F4:9E:49:C6:57
Certificate issuer: /CN=8d4dd2d06d920e403933fdb2cd1984893552579c
Certificate serial: 024EA48B
Authority key identifier: 8D:4D:D2:D0:6D:92:0E:40:39:33:FD:B2:CD:19:84:89:35:52:57:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU3S0G2SDkA5M_2yzRmEiTVSV5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/BoTcvx6h2Z2g07yVW7Mz9J5Jxlc.roa
Signing time: Wed 29 Jun 2022 05:33:02 +0000
ROA not before: Wed 29 Jun 2022 05:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39280
IP address blocks: 81.21.80.0/21 maxlen: 21
81.21.80.0/20 maxlen: 20
81.21.88.0/21 maxlen: 21
93.184.224.0/21 maxlen: 21
93.184.224.0/20 maxlen: 20
93.184.232.0/21 maxlen: 21
46.228.176.0/21 maxlen: 21
46.228.176.0/20 maxlen: 20
46.228.184.0/21 maxlen: 21
185.41.202.0/23 maxlen: 23
185.41.200.0/23 maxlen: 23
185.41.200.0/22 maxlen: 22
46.18.64.0/21 maxlen: 21
46.18.64.0/22 maxlen: 22
46.18.68.0/22 maxlen: 22
89.219.38.0/23 maxlen: 23
89.219.44.0/22 maxlen: 22
89.219.40.0/22 maxlen: 22
89.219.40.0/21 maxlen: 21
89.219.48.0/20 maxlen: 20
89.219.48.0/21 maxlen: 21
89.219.56.0/21 maxlen: 21
89.219.36.0/23 maxlen: 23
89.219.36.0/22 maxlen: 22
2a03:ba40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38708363 (0x24ea48b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4dd2d06d920e403933fdb2cd1984893552579c
Validity
Not Before: Jun 29 05:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0684dcbf1ea1d99da0d3bc955bb333f49e49c657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:cd:5e:36:52:95:f3:ff:95:ea:35:4f:e7:c0:
2c:e9:3a:30:93:92:4e:15:d7:80:6c:b7:ec:59:d8:
d6:65:89:d8:35:ab:35:d8:61:bb:04:97:12:40:f7:
c8:4f:69:3c:4c:ac:ca:4b:00:d4:f0:72:a1:66:47:
6c:17:2d:d9:b3:0d:66:24:b3:ea:f4:56:bd:45:47:
64:95:df:4f:c6:21:67:0e:2b:d0:49:4d:ec:cd:48:
c3:92:3c:79:5c:d7:cb:16:f6:93:02:86:62:8e:53:
c1:62:0b:65:ce:8d:d1:81:3d:50:20:20:da:d2:27:
01:c4:52:ec:15:ba:b5:49:7c:91:22:62:4a:52:8c:
f9:cd:8e:3f:52:d3:09:dc:15:ac:28:8f:08:1b:e3:
dd:0a:07:89:e5:2b:71:44:f8:d9:ae:fd:04:fa:52:
2f:a2:df:ee:4f:70:8e:63:1c:f1:bc:6e:87:57:81:
b6:ec:8b:27:37:1f:c0:5a:d8:54:b4:a9:27:20:c6:
35:bd:89:9e:0a:07:0a:10:a3:cc:f9:dd:41:0a:b0:
42:da:93:66:5e:9c:a2:cf:a6:9b:20:9a:fc:66:a1:
24:78:a0:63:53:3c:62:e1:3c:05:48:24:ba:c2:28:
1d:32:7d:fe:46:78:db:eb:15:32:9b:c6:0c:3d:74:
b2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:84:DC:BF:1E:A1:D9:9D:A0:D3:BC:95:5B:B3:33:F4:9E:49:C6:57
X509v3 Authority Key Identifier:
keyid:8D:4D:D2:D0:6D:92:0E:40:39:33:FD:B2:CD:19:84:89:35:52:57:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU3S0G2SDkA5M_2yzRmEiTVSV5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/BoTcvx6h2Z2g07yVW7Mz9J5Jxlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/jU3S0G2SDkA5M_2yzRmEiTVSV5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.64.0/21
46.228.176.0/20
81.21.80.0/20
89.219.36.0-89.219.63.255
93.184.224.0/20
185.41.200.0/22
IPv6:
2a03:ba40::/32
Signature Algorithm: sha256WithRSAEncryption
c3:0b:67:50:54:16:88:cc:3b:76:7a:8c:70:49:6f:53:41:1e:
04:33:e4:76:a6:4f:68:b5:a7:cb:92:16:1a:72:a1:1d:6d:32:
91:e1:ee:d5:71:07:d4:68:41:af:a6:aa:f3:f2:07:17:57:49:
de:0f:4a:18:bb:f4:08:1c:06:19:61:e0:4e:0c:99:cf:43:51:
a6:d7:7e:22:1f:5f:62:98:83:4a:be:8c:83:37:7a:c3:99:83:
a8:3d:6a:02:ee:52:19:93:b3:8e:a2:10:d8:47:2b:76:36:5a:
37:6a:5b:49:b2:99:d6:c4:e3:95:46:38:1a:5e:9d:4e:c8:6d:
89:cc:3a:d5:ad:ac:28:f9:53:d0:87:47:b8:85:f3:38:7b:cc:
93:f0:07:16:fb:51:ae:f4:61:cd:b2:86:78:cb:7e:a0:31:53:
91:5f:05:32:46:ad:27:aa:be:2f:58:f3:cb:2c:f8:02:67:bb:
dd:e9:c6:8c:2e:93:ef:92:1f:3b:4e:b9:c0:cd:a4:9b:61:03:
d8:20:4a:8d:44:5c:a4:ea:e5:2f:5a:e6:ed:d9:dc:91:79:fd:
a7:e3:d4:51:6f:f7:1b:97:e1:19:f7:2e:4f:6e:92:2c:9b:7c:
d9:a8:d4:ee:f2:31:38:3d:c6:9c:70:a5:2c:b4:ac:33:74:1f:
c8:10:b7:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:49 2024 by rpki-client on console-fra.rpki-client.org