Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/3eETW3aYvhoKczM2JmHlmSvl0s0.roa
File: 3eETW3aYvhoKczM2JmHlmSvl0s0.roa (raw, json)
Hash identifier: 4CTcUa5mxLeB4dC0d7ViLXSxNjDnbC+o0fiWVYWIPzo=
Subject key identifier: DD:E1:13:5B:76:98:BE:1A:0A:73:33:36:26:61:E5:99:2B:E5:D2:CD
Certificate issuer: /CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Certificate serial: 018347BCED6CF85E3BD65790B17D1762774B
Authority key identifier: 4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/3eETW3aYvhoKczM2JmHlmSvl0s0.roa
Signing time: Fri 16 Sep 2022 19:18:27 +0000
ROA not before: Fri 16 Sep 2022 19:18:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58321
IP address blocks: 185.73.88.0/22 maxlen: 22
185.80.212.0/22 maxlen: 22
91.232.44.0/23 maxlen: 23
109.199.0.0/19 maxlen: 19
176.227.160.0/21 maxlen: 21
109.207.48.0/20 maxlen: 20
81.161.192.0/24 maxlen: 24
81.161.192.0/21 maxlen: 21
81.161.192.0/20 maxlen: 20
81.161.193.0/24 maxlen: 24
81.161.194.0/24 maxlen: 24
81.161.195.0/24 maxlen: 24
178.249.88.0/21 maxlen: 21
81.161.196.0/24 maxlen: 24
81.161.197.0/24 maxlen: 24
81.161.198.0/24 maxlen: 24
81.161.199.0/24 maxlen: 24
81.161.203.0/24 maxlen: 24
81.161.204.0/24 maxlen: 24
81.161.200.0/21 maxlen: 21
81.161.205.0/24 maxlen: 24
81.161.206.0/24 maxlen: 24
81.161.200.0/24 maxlen: 24
81.161.201.0/24 maxlen: 24
81.161.202.0/24 maxlen: 24
193.242.168.0/24 maxlen: 24
193.242.169.0/24 maxlen: 24
195.3.232.0/22 maxlen: 22
5.104.248.0/21 maxlen: 21
185.34.76.0/22 maxlen: 22
2a04:4c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:47:bc:ed:6c:f8:5e:3b:d6:57:90:b1:7d:17:62:77:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Validity
Not Before: Sep 16 19:18:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dde1135b7698be1a0a7333362661e5992be5d2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:0c:70:f7:46:fd:c6:46:74:f6:07:d1:a2:
d0:9b:e4:a7:82:c9:95:45:0e:d3:e1:36:2a:b4:3c:
d1:39:12:85:56:73:3b:6f:56:a2:8d:8e:45:f6:68:
eb:0c:13:ba:e1:15:f7:89:d3:29:6e:af:c8:cf:b8:
c0:a1:48:ad:09:02:0b:40:92:0d:10:bb:53:4b:01:
d6:ba:16:53:5c:32:5e:90:39:5a:31:be:de:c1:d7:
9a:93:45:4e:61:7d:0e:31:32:10:15:6a:2b:ad:dd:
9e:4c:59:2f:69:be:5c:cc:12:65:5b:bc:7a:c0:60:
ce:02:89:87:77:5d:a1:72:4a:1a:07:83:9d:a8:28:
18:e7:6e:9c:16:8d:17:fe:08:46:4e:a4:5f:80:0e:
9c:df:6a:dd:de:dd:82:e4:19:93:6a:be:9e:f6:21:
9f:4d:b7:45:c9:65:a0:86:a5:e1:2e:17:d1:7e:41:
01:0a:b5:9e:ba:6b:8a:b7:17:55:9b:46:0e:9e:a7:
82:a4:5c:b4:14:fe:a0:bf:b5:b1:8f:a6:c8:a8:98:
04:11:84:d4:93:0e:a2:e8:d1:fa:97:df:33:67:43:
35:7a:89:40:10:9d:5b:92:9f:f0:a1:34:d6:90:24:
fc:ed:4c:02:c1:0b:1b:a4:44:6a:f3:e6:9f:63:5f:
df:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E1:13:5B:76:98:BE:1A:0A:73:33:36:26:61:E5:99:2B:E5:D2:CD
X509v3 Authority Key Identifier:
keyid:4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/3eETW3aYvhoKczM2JmHlmSvl0s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/TuFxPha0_Y8zAYh95qERmARJsp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.248.0/21
81.161.192.0/20
91.232.44.0/23
109.199.0.0/19
109.207.48.0/20
176.227.160.0/21
178.249.88.0/21
185.34.76.0/22
185.73.88.0/22
185.80.212.0/22
193.242.168.0/23
195.3.232.0/22
IPv6:
2a04:4c0::/29
Signature Algorithm: sha256WithRSAEncryption
a6:18:de:a8:78:5a:93:a6:78:5f:ef:33:13:ad:c4:6c:6f:b4:
9e:68:2d:84:93:a9:07:0e:93:3c:d7:3f:ea:d8:bf:60:fb:87:
91:d5:a1:6f:ae:a0:fa:8c:49:73:14:e3:e6:cd:91:2f:ed:8a:
6e:5d:37:0f:ab:72:da:51:a5:69:a5:eb:58:55:a6:70:50:f3:
33:a2:be:0e:26:b4:c6:2e:bb:78:b1:67:3e:7b:be:4f:9a:94:
4b:6a:ea:5b:65:f1:e4:de:f4:30:2f:33:c2:f9:8e:ba:e8:a3:
9a:a7:75:38:d6:6e:d1:4d:6b:48:ee:49:43:eb:7c:33:dd:d2:
e4:e0:7b:1c:36:50:8d:c4:66:a1:b5:84:61:e6:ca:63:4b:a4:
d8:4a:a4:fc:25:a4:21:1a:46:0f:fd:f8:44:0f:aa:b5:2b:eb:
4f:49:3a:4b:33:60:0b:91:74:b0:2f:0d:3c:3c:1f:cf:a3:52:
45:03:56:77:e2:10:0d:a0:ca:3a:6c:c0:48:92:68:46:d7:e9:
e1:70:83:a8:4f:33:a2:7e:77:fb:62:7b:55:7e:89:92:08:83:
f0:bb:86:08:81:8d:89:71:76:10:9c:8c:47:fd:3f:2a:24:31:
57:bf:f4:88:ca:16:e4:c3:c9:c7:e9:e2:97:57:55:2b:df:2f:
5f:c2:c5:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:53 2024 by rpki-client on console-fra.rpki-client.org