Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/2dfS4IHkV_Ml8lwmhc8pVHLa3zA.roa
File: 2dfS4IHkV_Ml8lwmhc8pVHLa3zA.roa (raw, json)
Hash identifier: 4hdEn34a9fQzVyirUaxZduKDZdn2EeZB/kqvn1aZTIE=
Subject key identifier: D9:D7:D2:E0:81:E4:57:F3:25:F2:5C:26:85:CF:29:54:72:DA:DF:30
Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Certificate serial: 082F3384
Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/2dfS4IHkV_Ml8lwmhc8pVHLa3zA.roa
Signing time: Sat 01 Jan 2022 13:04:25 +0000
ROA not before: Sat 01 Jan 2022 13:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39156
IP address blocks: 80.76.225.0/24 maxlen: 24
80.76.226.0/24 maxlen: 24
80.76.224.0/20 maxlen: 20
80.76.230.0/24 maxlen: 24
80.76.231.0/24 maxlen: 24
80.76.232.0/24 maxlen: 24
80.76.233.0/24 maxlen: 24
80.76.227.0/24 maxlen: 24
80.76.228.0/24 maxlen: 24
80.76.229.0/24 maxlen: 24
80.76.237.0/24 maxlen: 24
80.76.238.0/24 maxlen: 24
80.76.239.0/24 maxlen: 24
80.76.234.0/24 maxlen: 24
80.76.235.0/24 maxlen: 24
80.76.236.0/24 maxlen: 24
109.235.208.0/21 maxlen: 21
109.235.211.0/24 maxlen: 24
2a03:5200:1::/48 maxlen: 48
2a03:5200:2::/48 maxlen: 48
2a03:5200::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137311108 (0x82f3384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Validity
Not Before: Jan 1 13:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9d7d2e081e457f325f25c2685cf295472dadf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:26:8b:6e:ad:2b:fe:81:e8:6d:09:1a:4c:b9:
49:d4:d5:a6:26:da:f9:cb:09:f5:ce:48:2e:07:74:
88:03:2b:96:3a:f2:0a:6f:6b:82:5f:4c:93:b8:d6:
2f:95:d4:8d:cd:ed:b4:af:0f:20:13:e6:3b:33:b9:
5e:8e:a1:09:9a:b6:1b:7d:3b:f0:16:ec:1d:94:4b:
e2:2f:26:bb:5b:a5:d2:72:7c:dc:3d:02:fe:ad:f2:
8d:a4:ae:99:73:aa:f1:8d:16:67:e4:4c:ca:64:b3:
cf:8a:05:b4:cd:31:c0:a2:7f:10:6e:07:7c:6d:83:
8c:88:e1:b8:0e:ec:3b:b8:04:ba:80:e0:f1:c3:bc:
b5:33:c6:7c:8b:65:4c:7d:10:1b:44:d8:00:33:cb:
11:4c:d0:99:f9:12:60:9f:38:25:02:07:a8:e6:04:
e5:c0:6c:83:39:b6:53:21:a4:77:fb:f6:43:41:fd:
eb:fd:e7:82:c6:e4:d6:3a:b7:8d:f7:16:e6:c1:6d:
c8:e2:bb:b6:4e:98:86:9d:c3:9e:f2:37:f6:29:b2:
ee:39:c6:ef:d7:75:02:4e:f0:af:91:7c:7d:64:6c:
7c:9e:10:69:46:73:ff:3a:a7:33:94:ca:60:a1:cc:
09:40:a3:6b:9c:76:c0:b9:95:27:6f:64:92:ed:e5:
16:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D7:D2:E0:81:E4:57:F3:25:F2:5C:26:85:CF:29:54:72:DA:DF:30
X509v3 Authority Key Identifier:
keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/2dfS4IHkV_Ml8lwmhc8pVHLa3zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.224.0/20
109.235.208.0/21
IPv6:
2a03:5200::-2a03:5200:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4d:cf:88:4a:1d:05:fa:4f:19:2a:f8:09:5c:d5:77:3f:5a:66:
42:16:be:5e:41:de:1d:6e:82:61:5f:5d:fe:8a:79:d7:5f:b5:
ea:c8:c3:60:1c:b7:f2:f8:4b:c2:ad:7b:2b:9e:6e:7a:3f:b3:
38:37:4b:cb:a9:04:51:90:69:b4:d6:29:ea:da:c5:7b:93:c0:
48:59:b5:b3:6d:f3:65:a5:2d:3c:2e:ea:de:93:cd:ef:d9:0e:
72:bf:67:65:2e:a4:1a:07:68:40:04:fc:3d:56:13:20:c4:00:
e0:14:fd:b1:86:3c:65:30:29:d5:83:1b:d6:c7:06:48:ff:68:
80:7e:32:c6:b5:bf:98:dc:01:e5:1f:c0:2c:46:17:05:b2:dc:
07:91:13:cd:cd:14:cc:a7:ee:ec:f2:0d:10:9c:6a:fc:31:b7:
e1:f8:9e:a2:8c:cb:a3:af:99:69:82:dc:82:7a:ee:98:3e:46:
e5:9d:36:80:3f:16:17:a5:ea:ca:fe:62:b0:81:30:d7:c8:9b:
6f:a5:d9:ae:74:7c:89:90:7b:32:12:0c:c4:7b:1a:95:55:d4:
2e:46:63:2c:6a:94:a3:6f:2f:68:69:32:cc:9f:cb:c3:f6:c7:
98:c1:b1:60:1a:8b:ab:c4:5b:8b:ed:ef:b9:b9:f7:7c:e2:b9:
c1:bb:b1:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:32 2024 by rpki-client on console-ams.rpki-client.org