Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/7uW4ZR2xwtFyY4U_Qensvyf6_GQ.roa
File: 7uW4ZR2xwtFyY4U_Qensvyf6_GQ.roa (raw, json)
Hash identifier: baIw2opSxoFC8aKDjvktYL1d6Esbkkp/9/4OSpnjwzE=
Subject key identifier: EE:E5:B8:65:1D:B1:C2:D1:72:63:85:3F:41:E9:EC:BF:27:FA:FC:64
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184C75841B432287FCC828495EC1B68102B
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/7uW4ZR2xwtFyY4U_Qensvyf6_GQ.roa
Signing time: Wed 30 Nov 2022 07:02:40 +0000
ROA not before: Wed 30 Nov 2022 07:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 84.32.58.0/24 maxlen: 24
84.32.71.0/24 maxlen: 24
88.216.199.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.93.0/24 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.210.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.238.0/24 maxlen: 24
84.32.245.0/24 maxlen: 24
84.32.48.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.223.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.43.0/24 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:58:41:b4:32:28:7f:cc:82:84:95:ec:1b:68:10:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 30 07:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eee5b8651db1c2d17263853f41e9ecbf27fafc64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:43:6f:37:d5:4e:67:ad:6f:d5:8e:29:21:c8:
bd:1a:32:d9:d5:1b:d0:ce:8e:78:89:16:d2:b3:22:
72:26:24:96:5a:98:51:cc:72:3a:95:81:bd:66:56:
27:da:50:a2:d5:5d:18:f1:9d:3f:bf:e3:36:e8:f2:
47:f7:7e:df:66:3b:23:16:41:98:ec:fd:32:1a:b0:
50:bd:54:89:7e:bf:fd:16:95:fe:0c:54:04:9f:5d:
a5:98:8b:e8:f4:f3:3f:6b:44:a8:52:75:fa:74:f0:
0b:07:85:58:f2:f8:df:7b:b4:cf:6f:78:44:c6:a5:
da:96:c6:72:e6:f3:27:db:6b:bf:60:64:f6:23:6e:
e3:69:a8:8a:d2:23:dd:42:71:d9:5a:14:93:83:fe:
fd:4f:01:4d:1f:ff:ff:b4:f9:63:8c:9c:cc:32:70:
e4:93:f1:7a:8d:c9:3a:2f:b1:a1:f2:bd:79:80:3b:
68:ae:f1:aa:52:06:65:76:c0:bd:ea:19:c4:c2:c6:
c8:97:82:6a:e2:a7:21:27:ee:31:ec:e1:9a:04:85:
04:ab:97:7c:25:68:21:f1:33:60:a6:e7:85:72:7b:
bc:ea:ad:38:e3:f5:aa:0f:0c:a3:7b:ab:ea:fe:9b:
70:f5:ca:58:aa:5a:81:3d:2e:a7:80:88:ad:c0:d9:
13:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E5:B8:65:1D:B1:C2:D1:72:63:85:3F:41:E9:EC:BF:27:FA:FC:64
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/7uW4ZR2xwtFyY4U_Qensvyf6_GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.48.0/24
84.32.50.0/24
84.32.58.0/24
84.32.71.0/24
84.32.88.0/24
84.32.93.0/24
84.32.226.0/24
84.32.238.0/23
84.32.245.0/24
88.216.3.0/24
88.216.21.0-88.216.22.255
88.216.32.0/24
88.216.43.0/24
88.216.46.0/24
88.216.199.0/24
88.216.210.0/23
88.216.223.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f4:e6:05:2b:06:9e:32:2e:9a:c7:1d:f5:e7:3d:69:b0:e8:
a4:67:f7:30:1e:04:00:33:a8:fa:e6:10:0b:58:c2:aa:56:88:
73:4d:1c:80:83:59:b9:39:f6:ed:73:8c:64:06:b4:80:7d:33:
e6:7d:5b:db:e8:29:c6:56:ca:ff:d6:a0:d2:03:94:fc:db:ef:
b5:bd:82:52:71:06:88:9c:b6:56:82:86:59:c3:1a:7f:c4:22:
7e:a0:12:48:93:89:34:83:8c:81:3e:aa:ef:0c:04:37:25:f9:
f2:87:6e:fb:dd:f4:91:2c:41:f5:43:ff:22:0c:2f:1b:62:64:
2e:b7:36:61:88:eb:56:21:cd:82:e9:89:c8:87:46:9f:4f:94:
bd:09:10:d1:a5:6a:19:df:7c:5e:9e:f4:b6:b9:7e:b2:5e:21:
bc:58:96:e4:2f:86:c4:22:55:d2:a2:a5:8b:9d:24:7d:07:a2:
a1:0a:2c:cd:0f:3e:83:8d:7c:62:48:a1:75:2c:ce:9d:39:78:
8f:d1:62:23:18:8d:0c:d8:41:c0:74:27:7b:55:96:1f:40:89:
37:29:59:ea:3a:be:9b:d6:18:35:87:00:bd:f1:62:13:12:f9:
a6:69:dc:c4:dd:bf:ad:ef:43:9c:73:65:97:4b:03:ee:b9:a2:
f0:9c:f7:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org