Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GVYH4nAX6X7qZeCKvcFaX2ApJJk.roa
File: GVYH4nAX6X7qZeCKvcFaX2ApJJk.roa (raw, json)
Hash identifier: Pf4QuVL1XPjC8i3EujYSuWbd4DOMPaoo+QYzWTSfjDI=
Subject key identifier: 19:56:07:E2:70:17:E9:7E:EA:65:E0:8A:BD:C1:5A:5F:60:29:24:99
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01836F7E4112362A8AA48EBACD76640FC121
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GVYH4nAX6X7qZeCKvcFaX2ApJJk.roa
Signing time: Sat 24 Sep 2022 12:34:48 +0000
ROA not before: Sat 24 Sep 2022 12:34:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 84.32.60.0/22 maxlen: 24
84.32.76.0/24 maxlen: 24
88.216.188.0/22 maxlen: 24
88.216.187.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.92.0/22 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.34.0/24 maxlen: 24
84.32.40.0/22 maxlen: 24
88.216.90.0/23 maxlen: 24
88.216.100.0/22 maxlen: 24
88.216.18.0/24 maxlen: 24
88.216.248.0/22 maxlen: 24
88.216.36.0/22 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.43.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6f:7e:41:12:36:2a:8a:a4:8e:ba:cd:76:64:0f:c1:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 24 12:34:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=195607e27017e97eea65e08abdc15a5f60292499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:79:34:30:f6:1f:71:36:47:70:81:3e:08:e6:
70:76:0d:e3:a6:07:cf:e5:82:cb:77:00:f0:31:40:
88:6f:c2:44:b5:3a:4f:2b:59:28:7a:50:df:7d:bc:
49:50:29:00:04:27:51:45:68:93:68:ad:2b:6a:41:
20:d5:25:b4:d1:b8:a8:1a:a4:80:44:63:55:82:11:
6c:1e:6b:9f:54:85:6a:bb:3f:1a:db:ef:3d:d6:6e:
00:d3:9b:10:78:6c:3d:4e:2d:5b:e5:52:68:4f:98:
86:0f:b9:6c:da:80:a8:a2:d4:2a:24:c7:81:23:23:
ea:e1:5d:2f:9a:60:a0:d6:38:bd:cc:f7:42:b2:2e:
cf:5d:ec:d1:1a:02:a2:f5:40:a9:72:1f:1b:70:93:
ac:62:47:72:ee:18:a9:d2:ef:d3:2d:5e:b8:d2:8c:
0f:3e:60:ee:7f:92:ec:4c:f6:cd:03:0a:6d:bd:0c:
5d:0f:a0:31:14:61:43:f2:66:62:02:01:d4:b3:50:
12:d2:47:d8:14:2d:54:2e:53:f0:c5:29:77:4b:a8:
71:0e:26:d3:c1:62:bb:f2:74:fc:a5:11:07:75:f7:
8d:86:31:fa:7b:51:dd:00:02:b3:44:3f:4c:a1:6a:
36:20:b2:7a:33:96:9f:98:3f:a4:51:d0:75:61:93:
86:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:56:07:E2:70:17:E9:7E:EA:65:E0:8A:BD:C1:5A:5F:60:29:24:99
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GVYH4nAX6X7qZeCKvcFaX2ApJJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.14.0/24
84.32.34.0/24
84.32.40.0/22
84.32.60.0/22
84.32.76.0/24
84.32.88.0/24
84.32.92.0/22
88.216.18.0/24
88.216.35.0-88.216.41.255
88.216.43.0/24
88.216.90.0/23
88.216.100.0/22
88.216.187.0-88.216.191.255
88.216.248.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:fb:e0:2a:51:52:99:59:c3:14:9a:ff:2f:fb:75:9d:cf:af:
29:bf:79:a0:9a:14:1b:0c:f5:4b:b2:7a:9a:7c:f7:6f:cd:2a:
ab:66:61:09:01:e8:71:0a:a1:df:9e:fa:a1:73:b4:5b:9b:78:
69:10:40:a4:aa:8d:84:49:71:2c:86:df:93:74:65:09:75:87:
c6:ac:28:ff:52:0a:7d:36:e3:d2:88:15:41:75:46:5b:af:af:
32:26:59:07:9f:f1:22:39:21:da:fd:91:98:49:9a:69:d0:da:
14:d5:32:ba:f9:55:19:a0:4b:30:86:07:2e:1a:7e:f5:41:5b:
1c:6d:2d:ca:b3:3d:17:df:bd:21:04:73:70:6a:75:b0:e7:0e:
45:b7:77:fb:d3:a9:97:9f:16:65:bd:7d:fb:79:7a:fa:a2:79:
c1:38:2d:83:7f:10:01:39:77:c5:bf:fe:65:36:44:b1:46:ae:
74:2e:99:7b:e4:5c:1b:a0:1e:06:93:98:b6:c5:36:06:70:8a:
6b:47:fd:61:12:aa:54:f3:f3:d0:57:92:4c:e2:09:b2:01:30:
1f:c8:59:83:78:32:4b:b8:c7:67:03:7d:f9:65:4e:29:a7:ff:
9c:ea:7e:c5:e6:ea:45:12:77:f5:b9:f0:64:cb:cc:65:a6:0e:
d7:46:14:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org