Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/MatiI7oiswnRHN0vR8godjzycyk.roa
File: MatiI7oiswnRHN0vR8godjzycyk.roa (raw, json)
Hash identifier: Ao0kvPPTVNV01LZaD6/Dd2OVvZh0DrbSgKM8runtE60=
Subject key identifier: 31:AB:62:23:BA:22:B3:09:D1:1C:DD:2F:47:C8:28:76:3C:F2:73:29
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0150A166
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/MatiI7oiswnRHN0vR8godjzycyk.roa
Signing time: Wed 01 Jun 2022 15:41:23 +0000
ROA not before: Wed 01 Jun 2022 15:41:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 84.32.64.0/22 maxlen: 24
84.32.68.0/22 maxlen: 24
88.216.180.0/22 maxlen: 24
84.32.82.0/23 maxlen: 24
88.216.196.0/22 maxlen: 24
88.216.209.0/24 maxlen: 24
88.216.210.0/23 maxlen: 24
88.216.212.0/22 maxlen: 24
84.32.4.0/22 maxlen: 24
84.32.8.0/22 maxlen: 24
84.32.24.0/21 maxlen: 24
84.32.40.0/21 maxlen: 24
88.216.90.0/24 maxlen: 24
88.216.0.0/22 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.19.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22061414 (0x150a166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 1 15:41:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ab6223ba22b309d11cdd2f47c828763cf27329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:26:78:1b:6e:02:43:71:ed:82:e1:0c:77:60:
9e:06:9b:ae:2a:48:56:21:60:a8:6d:4a:46:c6:47:
f0:b4:b6:0e:9f:71:1d:ad:69:92:1a:98:87:f9:88:
fb:df:96:83:21:58:6b:ce:98:e4:bc:41:0b:c8:e2:
65:b9:81:06:1c:d5:36:51:06:64:92:2f:07:04:71:
38:9e:2f:59:06:c1:e9:b8:f0:e9:46:be:a6:32:ba:
a9:66:f2:4b:01:7a:b4:25:5b:7b:f2:4b:05:02:93:
ba:98:ed:a2:1d:25:41:4d:4c:6d:67:9d:a8:f9:04:
f8:99:80:e5:4d:f6:25:c8:fd:fb:40:23:27:67:63:
8f:4c:f7:15:d4:32:2a:b7:d3:62:fd:aa:d8:33:54:
3c:29:8a:ed:c9:63:3a:98:a3:67:5b:71:32:c4:0d:
d9:56:4d:4c:f6:8b:14:70:c1:99:e9:73:64:6f:e4:
da:72:cf:3d:af:6a:27:ed:d0:d0:16:68:3d:1d:9c:
dd:17:fc:20:96:42:92:5f:5f:1c:28:a4:bf:91:6e:
ae:23:71:13:4c:65:6c:b6:14:97:4f:33:59:99:2e:
17:30:fd:4a:13:54:5e:cc:9c:92:15:7b:4e:01:20:
7b:66:1a:31:86:c0:2d:94:0b:6a:bb:b0:13:fb:19:
31:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AB:62:23:BA:22:B3:09:D1:1C:DD:2F:47:C8:28:76:3C:F2:73:29
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/MatiI7oiswnRHN0vR8godjzycyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0-84.32.11.255
84.32.24.0/21
84.32.40.0/21
84.32.64.0/21
84.32.82.0/23
88.216.0.0/22
88.216.16.0/24
88.216.19.0-88.216.23.255
88.216.32.0/24
88.216.46.0/24
88.216.90.0/24
88.216.180.0/22
88.216.196.0/22
88.216.209.0-88.216.215.255
Signature Algorithm: sha256WithRSAEncryption
5d:33:01:d7:a3:c3:58:a2:74:3b:da:f0:d1:90:3d:6a:e7:60:
ca:fc:38:d7:e1:48:de:2b:ec:0c:f2:13:ff:b7:69:b6:3a:86:
76:9a:3a:72:a1:dd:43:d6:2f:ad:fd:8d:39:cc:a9:70:32:7c:
be:cf:e5:b2:6c:2a:8d:61:1b:72:18:aa:17:99:aa:2a:39:a3:
9e:84:1d:53:94:a0:52:16:2b:ab:24:1e:91:77:b2:b8:74:97:
d9:ad:e8:a1:db:42:fb:ec:56:c4:4c:8b:6b:24:5c:5d:21:44:
58:79:bf:2f:31:5f:57:c0:81:64:7c:da:fc:b6:47:67:cf:2c:
ca:a3:00:9a:28:5f:bd:6e:0c:88:73:30:88:14:5b:18:ea:87:
d1:2f:fe:b8:71:8d:44:27:cb:e0:ad:a9:39:aa:9e:9f:86:ba:
8d:08:cb:9d:da:ca:55:36:c4:98:95:d1:4e:54:4a:e5:e9:0c:
c7:b5:5c:e9:ee:2f:82:46:46:aa:db:ad:db:92:30:dd:7c:41:
e0:a2:a3:1b:68:36:f8:f1:3a:f5:91:6c:d1:1b:1b:46:1e:ae:
54:35:10:c8:b0:b3:ef:fa:61:fb:14:6b:40:6b:42:e1:b5:1d:
61:87:a9:9a:16:fa:0a:5a:63:b3:7a:12:91:fc:1f:f5:6b:90:
55:e0:6a:fb
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgIEAVChZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZmJkNDVmY2UzNTZlMmE2NWYxZTRkMWRhZjc4MTRiNmQ2YmRhM2M1MB4XDTIyMDYw
MTE1NDEyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzFhYjYyMjNiYTIy
YjMwOWQxMWNkZDJmNDdjODI4NzYzY2YyNzMyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJsmeBtuAkNx7YLhDHdgngabripIViFgqG1KRsZH8LS2Dp9x
Ha1pkhqYh/mI+9+WgyFYa86Y5LxBC8jiZbmBBhzVNlEGZJIvBwRxOJ4vWQbB6bjw
6Ua+pjK6qWbySwF6tCVbe/JLBQKTupjtoh0lQU1MbWedqPkE+JmA5U32Jcj9+0Aj
J2djj0z3FdQyKrfTYv2q2DNUPCmK7cljOpijZ1txMsQN2VZNTPaLFHDBmelzZG/k
2nLPPa9qJ+3Q0BZoPR2c3Rf8IJZCkl9fHCikv5FuriNxE0xlbLYUl08zWZkuFzD9
ShNUXsyckhV7TgEge2YaMYbALZQLaruwE/sZMecCAwEAAaOCAnAwggJsMB0GA1Ud
DgQWBBQxq2IjuiKzCdEc3S9HyCh2PPJzKTAfBgNVHSMEGDAWgBRPvUX841bipl8e
TR2veBS21r2jxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q3MUZfT05XNHFaZkhrMGRyM2dVdHRhOW84VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8x
L01hdGlJN29pc3duUkhOMHZSOGdvZGp6eWN5ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
Mzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8xL1Q3MUZfT05XNHFa
ZkhrMGRyM2dVdHRhOW84VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
hQYIKwYBBQUHAQcBAf8EdjB0MHIEAgABMGwwDAMEAlQgBAMEAlQgCAMEA1QgGAME
A1QgKAMEA1QgQAMEAVQgUgMEAljYAAMEAFjYEDAMAwQAWNgTAwQDWNgQAwQAWNgg
AwQAWNguAwQAWNhaAwQCWNi0AwQCWNjEMAwDBABY2NEDBANY2NAwDQYJKoZIhvcN
AQELBQADggEBAF0zAdejw1iidDva8NGQPWrnYMr8ONfhSN4r7AzyE/+3abY6hnaa
OnKh3UPWL639jTnMqXAyfL7P5bJsKo1hG3IYqheZqio5o56EHVOUoFIWK6skHpF3
srh0l9mt6KHbQvvsVsRMi2skXF0hRFh5vy8xX1fAgWR82vy2R2fPLMqjAJooX71u
DIhzMIgUWxjqh9Ev/rhxjUQny+CtqTmqnp+Guo0Iy53aylU2xJiV0U5USuXpDMe1
XOnuL4JGRqrbrduSMN18QeCioxtoNvjxOvWRbNEbG0YerlQ1EMiws+/6YfsUa0Br
QuG1HWGHqZoW+gpaY7N6EpH8H/VrkFXgavs=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:29 2023 by rpki-client on console-ams.rpki-client.org