Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/gb4vphXmGKvnGrsSIMeYbYzKxwA.roa
File: gb4vphXmGKvnGrsSIMeYbYzKxwA.roa (raw, json)
Hash identifier: vRuxx0q7MUhftwdX3IHrhO6/sFncOK7J3QN8enJ/tTc=
Subject key identifier: 81:BE:2F:A6:15:E6:18:AB:E7:1A:BB:12:20:C7:98:6D:8C:CA:C7:00
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01850F6546921352D942D9C4F085093668CC
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/gb4vphXmGKvnGrsSIMeYbYzKxwA.roa
Signing time: Wed 14 Dec 2022 06:49:33 +0000
ROA not before: Wed 14 Dec 2022 06:49:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 84.32.59.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
84.32.86.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
88.216.209.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.227.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:65:46:92:13:52:d9:42:d9:c4:f0:85:09:36:68:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 14 06:49:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81be2fa615e618abe71abb1220c7986d8ccac700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:47:73:56:a7:96:6d:cf:93:ed:ef:86:87:6e:
d5:af:79:ef:f1:ba:cf:5a:40:d1:fc:0e:1e:38:f9:
76:65:ce:f8:78:a3:e3:62:6e:c1:31:c3:97:75:6a:
ae:d6:62:df:f6:00:4a:9f:eb:e4:cb:d6:50:b1:e0:
15:7d:e4:8e:17:8e:33:46:6d:55:e0:70:94:39:4c:
f4:ee:34:84:50:00:3c:4a:d4:74:6c:3d:7f:5c:9b:
8d:23:a1:87:cc:a7:2e:cb:d4:36:b3:db:fa:82:c2:
ac:ab:cf:d0:45:c2:28:7c:82:6d:d0:bf:a3:1e:02:
83:a9:ff:b3:3b:e4:75:d0:1a:ea:5f:7a:9c:cc:f9:
87:8c:3e:d2:a8:b0:6b:20:99:d0:e1:33:67:8b:d3:
df:4f:5d:2e:6f:cf:d1:fc:2a:ec:89:18:95:3a:15:
d2:7e:d2:31:93:a4:6b:bc:d7:de:2a:bb:d4:b4:f6:
8e:ff:a4:ce:da:da:66:1c:fe:96:6d:5d:b2:11:74:
a7:4c:82:db:56:cd:13:49:25:e1:a1:c8:0f:99:85:
b4:e3:ff:17:ae:2b:80:56:ed:f8:bc:75:70:c5:f9:
c7:e1:9f:ac:89:8a:7c:3c:3e:cd:9a:02:b1:1a:0a:
3f:38:1e:85:d4:9f:db:8e:be:1b:27:80:ab:0b:0d:
05:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BE:2F:A6:15:E6:18:AB:E7:1A:BB:12:20:C7:98:6D:8C:CA:C7:00
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/gb4vphXmGKvnGrsSIMeYbYzKxwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.28.0/24
84.32.30.0/24
84.32.44.0/24
84.32.46.0/23
84.32.59.0-84.32.60.255
84.32.65.0-84.32.66.255
84.32.68.0/24
84.32.86.0/24
84.32.90.0/24
84.32.92.0/24
84.32.94.0/24
84.32.225.0/24
84.32.227.0/24
84.32.255.0/24
88.216.95.0/24
88.216.102.0/23
88.216.188.0/24
88.216.191.0/24
88.216.198.0/24
88.216.209.0/24
Signature Algorithm: sha256WithRSAEncryption
44:1d:08:58:75:49:f8:ae:3e:32:0a:32:29:cb:67:6b:93:e8:
d0:70:9e:56:75:38:c9:7f:21:05:b5:f4:11:4b:97:ab:61:6f:
01:3e:85:7a:99:3a:a7:36:80:fc:0a:58:e4:24:58:e4:28:a2:
0e:84:a9:b3:2f:2e:07:46:c8:2a:43:d4:d8:4a:25:f7:73:2d:
43:cf:2b:08:b5:4c:50:04:56:9d:95:e4:a5:a3:68:e8:20:ec:
b8:da:10:a0:c7:a8:ea:bf:8e:48:03:df:c8:35:89:70:96:56:
aa:22:5c:dc:da:22:1d:4c:7b:b0:b0:77:b6:4a:eb:7a:38:70:
c4:94:6d:e4:61:17:cd:a2:06:e1:e7:df:2f:78:1e:fc:78:65:
f0:ca:7c:73:cc:c9:be:c9:6a:c0:9c:80:1a:f1:a0:7e:d2:ea:
bc:f5:94:b8:39:fa:db:8f:10:80:93:14:e2:e0:42:cd:93:19:
9e:7c:6d:13:96:b8:7a:b4:d1:33:cb:d0:ac:a9:bd:91:57:79:
96:d4:cb:84:f7:2e:f1:f5:a0:ff:4e:de:e1:b9:b5:20:84:09:
aa:f7:99:43:e2:9e:98:94:bc:3e:2b:80:54:09:f3:ca:cd:38:
2a:1f:f5:7f:1a:64:55:c8:97:7d:5b:81:ab:a3:a6:33:26:5a:
c2:a8:c6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:30 2024 by rpki-client on console-ams.rpki-client.org