Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/r1QrtacW66VQF7Q5UuLKeYhXvxI.roa
File: r1QrtacW66VQF7Q5UuLKeYhXvxI.roa (raw, json)
Hash identifier: +ACtXfDAK6GtJauKKZg9KssbYDoi65C3lK1q4KpbgV0=
Subject key identifier: AF:54:2B:B5:A7:16:EB:A5:50:17:B4:39:52:E2:CA:79:88:57:BF:12
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184804741EF478AA2216F3E11D6496D2273
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/r1QrtacW66VQF7Q5UuLKeYhXvxI.roa
Signing time: Wed 16 Nov 2022 11:51:04 +0000
ROA not before: Wed 16 Nov 2022 11:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 88.216.188.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
84.32.227.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.63.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.86.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.42.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.49.0/24 maxlen: 24
88.216.91.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.103.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:47:41:ef:47:8a:a2:21:6f:3e:11:d6:49:6d:22:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 16 11:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af542bb5a716eba55017b43952e2ca798857bf12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:78:94:e6:2b:52:58:82:1e:31:b8:02:75:bb:
91:72:30:be:b7:f0:df:98:19:dc:44:32:45:d3:0b:
56:93:f0:35:b4:28:a1:f7:7e:98:72:80:c0:28:5b:
8d:fe:d4:65:89:30:a3:47:6a:0e:d7:2d:a3:a2:26:
e0:03:1f:1a:3b:f2:c6:6a:17:ad:07:8a:5b:12:32:
82:39:f8:4f:d0:2c:36:4b:af:0b:ee:d6:c0:9c:35:
db:04:a4:d5:89:ef:0c:7d:06:71:67:e3:f5:46:ac:
d4:3b:65:0b:64:b4:77:8a:57:e0:fb:39:c0:3f:da:
af:9d:d6:47:7a:f5:39:b6:79:91:d8:d2:69:c9:ac:
59:c6:cc:ab:2b:e6:85:78:16:0f:6a:20:3a:6c:17:
16:31:a3:a8:6c:b3:db:4f:1e:f0:ea:54:c0:6c:d7:
b1:37:02:c0:be:85:8e:d7:f3:b4:a4:bd:97:ac:d3:
0e:5c:4a:59:76:c2:08:6f:3f:34:09:3e:6c:4f:27:
54:4d:2f:11:35:73:12:f1:07:de:fc:93:21:88:cd:
c2:ad:9b:4e:0b:c5:0b:39:84:7d:e2:bd:ad:c2:a0:
cf:cd:8b:60:e3:e2:e1:65:2d:19:93:df:78:a0:3b:
c5:3f:86:2b:c7:c5:bd:c4:69:11:63:11:54:62:12:
07:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:54:2B:B5:A7:16:EB:A5:50:17:B4:39:52:E2:CA:79:88:57:BF:12
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/r1QrtacW66VQF7Q5UuLKeYhXvxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.42.0/24
84.32.44.0/24
84.32.46.0/23
84.32.49.0/24
84.32.60.0/24
84.32.63.0/24
84.32.65.0-84.32.66.255
84.32.68.0/24
84.32.86.0/24
84.32.90.0/24
84.32.92.0/24
84.32.94.0/24
84.32.227.0/24
84.32.255.0/24
88.216.2.0/24
88.216.35.0/24
88.216.40.0/24
88.216.91.0/24
88.216.102.0/23
88.216.188.0/24
88.216.190.0/23
88.216.198.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d0:92:5b:9d:48:f9:bd:c6:39:4d:da:72:ae:f0:4e:36:4b:
ae:89:44:27:36:40:02:ff:7d:e0:e0:44:51:7d:5c:1a:7d:e8:
f2:96:71:ef:30:5d:60:48:e3:27:63:6f:58:42:5c:e2:41:2d:
58:44:77:ea:f7:38:95:43:38:e3:30:08:bf:2b:e2:9a:92:17:
52:66:93:61:66:f7:7b:f7:f4:ca:0a:94:d3:f4:0e:6c:25:88:
9b:d2:f5:c9:3c:69:6b:04:96:56:a0:d9:e9:e0:df:c7:1f:c5:
33:08:31:2d:fa:cc:01:c7:c2:92:6c:0e:fa:09:84:96:76:d5:
e8:1d:17:a9:01:ea:30:06:71:9c:c3:8c:c8:aa:f2:f2:c7:0b:
8b:fc:00:67:09:a5:8f:e3:ef:cd:b0:2b:5a:a5:9b:a6:64:f4:
af:49:58:11:30:3e:69:bc:aa:b5:5f:9d:3f:31:75:87:2e:69:
20:bd:36:cf:c0:b1:be:2f:a5:3c:3b:fd:86:51:20:ca:97:8a:
8e:f9:7d:73:d5:33:19:8d:7a:5a:4b:2d:59:bb:ac:73:7f:cc:
07:af:ff:bc:da:fd:d4:f6:83:f1:01:f1:97:d1:fd:ce:6f:13:
bc:21:2b:5c:a3:81:5b:27:3e:63:6f:07:e0:f5:ba:cc:03:32:
dc:0a:77:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:32 2024 by rpki-client on console-ams.rpki-client.org