Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uevwDdUzKKlggyrKv5ZubhOdik0.roa
File: uevwDdUzKKlggyrKv5ZubhOdik0.roa (raw, json)
Hash identifier: LqF3rnasvYkgnS1zfoMuKj4CLAcUZdeuK1+Z78X8goU=
Subject key identifier: B9:EB:F0:0D:D5:33:28:A9:60:83:2A:CA:BF:96:6E:6E:13:9D:8A:4D
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 013DA87E
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uevwDdUzKKlggyrKv5ZubhOdik0.roa
Signing time: Tue 24 May 2022 07:53:13 +0000
ROA not before: Tue 24 May 2022 07:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 84.32.64.0/22 maxlen: 24
84.32.68.0/22 maxlen: 24
88.216.185.0/24 maxlen: 24
88.216.180.0/22 maxlen: 24
84.32.82.0/23 maxlen: 24
88.216.196.0/22 maxlen: 24
88.216.209.0/24 maxlen: 24
88.216.210.0/23 maxlen: 24
88.216.212.0/22 maxlen: 24
84.32.4.0/22 maxlen: 24
84.32.8.0/22 maxlen: 24
84.32.24.0/21 maxlen: 24
84.32.40.0/21 maxlen: 24
88.216.90.0/24 maxlen: 24
88.216.0.0/22 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.19.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20818046 (0x13da87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 24 07:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9ebf00dd53328a960832acabf966e6e139d8a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:de:60:d9:3f:29:d9:02:39:f4:04:29:c0:13:
15:a5:c0:3f:f5:f2:95:2b:56:51:29:0a:88:67:10:
19:1c:a1:0a:da:5f:e4:67:ef:fe:a3:bb:9a:71:56:
0d:9a:ca:28:34:ef:f2:6f:dc:e9:07:e9:a6:56:13:
81:be:c5:de:5a:84:e9:97:ec:cf:8b:58:33:76:11:
2a:77:9b:b1:be:60:19:a9:74:2b:74:3e:17:f3:2a:
a0:5b:87:4f:0a:20:f2:fb:de:79:07:72:0f:d0:29:
25:64:bd:9a:97:30:d9:1f:c5:60:bc:fd:31:81:4b:
09:32:83:09:55:7e:9e:0f:d0:c0:fd:21:97:50:5a:
15:72:88:d5:3b:bc:b8:32:e7:da:f0:57:2f:f2:7e:
7e:4b:a0:f8:c4:d0:47:f6:8d:6a:9d:72:15:e3:f2:
39:7f:7f:b0:cc:f3:e9:97:c7:76:af:99:c3:78:39:
89:6b:a9:e6:ee:e0:83:78:2b:d2:0a:37:60:ac:0b:
ca:fb:56:1e:7e:fe:45:58:5b:46:b5:72:84:57:3c:
c5:30:d1:55:64:3d:56:cc:e2:a1:55:02:45:18:71:
cb:64:17:7b:cf:37:7c:b5:db:ee:a6:1f:d2:df:aa:
fe:43:27:12:7d:5a:bc:32:a2:7a:22:76:fa:67:e6:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:EB:F0:0D:D5:33:28:A9:60:83:2A:CA:BF:96:6E:6E:13:9D:8A:4D
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uevwDdUzKKlggyrKv5ZubhOdik0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0-84.32.11.255
84.32.24.0/21
84.32.40.0/21
84.32.64.0/21
84.32.82.0/23
88.216.0.0/22
88.216.16.0/24
88.216.19.0-88.216.23.255
88.216.32.0/24
88.216.46.0/24
88.216.90.0/24
88.216.180.0/22
88.216.185.0/24
88.216.196.0/22
88.216.209.0-88.216.215.255
Signature Algorithm: sha256WithRSAEncryption
20:a4:b9:81:6a:9c:a0:be:23:40:bc:2c:a2:a0:b2:e6:8b:3a:
b7:00:87:1d:13:e4:da:83:18:c4:01:40:83:46:1a:1c:b8:d3:
b6:31:e7:a4:77:67:45:68:44:a9:8c:b2:53:f4:9e:4a:63:84:
a1:65:21:c3:ec:ed:a5:ea:9b:5d:a4:fa:bb:f9:b0:ea:e8:db:
a5:c1:74:7f:8e:99:a7:f8:31:6c:29:f3:35:6a:9d:73:23:00:
15:2a:99:59:f6:5f:ae:97:a5:01:c6:d5:41:47:d5:40:29:9f:
50:ac:2a:e6:79:ed:cb:99:32:99:0c:c8:27:72:14:86:19:70:
78:68:08:3a:36:43:9a:31:a5:cd:5b:be:b2:f4:66:91:7a:95:
3f:fb:5d:fb:22:d0:32:7b:71:f5:59:b6:d7:75:02:70:1e:c3:
6d:be:38:f7:78:c4:66:fd:3b:98:f2:13:81:4e:0d:f6:16:16:
58:63:b8:71:bf:ba:01:9b:87:21:23:6d:71:29:bf:b2:17:7c:
f1:a3:97:e3:54:9b:88:15:cd:ea:b3:5b:a6:4a:65:ee:dd:3a:
c1:86:f8:2a:db:8d:a1:d9:69:24:90:84:2d:32:5c:d4:35:c9:
8b:ae:ae:51:8f:e9:97:ee:e2:cd:1c:a6:bd:8c:47:62:c2:19:
cf:29:2c:41
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgIEAT2ofjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZmJkNDVmY2UzNTZlMmE2NWYxZTRkMWRhZjc4MTRiNmQ2YmRhM2M1MB4XDTIyMDUy
NDA3NTMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjllYmYwMGRkNTMz
MjhhOTYwODMyYWNhYmY5NjZlNmUxMzlkOGE0ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM3eYNk/KdkCOfQEKcATFaXAP/XylStWUSkKiGcQGRyhCtpf
5Gfv/qO7mnFWDZrKKDTv8m/c6QfpplYTgb7F3lqE6Zfsz4tYM3YRKnebsb5gGal0
K3Q+F/MqoFuHTwog8vveeQdyD9ApJWS9mpcw2R/FYLz9MYFLCTKDCVV+ng/QwP0h
l1BaFXKI1Tu8uDLn2vBXL/J+fkug+MTQR/aNap1yFePyOX9/sMzz6ZfHdq+Zw3g5
iWup5u7gg3gr0go3YKwLyvtWHn7+RVhbRrVyhFc8xTDRVWQ9VszioVUCRRhxy2QX
e883fLXb7qYf0t+q/kMnEn1avDKieiJ2+mfm3S0CAwEAAaOCAnYwggJyMB0GA1Ud
DgQWBBS56/AN1TMoqWCDKsq/lm5uE52KTTAfBgNVHSMEGDAWgBRPvUX841bipl8e
TR2veBS21r2jxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q3MUZfT05XNHFaZkhrMGRyM2dVdHRhOW84VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8x
L3VldndEZFV6S0tsZ2d5ckt2NVp1YmhPZGlrMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
Mzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFjMy8xL1Q3MUZfT05XNHFa
ZkhrMGRyM2dVdHRhOW84VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
iwYIKwYBBQUHAQcBAf8EfDB6MHgEAgABMHIwDAMEAlQgBAMEAlQgCAMEA1QgGAME
A1QgKAMEA1QgQAMEAVQgUgMEAljYAAMEAFjYEDAMAwQAWNgTAwQDWNgQAwQAWNgg
AwQAWNguAwQAWNhaAwQCWNi0AwQAWNi5AwQCWNjEMAwDBABY2NEDBANY2NAwDQYJ
KoZIhvcNAQELBQADggEBACCkuYFqnKC+I0C8LKKgsuaLOrcAhx0T5NqDGMQBQING
Ghy407Yx56R3Z0VoRKmMslP0nkpjhKFlIcPs7aXqm12k+rv5sOro26XBdH+Omaf4
MWwp8zVqnXMjABUqmVn2X66XpQHG1UFH1UApn1CsKuZ57cuZMpkMyCdyFIYZcHho
CDo2Q5oxpc1bvrL0ZpF6lT/7Xfsi0DJ7cfVZttd1AnAew22+OPd4xGb9O5jyE4FO
DfYWFlhjuHG/ugGbhyEjbXEpv7IXfPGjl+NUm4gVzeqzW6ZKZe7dOsGG+CrbjaHZ
aSSQhC0yXNQ1yYuurlGP6Zfu4s0cpr2MR2LCGc8pLEE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org