Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/iTG-ndf7joJiUU6a0yOkahPh_tA.roa
File: iTG-ndf7joJiUU6a0yOkahPh_tA.roa (raw, json)
Hash identifier: 3yckXvb0lyNvTaIXbBUm5Zwqvt3miZOnfJ9cki/JvGY=
Subject key identifier: 89:31:BE:9D:D7:FB:8E:82:62:51:4E:9A:D3:23:A4:6A:13:E1:FE:D0
Certificate issuer: /CN=cf40fdd82a0fdf3b70be18221eeba60d801ed7bf
Certificate serial: 0AB43025
Authority key identifier: CF:40:FD:D8:2A:0F:DF:3B:70:BE:18:22:1E:EB:A6:0D:80:1E:D7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0D92CoP3ztwvhgiHuumDYAe178.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/iTG-ndf7joJiUU6a0yOkahPh_tA.roa
Signing time: Tue 21 Jun 2022 11:09:44 +0000
ROA not before: Tue 21 Jun 2022 11:09:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8280
IP address blocks: 185.51.132.0/22 maxlen: 24
185.51.132.0/24 maxlen: 24
185.51.135.0/24 maxlen: 24
185.51.133.0/24 maxlen: 24
46.227.58.0/24 maxlen: 32
46.227.56.0/21 maxlen: 24
46.227.56.0/24 maxlen: 32
46.227.57.0/24 maxlen: 24
46.227.60.0/24 maxlen: 24
46.227.61.0/24 maxlen: 32
46.227.59.0/24 maxlen: 24
46.227.63.0/24 maxlen: 24
46.227.62.0/24 maxlen: 24
78.108.32.0/20 maxlen: 24
78.108.37.0/24 maxlen: 24
78.108.36.0/24 maxlen: 24
78.108.38.0/24 maxlen: 24
78.108.33.0/24 maxlen: 24
78.108.32.0/24 maxlen: 24
78.108.35.0/24 maxlen: 24
78.108.34.0/24 maxlen: 24
78.108.40.0/24 maxlen: 24
78.108.39.0/24 maxlen: 24
78.108.42.0/24 maxlen: 24
78.108.41.0/24 maxlen: 24
78.108.44.0/24 maxlen: 24
78.108.43.0/24 maxlen: 24
78.108.45.0/24 maxlen: 24
78.108.47.0/24 maxlen: 24
78.108.46.0/24 maxlen: 24
2001:1548:7006::/48 maxlen: 48
2001:1548:7001::/48 maxlen: 48
2001:1548::/29 maxlen: 29
2001:1548:7010::/48 maxlen: 48
2001:1548:7009::/48 maxlen: 48
2001:1548:7004::/48 maxlen: 48
2001:1548:7007::/48 maxlen: 48
2001:1548:7002::/48 maxlen: 48
2001:1548:7011::/48 maxlen: 48
2001:1548:7005::/48 maxlen: 48
2001:1548:7000::/48 maxlen: 48
2001:1548:7003::/48 maxlen: 48
2001:1548:7008::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179580965 (0xab43025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40fdd82a0fdf3b70be18221eeba60d801ed7bf
Validity
Not Before: Jun 21 11:09:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8931be9dd7fb8e8262514e9ad323a46a13e1fed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:03:29:23:83:02:f9:7a:db:a5:7a:48:e8:ba:
4e:e9:1d:ae:b6:96:36:11:ab:f2:07:57:21:8b:4f:
21:a3:56:44:bb:ee:51:d5:ed:a9:91:8c:5f:2d:89:
5c:f1:c2:a4:54:f0:a8:e4:9c:4c:27:15:c0:c5:d3:
f7:9e:17:5e:8b:fd:eb:a9:52:3a:55:3b:69:1b:61:
70:24:97:dc:fd:67:0f:83:dd:eb:1f:3d:af:70:25:
5a:cd:fa:8a:72:dd:a8:6f:06:01:cb:70:10:f4:a9:
d6:b7:3f:95:3b:17:f3:e7:4a:40:15:21:01:2d:c2:
30:6b:90:9f:70:d3:27:f1:ef:26:e7:98:ab:7b:c5:
e4:a3:f0:ca:32:e4:43:b2:e4:ef:d6:68:d6:3b:84:
9e:ee:6d:61:2a:69:42:7c:fd:27:7c:17:94:0a:d0:
e6:19:c3:68:72:1e:0c:2a:5b:d3:de:ef:e2:e4:3c:
46:1e:d0:8d:e7:3e:89:a8:e3:e4:3b:d5:d0:71:cc:
aa:ff:36:22:ef:f2:f8:74:e3:38:c7:0a:e7:95:af:
a2:ae:73:0c:08:b7:d1:fc:5e:d1:8a:76:92:55:79:
41:a3:b8:33:a1:cd:59:d5:5b:43:0c:d7:25:44:1b:
43:32:52:cc:24:11:9a:50:e2:7f:32:34:55:82:e6:
83:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:31:BE:9D:D7:FB:8E:82:62:51:4E:9A:D3:23:A4:6A:13:E1:FE:D0
X509v3 Authority Key Identifier:
keyid:CF:40:FD:D8:2A:0F:DF:3B:70:BE:18:22:1E:EB:A6:0D:80:1E:D7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0D92CoP3ztwvhgiHuumDYAe178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/iTG-ndf7joJiUU6a0yOkahPh_tA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/792737-6a02-424b-82cb-a29ce7da10fd/1/z0D92CoP3ztwvhgiHuumDYAe178.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.56.0/21
78.108.32.0/20
185.51.132.0/22
IPv6:
2001:1548::/29
Signature Algorithm: sha256WithRSAEncryption
45:f7:52:c7:0c:6f:68:1d:6b:34:61:de:31:16:c9:38:9f:dc:
59:2b:0f:31:dd:68:b7:b4:b2:3e:07:f8:21:7a:5c:34:d3:60:
1e:09:49:c3:a0:77:42:c4:0c:4d:ef:d5:ae:7e:58:01:99:26:
c1:92:f3:13:fc:75:10:96:de:86:ea:ee:47:77:23:ef:c9:d9:
02:85:f4:c4:7f:30:34:15:34:55:b8:df:3e:28:5e:c6:da:5f:
15:09:8d:b9:6e:7a:3e:b8:ab:8f:3e:c2:f4:7a:70:c0:14:de:
c5:e4:b5:88:16:12:d2:c7:15:8d:7e:fe:e4:f9:b0:26:75:9e:
93:ea:ca:0b:c7:ca:3b:8b:bd:37:7d:07:96:4d:2c:d7:a4:f0:
3d:0f:7b:14:15:83:be:5a:b2:7b:26:fe:33:d3:92:c2:b5:c9:
29:11:4f:d4:d1:c3:05:4d:48:c9:b0:b8:3c:8c:c9:d3:e0:5c:
82:71:d1:92:45:b5:56:d4:45:39:98:65:cb:13:9f:26:58:6c:
1e:36:5f:c3:05:78:18:21:62:ed:86:e9:43:8f:7d:c7:6e:05:
0b:74:2b:b9:bd:85:24:ef:05:6f:a4:74:43:0a:3f:e0:41:e9:
27:81:b2:eb:c6:31:40:9d:6f:86:e8:98:0f:76:3e:05:51:ca:
b2:b7:3b:c8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org