Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/4lOj3qn7Y_2jEGMqMeVJ6wPLNKI.roa
File: 4lOj3qn7Y_2jEGMqMeVJ6wPLNKI.roa (raw, json)
Hash identifier: lw0Xv1mz0xyN3ou1QYPp73Cq6R6p1rtn4ykyJFBGWpg=
Subject key identifier: E2:53:A3:DE:A9:FB:63:FD:A3:10:63:2A:31:E5:49:EB:03:CB:34:A2
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 018484F2EFF1A9FC7BF20CCF6BBCEEEDE453
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/4lOj3qn7Y_2jEGMqMeVJ6wPLNKI.roa
Signing time: Thu 17 Nov 2022 09:37:04 +0000
ROA not before: Thu 17 Nov 2022 09:37:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43927
IP address blocks: 77.81.240.0/21 maxlen: 24
185.250.105.0/24 maxlen: 24
185.250.104.0/24 maxlen: 24
185.250.107.0/24 maxlen: 24
185.250.106.0/24 maxlen: 24
93.113.174.0/24 maxlen: 24
185.199.172.0/24 maxlen: 24
185.199.174.0/24 maxlen: 24
185.199.173.0/24 maxlen: 24
185.199.175.0/24 maxlen: 24
188.240.47.0/24 maxlen: 24
92.114.98.0/24 maxlen: 24
46.102.240.0/21 maxlen: 24
91.188.224.0/24 maxlen: 24
91.188.226.0/24 maxlen: 24
91.188.225.0/24 maxlen: 24
91.188.227.0/24 maxlen: 24
89.33.197.0/24 maxlen: 24
185.105.32.0/22 maxlen: 22
185.125.108.0/24 maxlen: 24
185.125.110.0/23 maxlen: 24
89.45.248.0/21 maxlen: 24
89.32.144.0/21 maxlen: 21
188.241.112.0/21 maxlen: 24
2a06:cd40:cafe::/48 maxlen: 48
2a06:cd40:2::/48 maxlen: 48
2a06:cd40:300::/48 maxlen: 64
2a06:cd40:200::/48 maxlen: 48
2a06:cd40:100::/48 maxlen: 48
2a06:cd40:400::/48 maxlen: 48
2a06:cd40:caff::/48 maxlen: 48
2a06:cd40:1::/48 maxlen: 48
2a06:cd40:301::/48 maxlen: 64
2a06:cd40:101::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:84:f2:ef:f1:a9:fc:7b:f2:0c:cf:6b:bc:ee:ed:e4:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Nov 17 09:37:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e253a3dea9fb63fda310632a31e549eb03cb34a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:95:16:89:c9:4d:6b:5c:d4:94:0e:30:52:aa:
b0:fa:53:46:3f:6e:ff:3d:8a:c2:b8:1c:69:21:9a:
71:50:f1:c3:9d:cb:ee:fa:85:04:2f:c9:48:1b:f2:
8b:a4:5e:a7:1a:14:43:74:0d:74:c0:f7:3f:d9:f5:
10:9a:1f:aa:bd:30:f3:9c:36:0f:e7:73:c9:9f:48:
d8:03:25:73:75:c9:e2:aa:00:2f:41:52:7a:af:d4:
58:1a:41:48:31:28:63:df:36:35:f3:88:7a:0a:6d:
7c:0e:63:97:d0:ba:ba:34:c6:06:50:ed:d4:06:f3:
cf:21:35:71:01:79:6b:bf:70:d7:9f:1a:f3:5a:5c:
4d:88:3d:90:61:c5:df:00:ca:24:b4:bf:c4:67:dd:
a4:fc:3d:5f:1c:3e:ca:6f:fb:0d:63:07:96:8e:65:
64:8a:06:93:c7:5c:8f:67:bc:bf:96:15:20:4c:6d:
73:83:af:74:d9:ce:ed:aa:6d:a9:f2:77:4f:a4:e5:
c1:2b:9f:10:5c:dd:c9:87:1d:39:4e:36:95:d9:d9:
7e:39:3e:a7:41:13:d4:31:78:50:e7:9b:4b:5c:0b:
f1:eb:06:6a:af:5c:bb:4c:d9:bf:88:bc:bf:96:75:
7b:b3:2a:e6:5d:00:d8:69:bb:1f:da:27:41:b7:a8:
e9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:53:A3:DE:A9:FB:63:FD:A3:10:63:2A:31:E5:49:EB:03:CB:34:A2
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/4lOj3qn7Y_2jEGMqMeVJ6wPLNKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.240.0/21
77.81.240.0/21
89.32.144.0/21
89.33.197.0/24
89.45.248.0/21
91.188.224.0/22
92.114.98.0/24
93.113.174.0/24
185.105.32.0/22
185.125.108.0/24
185.125.110.0/23
185.199.172.0/22
185.250.104.0/22
188.240.47.0/24
188.241.112.0/21
IPv6:
2a06:cd40:1::-2a06:cd40:2:ffff:ffff:ffff:ffff:ffff
2a06:cd40:100::/47
2a06:cd40:200::/48
2a06:cd40:300::/47
2a06:cd40:400::/48
2a06:cd40:cafe::/47
Signature Algorithm: sha256WithRSAEncryption
93:51:fc:54:66:d1:49:73:2f:cf:27:c6:c1:10:e3:9d:83:61:
34:ed:c7:65:99:09:d7:30:37:9b:7a:14:54:03:ec:35:93:a3:
39:94:ed:42:92:09:cc:01:c2:a6:f8:14:12:b0:94:95:2e:22:
5a:c5:54:f0:1f:9a:a0:3a:bc:bf:d3:9d:cd:a7:90:11:75:9d:
78:e2:3d:4c:83:fb:92:93:55:9a:0b:75:15:81:55:d0:bf:de:
65:b8:ee:9c:f9:6c:d6:b2:cf:2d:f9:cd:d9:32:dc:3c:e8:6a:
a4:c1:06:de:78:b0:cb:d0:2d:49:9d:80:c1:a0:bb:0c:cf:2e:
4f:84:ba:0a:2d:f5:73:ee:cd:a7:8e:0f:22:68:76:9b:88:4c:
da:3f:3c:2e:31:71:92:16:88:7d:a6:c9:65:a0:f9:69:44:fd:
a7:6c:80:9c:ba:2c:5d:f9:58:f5:d0:e7:26:5d:b9:49:ba:9a:
36:d1:5c:29:b3:48:fa:0c:b0:88:80:6e:22:cd:67:a8:20:ab:
75:cf:e7:29:72:ea:a5:ca:a6:92:88:43:94:c9:a3:cc:8f:9a:
97:27:46:da:a4:60:1f:d4:83:37:2d:87:d3:7e:e7:41:32:52:
d9:77:8c:11:55:cc:47:8a:68:d7:1e:2a:61:1d:b2:64:32:73:
84:80:12:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:45 2024 by rpki-client on console-fra.rpki-client.org