Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Gf2EY1GONg-AXUi2PE4NQBATOTY.roa
File: Gf2EY1GONg-AXUi2PE4NQBATOTY.roa (raw, json)
Hash identifier: JswI3sZ6u6AjaBnKchMTPj0YzMbeFScFOf7ES6y/Mq8=
Subject key identifier: 19:FD:84:63:51:8E:36:0F:80:5D:48:B6:3C:4E:0D:40:10:13:39:36
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 01831C9EA91952CD07CE0491A6A029A24FF9
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Gf2EY1GONg-AXUi2PE4NQBATOTY.roa
Signing time: Thu 08 Sep 2022 10:21:43 +0000
ROA not before: Thu 08 Sep 2022 10:21:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20485
IP address blocks: 80.76.240.0/20 maxlen: 24
145.255.136.0/21 maxlen: 21
80.237.0.0/17 maxlen: 17
188.43.0.0/16 maxlen: 16
62.33.0.0/16 maxlen: 16
213.137.230.0/23 maxlen: 23
213.137.232.0/23 maxlen: 24
213.137.236.0/22 maxlen: 24
213.137.240.0/21 maxlen: 24
213.137.248.0/21 maxlen: 24
83.234.0.0/16 maxlen: 16
89.237.32.0/22 maxlen: 24
89.237.37.0/24 maxlen: 24
89.237.44.0/24 maxlen: 24
89.237.41.0/24 maxlen: 24
89.237.43.0/24 maxlen: 24
89.237.46.0/24 maxlen: 24
89.237.45.0/24 maxlen: 24
62.33.111.0/24 maxlen: 24
89.237.55.0/24 maxlen: 24
217.150.32.0/19 maxlen: 19
185.50.216.0/22 maxlen: 24
81.18.144.0/24 maxlen: 24
80.82.160.0/19 maxlen: 19
185.13.160.0/22 maxlen: 22
213.141.240.0/22 maxlen: 22
151.237.240.0/21 maxlen: 24
213.141.247.0/24 maxlen: 24
195.246.122.0/23 maxlen: 24
217.148.208.0/20 maxlen: 24
2a00:1e48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:9e:a9:19:52:cd:07:ce:04:91:a6:a0:29:a2:4f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Sep 8 10:21:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19fd8463518e360f805d48b63c4e0d4010133936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:81:a2:1d:b9:a1:85:ea:4f:2b:c4:ad:63:bd:
d4:16:fa:cc:b9:84:0d:04:41:b1:ac:18:cb:62:92:
1f:be:49:de:aa:cf:11:23:e0:86:2e:44:1e:6c:3d:
11:69:6e:e6:aa:a9:6a:98:01:31:b3:a5:3f:69:30:
ba:7a:d2:5c:b3:c4:98:3f:b4:e0:63:3d:f7:6a:d6:
14:d5:cd:be:b8:de:d3:2c:02:f8:cf:20:55:54:06:
ac:df:78:e2:a8:9b:26:da:92:87:06:db:84:c7:b0:
ea:a4:cd:a5:94:1a:4a:63:c6:95:0f:d7:3c:56:66:
82:f2:d9:00:27:d0:bd:e6:10:a0:cb:6d:ed:8d:78:
eb:78:1e:5f:37:a1:88:27:3d:79:35:40:f0:4d:47:
d4:f5:14:e4:05:e8:f8:76:cc:39:85:db:79:7e:92:
7d:d2:7d:34:93:5c:87:d5:46:a8:9f:8b:28:ce:21:
2e:15:94:5c:ef:db:51:7b:5e:73:ed:dd:e7:d6:7b:
5e:e3:99:d4:56:4a:fc:a0:d0:5b:16:69:c5:29:cc:
dc:7d:e8:df:62:c8:c3:a0:5e:a9:10:ab:1f:4b:85:
a6:88:f3:85:54:30:14:d0:dc:bb:b0:a9:31:09:dd:
77:c2:d1:9b:f9:3a:42:53:6c:45:40:23:fb:53:2d:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:FD:84:63:51:8E:36:0F:80:5D:48:B6:3C:4E:0D:40:10:13:39:36
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Gf2EY1GONg-AXUi2PE4NQBATOTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.33.0.0/16
80.76.240.0/20
80.82.160.0/19
80.237.0.0/17
81.18.144.0/24
83.234.0.0/16
89.237.32.0/22
89.237.37.0/24
89.237.41.0/24
89.237.43.0-89.237.46.255
89.237.55.0/24
145.255.136.0/21
151.237.240.0/21
185.13.160.0/22
185.50.216.0/22
188.43.0.0/16
195.246.122.0/23
213.137.230.0-213.137.233.255
213.137.236.0-213.137.255.255
213.141.240.0/22
213.141.247.0/24
217.148.208.0/20
217.150.32.0/19
IPv6:
2a00:1e48::/32
Signature Algorithm: sha256WithRSAEncryption
bc:54:20:ab:19:98:28:d9:33:24:8c:83:b7:3d:75:90:a3:ce:
7c:d2:18:1f:a3:a4:9e:b6:86:96:d4:44:1b:42:cb:56:97:ec:
56:7e:6b:24:16:ee:d3:32:95:35:00:29:64:73:87:bb:62:ca:
8f:06:4e:5a:50:a4:d8:26:2f:7e:67:de:f3:f5:43:fb:1e:6a:
dc:fd:55:57:97:50:d0:5f:19:70:5d:1d:d1:87:88:58:c8:6e:
aa:65:e1:e9:dd:3e:0e:58:62:64:f3:91:a5:1a:e3:69:a4:9f:
dc:ab:fd:61:a3:a7:79:4f:fe:0c:28:54:0f:54:63:58:f7:60:
d9:eb:f0:a9:5f:4a:e6:eb:08:16:1f:e0:fa:5f:11:54:ed:48:
70:a2:82:d4:6b:2d:4b:76:d7:b8:9d:1a:7e:a3:ee:99:32:98:
69:22:2f:6a:7b:6f:e0:e1:a4:f1:15:ab:ae:86:93:91:81:fb:
7b:33:39:72:d2:5f:1c:01:28:d8:ec:f4:0d:f8:fa:93:79:bb:
a1:cb:9f:43:d6:74:be:55:6f:e2:85:0a:ee:50:c0:f0:85:d9:
25:2e:10:8b:83:af:8a:d6:5f:17:14:bd:78:30:a2:44:33:31:
f3:6a:e6:35:78:2c:9c:df:1d:da:dc:bf:7f:7d:85:25:f1:37:
27:44:1a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org