Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/t38d6FoHzGD3_qfz1xaJ2RL2-Mg.roa
File: t38d6FoHzGD3_qfz1xaJ2RL2-Mg.roa (raw, json)
Hash identifier: 5Sbqfq5dP2BqZgzpBxNtLkyEtroT7I9CsxlAGaI/z5U=
Subject key identifier: B7:7F:1D:E8:5A:07:CC:60:F7:FE:A7:F3:D7:16:89:D9:12:F6:F8:C8
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0B036264
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/t38d6FoHzGD3_qfz1xaJ2RL2-Mg.roa
Signing time: Sat 05 Feb 2022 08:03:39 +0000
ROA not before: Sat 05 Feb 2022 08:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15974
IP address blocks: 93.157.208.0/21 maxlen: 32
213.80.128.0/17 maxlen: 32
217.23.64.0/19 maxlen: 32
217.23.74.0/24 maxlen: 32
2a02:e842::/32 maxlen: 128
2a02:e840::/32 maxlen: 128
2a02:e841::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184771172 (0xb036264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Feb 5 08:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b77f1de85a07cc60f7fea7f3d71689d912f6f8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a8:78:c4:f3:f6:24:f0:27:d0:61:38:97:49:
86:9e:20:d6:96:24:f9:d7:e6:41:60:3e:6d:86:e0:
2a:a7:23:62:fa:75:46:b0:f3:11:db:50:b4:2c:5d:
6e:24:c9:13:16:4e:35:e1:4a:cc:8b:3e:44:34:f7:
14:5f:d8:f5:ea:0f:0c:e2:4d:8f:cc:cb:d1:e8:fc:
08:0d:1f:2f:85:8e:ca:a6:78:4a:7e:ae:b4:71:20:
6c:b1:24:c5:de:c2:b7:4f:db:ca:b4:12:ab:6e:17:
3b:a2:cd:b8:c9:b6:c5:2a:04:6b:1e:a5:7c:aa:ac:
aa:f3:f0:f8:10:94:97:92:7f:9a:b2:f3:f2:0e:b6:
30:e8:78:f8:08:0d:a8:97:85:21:53:bf:4d:7f:50:
6d:0f:d6:6b:9e:3e:11:9e:0b:78:a3:c2:10:44:be:
5d:89:5a:c3:69:87:70:d3:65:7e:f0:1b:02:72:a5:
ba:e3:48:b4:5d:fb:20:16:83:fe:5f:99:30:6f:89:
19:5b:f7:c4:57:60:75:72:5c:78:c9:07:bd:b7:b1:
5d:de:cf:53:51:e4:8a:a4:75:fe:22:0b:a5:af:dc:
85:d7:de:65:c5:b6:01:94:92:84:3f:81:20:01:c2:
c6:34:62:9b:82:0d:82:8b:58:fb:db:0a:32:f2:3f:
79:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:7F:1D:E8:5A:07:CC:60:F7:FE:A7:F3:D7:16:89:D9:12:F6:F8:C8
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/t38d6FoHzGD3_qfz1xaJ2RL2-Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.208.0/21
213.80.128.0/17
217.23.64.0/19
IPv6:
2a02:e840::-2a02:e842:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
07:96:36:e5:21:fc:46:7b:55:24:f3:7c:bf:79:67:2a:4f:a7:
55:de:bc:71:71:96:73:fc:1c:9b:33:28:3f:1a:15:c2:21:63:
d8:c2:66:48:d1:20:87:03:61:aa:49:30:e3:9a:be:a0:00:a9:
7b:10:4a:f1:58:e8:ba:17:6f:57:b1:3d:90:ea:f4:58:01:45:
94:6d:70:54:b7:d7:a1:a4:44:e5:ab:f5:a5:78:71:2e:08:62:
ff:3d:ce:2f:72:87:2c:70:8a:10:88:19:63:13:35:65:ce:46:
30:03:80:2f:f2:9a:46:3c:51:04:52:fe:7a:a6:a0:73:d7:fa:
b7:fe:97:f7:7a:bb:35:c4:ac:71:68:86:c3:52:d9:1d:a6:db:
71:ee:d6:45:a4:24:13:4d:94:ac:63:ec:0b:77:53:b6:7b:fc:
d4:7f:5f:87:d9:58:2d:9b:b7:a7:37:db:39:ce:0c:8f:80:29:
a4:9c:ff:5b:45:fc:3f:cb:d7:d2:1c:a1:fd:39:0b:79:1e:1c:
c1:5f:55:34:7c:88:64:fa:48:0c:e8:57:34:61:12:e6:d6:a9:
b9:18:20:8d:55:34:ba:61:44:8f:a4:23:25:e8:17:be:d9:58:
49:03:86:07:68:36:04:c0:4d:d4:bd:ad:71:93:df:aa:cf:a9:
5f:fb:f5:a6
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIECwNiZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZGFjODMwY2NhYTc0NzgzZGQ5NjFmYWIyNDFhMjI4ZDdjYzZmODA4MB4XDTIyMDIw
NTA4MDMzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjc3ZjFkZTg1YTA3
Y2M2MGY3ZmVhN2YzZDcxNjg5ZDkxMmY2ZjhjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2oeMTz9iTwJ9BhOJdJhp4g1pYk+dfmQWA+bYbgKqcjYvp1
RrDzEdtQtCxdbiTJExZONeFKzIs+RDT3FF/Y9eoPDOJNj8zL0ej8CA0fL4WOyqZ4
Sn6utHEgbLEkxd7Ct0/byrQSq24XO6LNuMm2xSoEax6lfKqsqvPw+BCUl5J/mrLz
8g62MOh4+AgNqJeFIVO/TX9QbQ/Wa54+EZ4LeKPCEES+XYlaw2mHcNNlfvAbAnKl
uuNItF37IBaD/l+ZMG+JGVv3xFdgdXJceMkHvbexXd7PU1HkiqR1/iILpa/chdfe
ZcW2AZSShD+BIAHCxjRim4INgotY+9sKMvI/eT0CAwEAAaOCAi0wggIpMB0GA1Ud
DgQWBBS3fx3oWgfMYPf+p/PXFonZEvb4yDAfBgNVHSMEGDAWgBStrIMMyqdHg92W
H6skGiKNfMb4CDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JheURETXFuUjRQZGxoLXJKQm9palh6Ry1BZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8x
L3QzOGQ2Rm9IekdEM19xZnoxeGFKMlJMMi1NZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8xL3JheURETXFuUjRQ
ZGxoLXJKQm9palh6Ry1BZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBD
BggrBgEFBQcBBwEB/wQ0MDIwGAQCAAEwEgMEA12d0AMEB9VQgAMEBdkXQDAWBAIA
AjAQMA4DBQYqAuhAAwUAKgLoQjANBgkqhkiG9w0BAQsFAAOCAQEAB5Y25SH8RntV
JPN8v3lnKk+nVd68cXGWc/wcmzMoPxoVwiFj2MJmSNEghwNhqkkw45q+oACpexBK
8VjouhdvV7E9kOr0WAFFlG1wVLfXoaRE5av1pXhxLghi/z3OL3KHLHCKEIgZYxM1
Zc5GMAOAL/KaRjxRBFL+eqagc9f6t/6X93q7NcSscWiGw1LZHabbce7WRaQkE02U
rGPsC3dTtnv81H9fh9lYLZu3pzfbOc4Mj4AppJz/W0X8P8vX0hyh/TkLeR4cwV9V
NHyIZPpIDOhXNGES5tapuRggjVU0umFEj6QjJegXvtlYSQOGB2g2BMBN1L2tcZPf
qs+pX/v1pg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org