Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/mj4tkH2P7Lf59leILu05jtPITLc.roa
File: mj4tkH2P7Lf59leILu05jtPITLc.roa (raw, json)
Hash identifier: Xcgb9Hvr4GUde3hvDJbTuiSc1vMMCR2Tbo1fktwgoL0=
Subject key identifier: 9A:3E:2D:90:7D:8F:EC:B7:F9:F6:57:88:2E:ED:39:8E:D3:C8:4C:B7
Certificate issuer: /CN=bdfa3af839aa1dce758f489e2d31ae22092fc99a
Certificate serial: 0183831CD8C10AB7137822AE05572844B529
Authority key identifier: BD:FA:3A:F8:39:AA:1D:CE:75:8F:48:9E:2D:31:AE:22:09:2F:C9:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfo6-DmqHc51j0ieLTGuIgkvyZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/mj4tkH2P7Lf59leILu05jtPITLc.roa
Signing time: Wed 28 Sep 2022 08:00:49 +0000
ROA not before: Wed 28 Sep 2022 08:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5432
IP address blocks: 62.4.128.0/17 maxlen: 17
46.178.0.0/15 maxlen: 16
195.13.0.0/19 maxlen: 19
178.144.0.0/15 maxlen: 16
213.181.32.0/19 maxlen: 19
91.176.0.0/14 maxlen: 16
81.240.0.0/14 maxlen: 16
81.244.0.0/14 maxlen: 16
91.180.0.0/14 maxlen: 16
188.5.0.0/16 maxlen: 16
217.136.0.0/16 maxlen: 16
80.200.0.0/15 maxlen: 16
92.48.128.0/18 maxlen: 18
109.136.0.0/14 maxlen: 16
37.62.0.0/16 maxlen: 16
109.140.0.0/14 maxlen: 16
109.128.0.0/14 maxlen: 16
87.64.0.0/14 maxlen: 16
109.132.0.0/14 maxlen: 16
37.184.0.0/15 maxlen: 16
195.238.0.0/19 maxlen: 19
194.78.0.0/16 maxlen: 16
81.169.0.0/17 maxlen: 17
2a02:a000::/26 maxlen: 26
2a04:9f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:1c:d8:c1:0a:b7:13:78:22:ae:05:57:28:44:b5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfa3af839aa1dce758f489e2d31ae22092fc99a
Validity
Not Before: Sep 28 08:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a3e2d907d8fecb7f9f657882eed398ed3c84cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d9:a9:d9:e1:40:2f:07:9e:3d:73:48:d3:4b:
c5:0f:cf:e5:f4:cf:f7:4a:86:d8:81:88:f3:6e:94:
a4:64:35:3b:a6:ba:e2:71:24:19:7f:78:ac:82:2f:
ff:bc:2d:7f:6e:e7:3c:68:51:4e:a9:fc:37:e6:0b:
00:4c:1e:87:ab:78:85:12:00:f5:97:9b:dd:ec:83:
4b:5a:c5:3e:a5:0c:aa:80:cd:0c:2c:48:5b:d7:61:
d6:67:cf:15:a4:bc:a0:c8:8b:76:73:d8:5f:14:ee:
60:49:11:40:ae:5c:11:a7:4a:97:86:fa:da:90:36:
75:c5:9d:f3:ae:c4:3b:04:43:8f:ec:eb:a4:ed:5d:
0b:e0:b4:2e:73:4b:bd:af:7e:30:b7:07:f0:0e:44:
16:f4:4e:ba:42:7f:b7:bb:3a:43:8a:57:02:7e:ed:
cf:77:90:84:d3:6b:9e:0e:24:91:c7:89:39:95:13:
a5:b8:1a:18:d6:8e:60:57:ed:e2:79:56:b9:24:9b:
1f:36:1a:f0:51:37:32:c6:03:65:36:74:5e:ff:9a:
39:d4:68:2b:a4:96:9f:bc:c3:4b:10:86:89:b7:e2:
82:cf:8b:e8:b9:73:ff:7e:84:a4:10:48:ad:54:04:
2a:19:38:8f:7f:4f:b9:80:e9:cf:96:52:be:20:cd:
c3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3E:2D:90:7D:8F:EC:B7:F9:F6:57:88:2E:ED:39:8E:D3:C8:4C:B7
X509v3 Authority Key Identifier:
keyid:BD:FA:3A:F8:39:AA:1D:CE:75:8F:48:9E:2D:31:AE:22:09:2F:C9:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfo6-DmqHc51j0ieLTGuIgkvyZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/mj4tkH2P7Lf59leILu05jtPITLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8cdbc5-9365-4a0c-b9a3-ae7746f09630/1/vfo6-DmqHc51j0ieLTGuIgkvyZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.62.0.0/16
37.184.0.0/15
46.178.0.0/15
62.4.128.0/17
80.200.0.0/15
81.169.0.0/17
81.240.0.0/13
87.64.0.0/14
91.176.0.0/13
92.48.128.0/18
109.128.0.0/12
178.144.0.0/15
188.5.0.0/16
194.78.0.0/16
195.13.0.0/19
195.238.0.0/19
213.181.32.0/19
217.136.0.0/16
IPv6:
2a02:a000::/26
2a04:9f80::/29
Signature Algorithm: sha256WithRSAEncryption
40:63:a0:76:b3:2d:85:c9:5e:1d:7d:e7:dd:b2:d1:9a:c2:70:
68:84:29:33:8c:ae:66:32:02:7c:13:76:c9:96:5a:5a:db:1a:
f4:40:fc:28:1c:4a:c2:ae:66:16:f2:e8:34:43:b0:f1:a8:5a:
df:06:d7:32:9c:8a:fb:cb:2e:8f:18:48:40:0b:1d:4d:ef:b8:
1b:84:ea:2c:29:c1:4f:70:d6:2f:a9:9d:45:b5:f1:98:4b:1d:
71:b9:9a:71:d8:db:6c:bc:8a:87:39:2e:d0:d5:21:f5:c5:91:
9a:1e:56:59:ba:6c:4b:5c:a3:b3:2d:6c:68:9d:c9:05:aa:cb:
81:22:60:d1:6d:0c:3b:95:e9:42:17:82:d2:7f:13:87:f0:ad:
b1:dc:92:ec:1c:1f:2c:7d:d8:f4:3c:0f:ef:1b:c7:f2:64:94:
26:25:06:88:86:76:b9:3e:20:60:73:d3:cd:a5:8e:25:21:32:
8e:6a:56:52:80:1a:9d:f4:36:de:65:a2:49:3b:4d:37:a0:5f:
92:5b:07:75:22:0e:b9:2c:aa:ea:16:76:ff:3b:30:26:a9:17:
dd:9d:5b:bf:11:e1:ea:a1:57:c6:02:70:5b:64:4a:6a:88:07:
82:69:0e:ca:33:25:04:2a:b1:7d:d9:eb:b7:f9:50:50:51:06:
cb:26:9d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:37 2025 by rpki-client