Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/4qt1JvIGeuEaNwXUEaZZJrM_82Q.roa
File: 4qt1JvIGeuEaNwXUEaZZJrM_82Q.roa (raw, json)
Hash identifier: ivF5J+Xqi1VI3N3Po5eDLaGxEooe0A+mwHymta3IBso=
Subject key identifier: E2:AB:75:26:F2:06:7A:E1:1A:37:05:D4:11:A6:59:26:B3:3F:F3:64
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018465E0D4673E178D63925729E3B2580B5D
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/4qt1JvIGeuEaNwXUEaZZJrM_82Q.roa
Signing time: Fri 11 Nov 2022 08:49:04 +0000
ROA not before: Fri 11 Nov 2022 08:49:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 31.129.21.0/24 maxlen: 24
31.129.30.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
77.83.116.0/24 maxlen: 24
77.83.117.0/24 maxlen: 24
194.28.193.0/24 maxlen: 24
195.80.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:65:e0:d4:67:3e:17:8d:63:92:57:29:e3:b2:58:0b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Nov 11 08:49:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2ab7526f2067ae11a3705d411a65926b33ff364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:93:c8:84:07:bd:6e:48:6d:45:ca:bb:c1:e0:
ee:50:55:24:22:ab:f2:8c:64:31:ff:db:97:37:60:
08:1d:f2:db:b2:d0:f1:35:63:58:fa:59:8b:61:d1:
97:56:e3:58:57:60:74:fb:6e:9e:72:31:2c:df:b7:
39:81:17:fb:f5:00:ac:45:5d:bc:16:c4:5d:50:7e:
ae:0a:cb:8d:2a:28:77:76:f9:80:f6:69:8e:23:36:
bc:30:04:62:bb:1b:e6:bc:94:17:4c:b8:ec:7f:a3:
d9:26:8b:e8:dd:01:4c:26:f9:62:59:a9:ec:ce:fb:
21:aa:50:74:aa:90:f1:02:b3:f9:28:30:6d:3d:ba:
7f:d9:c9:88:b8:59:2d:34:5e:b8:a3:2c:9b:17:f4:
e6:22:21:0d:8d:be:ef:f1:17:34:31:b2:47:a0:60:
fc:44:74:73:0c:e7:75:cb:f6:10:cc:3e:a6:46:f2:
4d:33:64:f9:56:25:73:f8:5d:fe:4d:c6:4c:49:4a:
a4:15:94:89:bf:0f:55:40:72:6e:f9:12:1f:a6:f5:
78:86:13:4f:31:17:b7:db:41:37:a0:28:6f:17:e0:
78:7e:cc:84:b6:0a:01:2e:4a:4d:68:78:18:7f:10:
a0:f0:0f:bd:25:6f:af:da:f4:37:81:55:12:b4:3a:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:AB:75:26:F2:06:7A:E1:1A:37:05:D4:11:A6:59:26:B3:3F:F3:64
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/4qt1JvIGeuEaNwXUEaZZJrM_82Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.21.0/24
31.129.30.0/24
45.8.99.0/24
77.83.116.0/23
194.28.193.0/24
195.80.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:22:cc:9c:33:4a:ce:ca:0f:5f:00:7e:39:af:44:4a:79:cb:
f3:0b:92:a7:2d:9e:3a:99:f6:a6:63:c0:fb:04:78:d8:c2:87:
54:77:6a:90:7c:3b:db:d7:fd:a6:b7:9b:1b:e9:a1:2a:98:a8:
0e:97:55:55:39:4a:76:c1:1f:03:fc:ef:cf:b1:80:a6:e9:58:
63:b7:8e:d9:24:a0:bf:10:83:72:91:4c:34:30:9d:62:0d:6c:
2c:8c:fe:b4:28:33:ec:9c:94:c3:52:bb:43:be:60:d5:40:e7:
79:4f:42:93:8d:ce:1c:e6:12:77:a7:fb:5e:b5:09:21:9b:4d:
8b:66:19:8a:bb:4e:ed:85:92:72:32:0b:6c:89:f6:5a:76:e7:
05:92:eb:b0:25:d0:98:2d:d1:7e:b6:af:94:9a:09:19:e9:18:
1e:87:24:52:4d:37:11:0e:f5:66:18:4c:88:c6:1b:6b:96:2e:
94:44:11:0a:35:2e:fc:08:04:9b:0f:b8:eb:a0:99:cf:10:eb:
6b:07:02:20:b1:0e:72:09:51:f8:e7:bc:18:58:a7:94:c7:a2:
d8:e7:9c:75:3d:e4:cf:4a:1e:96:56:f8:39:7c:c7:8e:d3:a8:
c7:3e:0f:9d:db:78:8b:74:a5:08:9c:e1:e6:59:d7:f4:da:4d:
03:65:6a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org