Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/3nPtWsdVD6wZZxwmUBJIw8_yBXI.roa
File: 3nPtWsdVD6wZZxwmUBJIw8_yBXI.roa (raw, json)
Hash identifier: eo661YvbWjHcoelwiK7lLYZ0Ok8DXxwTmoGWYribCwg=
Subject key identifier: DE:73:ED:5A:C7:55:0F:AC:19:67:1C:26:50:12:48:C3:CF:F2:05:72
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FBA2B17
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/3nPtWsdVD6wZZxwmUBJIw8_yBXI.roa
Signing time: Sat 01 Jan 2022 10:04:50 +0000
ROA not before: Sat 01 Jan 2022 10:04:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21286
IP address blocks: 192.33.239.0/24 maxlen: 24
192.33.235.0/24 maxlen: 24
192.33.238.0/24 maxlen: 24
192.101.111.0/24 maxlen: 24
192.101.112.0/24 maxlen: 24
199.88.208.0/24 maxlen: 24
192.101.113.0/24 maxlen: 24
199.88.209.0/24 maxlen: 24
145.13.0.0/16 maxlen: 16
193.202.32.0/23 maxlen: 23
192.35.133.0/24 maxlen: 24
194.104.59.0/24 maxlen: 24
192.58.226.0/24 maxlen: 24
192.58.227.0/24 maxlen: 24
192.58.228.0/24 maxlen: 24
145.222.0.0/16 maxlen: 16
194.104.32.0/24 maxlen: 24
2a02:2b50:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 800729879 (0x2fba2b17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de73ed5ac7550fac19671c26501248c3cff20572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a1:a3:bf:07:93:05:e3:f1:c7:2c:96:9e:e3:
e0:e8:fa:a3:c8:0b:ea:be:72:af:b3:b7:a9:b0:db:
b4:da:32:88:59:7a:7c:a1:b1:d5:59:be:5f:a0:45:
aa:16:f7:a7:30:9c:e3:0e:aa:1d:17:7e:3f:bb:fa:
fb:71:ad:87:14:f2:e8:7c:22:eb:ba:3a:5d:14:75:
28:40:43:24:d3:56:d0:09:52:4d:c2:4e:b6:80:61:
81:eb:db:62:2b:7b:d4:5a:4a:6d:52:c9:e9:8c:84:
72:51:c3:b5:12:7c:d9:d1:c0:d4:cc:2e:8f:ba:7d:
bf:1f:ba:1f:3b:ec:56:ab:ac:e2:7b:b7:f4:78:55:
ab:0d:ed:c9:19:5e:f3:bf:c5:0c:b3:d6:83:74:44:
ca:e0:a5:0c:dc:da:e1:2e:bc:5c:79:4c:17:3d:69:
59:28:0f:c6:dd:b3:4b:ff:70:f2:59:3a:c1:84:2e:
90:6a:43:62:05:60:c8:ad:2e:51:54:0b:63:84:e1:
f8:e5:0b:d0:68:3c:02:c5:30:39:8c:4d:cb:ee:21:
53:83:d2:ec:41:b7:cc:3a:fd:93:7b:ec:55:90:59:
b2:81:6f:93:7c:e5:92:30:61:4f:78:30:d8:e2:b1:
f0:d4:ce:1d:3f:ae:f2:8a:36:be:45:62:43:ac:5e:
51:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:73:ED:5A:C7:55:0F:AC:19:67:1C:26:50:12:48:C3:CF:F2:05:72
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/3nPtWsdVD6wZZxwmUBJIw8_yBXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.13.0.0/16
145.222.0.0/16
192.33.235.0/24
192.33.238.0/23
192.35.133.0/24
192.58.226.0-192.58.228.255
192.101.111.0-192.101.113.255
193.202.32.0/23
194.104.32.0/24
194.104.59.0/24
199.88.208.0/23
IPv6:
2a02:2b50:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
53:51:12:a4:02:85:5f:77:4d:14:f8:a8:2b:20:a1:8a:31:90:
e5:0f:cb:0c:56:3f:7e:fa:40:31:81:a0:b3:85:e2:68:38:74:
34:24:ea:08:6b:ba:7a:99:52:01:44:71:f4:39:59:3c:aa:78:
b9:3c:d4:d5:55:69:9c:45:b9:5c:ec:42:cd:af:23:17:7f:c1:
35:49:79:0e:73:67:be:bc:98:86:66:74:21:3d:2a:55:c8:3b:
33:3a:2a:78:5d:6e:be:3e:63:ea:2c:03:98:7b:ea:9e:ad:a0:
f1:9c:5c:b7:d2:6d:c7:6d:f1:49:68:67:f2:11:7a:a3:c4:73:
18:ff:f1:ff:a5:38:4d:11:46:76:93:5b:7d:69:90:18:29:80:
a7:c2:7b:20:be:34:ea:a2:d7:a0:d4:55:0b:e2:29:c5:e9:19:
19:4d:47:fe:4d:2d:ef:33:41:8d:e8:3d:91:c2:0c:c6:a1:96:
e6:86:52:49:fa:cc:ae:8a:48:1f:83:1c:ac:42:7b:6f:86:61:
92:8b:53:4a:f2:fb:c9:d9:82:53:52:61:fa:25:20:a6:0b:ba:
df:e7:13:9a:1b:29:3a:01:01:7d:0b:90:55:87:40:70:75:08:
d0:dc:79:0f:04:13:ce:be:96:ff:c5:d2:ee:b3:8d:28:21:e3:
b0:d5:2d:8b
-----BEGIN CERTIFICATE-----
MIIFSjCCBDKgAwIBAgIEL7orFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mzk4MDYwZjFiZjIyZjA5OTljYjA3MWIxYjQyNjk2ZGJjNDNlMTBjMB4XDTIyMDEw
MTEwMDQ1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGU3M2VkNWFjNzU1
MGZhYzE5NjcxYzI2NTAxMjQ4YzNjZmYyMDU3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJKho78HkwXj8ccslp7j4Oj6o8gL6r5yr7O3qbDbtNoyiFl6
fKGx1Vm+X6BFqhb3pzCc4w6qHRd+P7v6+3GthxTy6Hwi67o6XRR1KEBDJNNW0AlS
TcJOtoBhgevbYit71FpKbVLJ6YyEclHDtRJ82dHA1Mwuj7p9vx+6HzvsVqus4nu3
9HhVqw3tyRle87/FDLPWg3REyuClDNza4S68XHlMFz1pWSgPxt2zS/9w8lk6wYQu
kGpDYgVgyK0uUVQLY4Th+OUL0Gg8AsUwOYxNy+4hU4PS7EG3zDr9k3vsVZBZsoFv
k3zlkjBhT3gw2OKx8NTOHT+u8oo2vkViQ6xeUbECAwEAAaOCAmQwggJgMB0GA1Ud
DgQWBBTec+1ax1UPrBlnHCZQEkjDz/IFcjAfBgNVHSMEGDAWgBTDmAYPG/IvCZnL
BxsbQmltvEPhDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3c1Z0dEeHZ5THdtWnl3Y2JHMEpwYmJ4RDRRdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvM2JmYzMxLWRjMzItNDU0MS04NDYwLWM5MjdiOGMyYzdjNC8x
LzNuUHRXc2RWRDZ3Wlp4d21VQkpJdzhfeUJYSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
M2JmYzMxLWRjMzItNDU0MS04NDYwLWM5MjdiOGMyYzdjNC8xL3c1Z0dEeHZ5THdt
Wnl3Y2JHMEpwYmJ4RDRRdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB6
BggrBgEFBQcBBwEB/wRrMGkwVgQCAAEwUAMDAJENAwMAkd4DBADAIesDBAHAIe4D
BADAI4UwDAMEAcA64gMEAMA65DAMAwQAwGVvAwQBwGVwAwQBwcogAwQAwmggAwQA
wmg7AwQBx1jQMA8EAgACMAkDBwAqAitQ//8wDQYJKoZIhvcNAQELBQADggEBAFNR
EqQChV93TRT4qCsgoYoxkOUPywxWP376QDGBoLOF4mg4dDQk6ghrunqZUgFEcfQ5
WTyqeLk81NVVaZxFuVzsQs2vIxd/wTVJeQ5zZ768mIZmdCE9KlXIOzM6Knhdbr4+
Y+osA5h76p6toPGcXLfSbcdt8UloZ/IReqPEcxj/8f+lOE0RRnaTW31pkBgpgKfC
eyC+NOqi16DUVQviKcXpGRlNR/5NLe8zQY3oPZHCDMahluaGUkn6zK6KSB+DHKxC
e2+GYZKLU0ry+8nZglNSYfolIKYLut/nE5obKToBAX0LkFWHQHB1CNDceQ8EE86+
lv/F0u6zjSgh47DVLYs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org