Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/3bMeDBnRHiv_EyoZhMSOQ_Xpoe4.roa
File: 3bMeDBnRHiv_EyoZhMSOQ_Xpoe4.roa (raw, json)
Hash identifier: Az+dlJPiS6NTdhIIRBKmC/bnvBALvVV9Y/+E9Ot0Big=
Subject key identifier: DD:B3:1E:0C:19:D1:1E:2B:FF:13:2A:19:84:C4:8E:43:F5:E9:A1:EE
Certificate issuer: /CN=3e20c700d98d76a9c640173889f9367da9de8997
Certificate serial: 36598D45
Authority key identifier: 3E:20:C7:00:D9:8D:76:A9:C6:40:17:38:89:F9:36:7D:A9:DE:89:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiDHANmNdqnGQBc4ifk2faneiZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/3bMeDBnRHiv_EyoZhMSOQ_Xpoe4.roa
Signing time: Tue 10 May 2022 20:37:56 +0000
ROA not before: Tue 10 May 2022 20:37:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51601
IP address blocks: 176.56.160.0/19 maxlen: 24
91.194.116.0/23 maxlen: 24
185.65.172.0/22 maxlen: 24
195.189.120.0/22 maxlen: 24
193.33.70.0/23 maxlen: 24
87.239.184.0/21 maxlen: 24
2a03:9d40::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 911838533 (0x36598d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e20c700d98d76a9c640173889f9367da9de8997
Validity
Not Before: May 10 20:37:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddb31e0c19d11e2bff132a1984c48e43f5e9a1ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:99:c6:19:18:b6:33:ef:b8:a0:79:e6:b8:
4e:d6:cc:32:d5:60:f9:a8:db:0f:56:28:f9:7e:64:
75:b9:f1:3f:48:bf:d1:1a:3b:17:68:b4:f5:3f:05:
54:92:ab:37:78:63:ff:47:31:b1:64:5c:e7:a6:f0:
8c:a4:1e:cc:88:dd:35:01:63:ba:54:f5:35:b6:8e:
11:d1:99:5e:52:de:a3:d1:f0:31:cd:d7:8e:d7:1a:
5d:82:5b:59:8e:da:97:ce:88:3e:20:ae:2c:3c:e1:
a1:f7:7a:a0:4a:2e:1e:d1:71:72:ce:11:62:77:a2:
09:16:c0:ca:cb:a9:ac:84:35:a7:c6:95:59:06:bc:
2d:02:a1:9c:ba:52:8e:bc:1f:94:91:14:63:89:6f:
e9:00:e0:16:e1:48:7a:87:a8:11:82:de:e9:f1:e5:
8e:17:78:1b:98:5f:15:cf:4f:39:4c:32:08:7e:30:
a7:1a:8e:62:6c:27:5f:4e:6a:ca:19:1d:e2:c0:e9:
2a:a2:65:19:47:a7:30:d0:8e:de:5a:66:c6:e9:e8:
0a:0e:34:ad:33:65:34:81:4f:51:f8:55:6b:3c:dc:
a4:06:99:61:55:f5:cf:d0:62:30:6e:ba:2a:a9:b6:
01:68:34:10:ba:df:d7:05:84:ce:3b:0f:b1:2d:91:
22:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B3:1E:0C:19:D1:1E:2B:FF:13:2A:19:84:C4:8E:43:F5:E9:A1:EE
X509v3 Authority Key Identifier:
keyid:3E:20:C7:00:D9:8D:76:A9:C6:40:17:38:89:F9:36:7D:A9:DE:89:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiDHANmNdqnGQBc4ifk2faneiZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/3bMeDBnRHiv_EyoZhMSOQ_Xpoe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/PiDHANmNdqnGQBc4ifk2faneiZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.184.0/21
91.194.116.0/23
176.56.160.0/19
185.65.172.0/22
193.33.70.0/23
195.189.120.0/22
IPv6:
2a03:9d40::/32
Signature Algorithm: sha256WithRSAEncryption
57:10:7f:c6:e2:85:ad:52:8a:1c:01:f9:b2:29:3d:99:fa:d0:
61:a3:2e:8c:82:b4:54:3e:49:da:b7:42:63:8d:82:ee:2f:a6:
3e:f4:74:86:63:75:37:88:7f:f8:a5:48:f1:dc:ea:7c:77:b0:
c9:29:db:a5:3a:a6:df:c9:4a:c1:c8:0a:44:8a:4c:a6:9f:1b:
f2:7b:9c:41:78:4a:a8:37:b2:0b:77:91:54:2d:6c:75:97:b2:
f5:04:06:9c:99:37:eb:98:82:f8:0a:02:60:cc:1f:50:70:18:
4c:9e:3c:f7:d9:48:ef:bd:f6:67:55:b5:8f:27:1e:f0:08:c1:
6a:fd:28:97:ef:78:1d:0f:03:1f:7b:f6:12:0b:69:10:48:2c:
df:ad:86:eb:10:4a:a5:8e:2c:fc:05:c4:5f:d9:c5:2c:ad:5c:
8a:16:f5:6a:15:67:7e:8f:5f:23:98:81:4b:c2:39:56:49:56:
0d:28:9d:b0:f0:f6:60:06:d9:36:48:81:59:23:d8:df:97:3d:
93:98:05:3f:47:e0:7d:0d:74:f1:fa:87:03:f7:d1:3d:b3:54:
f4:29:51:cf:14:3b:b9:e3:f4:14:d3:10:fc:9c:85:50:5c:e7:
ab:b3:e1:57:6a:a3:c5:d7:92:50:2c:48:fc:d7:92:80:63:84:
21:94:aa:7b
-----BEGIN CERTIFICATE-----
MIIFHDCCBASgAwIBAgIENlmNRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZTIwYzcwMGQ5OGQ3NmE5YzY0MDE3Mzg4OWY5MzY3ZGE5ZGU4OTk3MB4XDTIyMDUx
MDIwMzc1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGRiMzFlMGMxOWQx
MWUyYmZmMTMyYTE5ODRjNDhlNDNmNWU5YTFlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+FmcYZGLYz77igeea4TtbMMtVg+ajbD1Yo+X5kdbnxP0i/
0Ro7F2i09T8FVJKrN3hj/0cxsWRc56bwjKQezIjdNQFjulT1NbaOEdGZXlLeo9Hw
Mc3XjtcaXYJbWY7al86IPiCuLDzhofd6oEouHtFxcs4RYneiCRbAysuprIQ1p8aV
WQa8LQKhnLpSjrwflJEUY4lv6QDgFuFIeoeoEYLe6fHljhd4G5hfFc9POUwyCH4w
pxqOYmwnX05qyhkd4sDpKqJlGUenMNCO3lpmxunoCg40rTNlNIFPUfhVazzcpAaZ
YVX1z9BiMG66Kqm2AWg0ELrf1wWEzjsPsS2RIlUCAwEAAaOCAjYwggIyMB0GA1Ud
DgQWBBTdsx4MGdEeK/8TKhmExI5D9emh7jAfBgNVHSMEGDAWgBQ+IMcA2Y12qcZA
FziJ+TZ9qd6JlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BpREhBTm1OZHFuR1FCYzRpZmsyZmFuZWlaYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvYWM2YzdiLWQwNTktNDAxNC1hOTY4LWU0NmQ4ZDE2YTE1Zi8x
LzNiTWVEQm5SSGl2X0V5b1poTVNPUV9YcG9lNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
YWM2YzdiLWQwNTktNDAxNC1hOTY4LWU0NmQ4ZDE2YTE1Zi8xL1BpREhBTm1OZHFu
R1FCYzRpZmsyZmFuZWlaYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBM
BggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEA1fvuAMEAVvCdAMEBbA4oAMEArlB
rAMEAcEhRgMEAsO9eDANBAIAAjAHAwUAKgOdQDANBgkqhkiG9w0BAQsFAAOCAQEA
VxB/xuKFrVKKHAH5sik9mfrQYaMujIK0VD5J2rdCY42C7i+mPvR0hmN1N4h/+KVI
8dzqfHewySnbpTqm38lKwcgKRIpMpp8b8nucQXhKqDeyC3eRVC1sdZey9QQGnJk3
65iC+AoCYMwfUHAYTJ4899lI7732Z1W1jyce8AjBav0ol+94HQ8DH3v2EgtpEEgs
362G6xBKpY4s/AXEX9nFLK1cihb1ahVnfo9fI5iBS8I5VklWDSidsPD2YAbZNkiB
WSPY35c9k5gFP0fgfQ108fqHA/fRPbNU9ClRzxQ7ueP0FNMQ/JyFUFznq7PhV2qj
xdeSUCxI/NeSgGOEIZSqew==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:34 2024 by rpki-client on console-fra.rpki-client.org