Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/3090dc-7d28-4228-8380-fe3b918c3097/1/E2fvUITEo3wj-sXJGi4Z9QUdTY4.roa
File: E2fvUITEo3wj-sXJGi4Z9QUdTY4.roa (raw, json)
Hash identifier: bvDr+jSX1l4PFa6tTL2NpMs7Cgmz9ZAn0Q1ZdFivfD8=
Subject key identifier: 13:67:EF:50:84:C4:A3:7C:23:FA:C5:C9:1A:2E:19:F5:05:1D:4D:8E
Certificate issuer: /CN=65ba15d47ba4f4482764472d8d97146a1ebbbf86
Certificate serial: 335F7DB0
Authority key identifier: 65:BA:15:D4:7B:A4:F4:48:27:64:47:2D:8D:97:14:6A:1E:BB:BF:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZboV1Huk9EgnZEctjZcUah67v4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/3090dc-7d28-4228-8380-fe3b918c3097/1/E2fvUITEo3wj-sXJGi4Z9QUdTY4.roa
Signing time: Sat 01 Jan 2022 07:04:16 +0000
ROA not before: Sat 01 Jan 2022 07:04:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56510
IP address blocks: 91.235.174.0/24 maxlen: 24
195.88.202.0/23 maxlen: 23
195.69.225.0/24 maxlen: 24
188.227.204.0/22 maxlen: 22
185.38.103.0/24 maxlen: 24
2a02:7f84::/30 maxlen: 30
2a02:7f80::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 861896112 (0x335f7db0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ba15d47ba4f4482764472d8d97146a1ebbbf86
Validity
Not Before: Jan 1 07:04:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1367ef5084c4a37c23fac5c91a2e19f5051d4d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:79:c5:4e:e0:0a:3e:2e:c1:ee:27:37:9e:78:
a3:ff:2b:36:df:7f:e4:a5:84:45:17:85:d7:45:4d:
33:4e:31:b7:6d:2d:63:3b:7d:96:40:55:ad:a0:02:
4e:7a:3c:88:17:42:40:da:80:22:f3:a0:f5:11:e9:
d5:8c:c9:53:45:ff:10:c9:25:e5:a6:14:0a:7f:9a:
e2:a0:85:bb:71:c5:88:b5:6e:4c:a3:1e:84:9b:08:
01:70:c9:f9:cd:6f:cf:0d:a6:74:76:16:54:e9:8d:
c5:94:17:31:dd:f0:57:38:15:7b:44:ef:21:3a:b2:
58:85:4e:48:a8:d0:1b:fa:3f:0d:c9:73:0c:73:32:
e7:8c:8f:7f:af:88:23:08:9d:c9:92:64:5f:c4:75:
8b:9b:9b:12:96:51:52:76:6f:f0:8e:e2:e4:25:8a:
51:6e:11:94:8b:f7:77:97:2f:c3:69:10:5b:fd:74:
43:f0:ff:f4:f1:c0:f0:21:d0:26:1d:61:93:9f:35:
f0:01:5a:27:b1:5a:f1:52:ba:5e:82:fd:42:2a:f0:
e9:90:2c:b3:d7:d8:61:26:53:65:a8:b8:fa:ba:a4:
29:89:4e:07:ea:09:e4:d1:4f:80:58:f9:fe:3a:79:
1a:49:25:35:5f:a1:85:ef:ea:5a:21:d4:d6:aa:54:
d9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:67:EF:50:84:C4:A3:7C:23:FA:C5:C9:1A:2E:19:F5:05:1D:4D:8E
X509v3 Authority Key Identifier:
keyid:65:BA:15:D4:7B:A4:F4:48:27:64:47:2D:8D:97:14:6A:1E:BB:BF:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZboV1Huk9EgnZEctjZcUah67v4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3090dc-7d28-4228-8380-fe3b918c3097/1/E2fvUITEo3wj-sXJGi4Z9QUdTY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/3090dc-7d28-4228-8380-fe3b918c3097/1/ZboV1Huk9EgnZEctjZcUah67v4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.174.0/24
185.38.103.0/24
188.227.204.0/22
195.69.225.0/24
195.88.202.0/23
IPv6:
2a02:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
46:64:cf:3d:e5:82:7d:df:5f:e5:dd:6d:3d:70:f8:a0:27:05:
7d:49:dc:e9:7e:2b:3f:f3:5f:73:a6:93:a0:e3:df:dd:01:32:
44:17:8f:a5:03:8b:7a:90:f8:d3:29:4b:f2:d0:a7:00:12:cc:
e6:61:93:07:2c:0f:a4:c4:9a:ab:86:dd:43:04:d7:8c:35:03:
8c:26:dd:5f:12:f2:81:fc:79:ea:a8:fd:f5:8b:ce:30:0f:f0:
77:82:33:92:8e:da:48:12:8c:bf:b5:d4:d0:59:ce:cf:d7:af:
aa:82:64:0a:14:58:fd:45:b5:69:6c:55:cb:31:96:87:25:82:
56:ba:f7:ca:d0:6e:b8:b9:3d:50:69:d1:e1:b1:4e:d7:ea:2a:
ff:7b:e7:bd:8a:12:2e:ce:22:b4:d4:63:d7:e1:ca:10:d7:fe:
eb:91:d4:21:4a:85:34:15:29:07:38:83:e0:09:37:5c:8e:c1:
a4:9f:d3:d6:73:f2:d8:9b:28:01:6e:8d:db:2d:5c:da:9c:55:
58:93:de:02:e6:c8:74:84:86:55:a2:27:e0:78:55:d5:b0:5a:
fc:39:76:98:b0:ff:42:47:fd:f9:5a:93:ec:7d:1a:d3:7c:b2:
b0:6e:33:94:e9:d7:3c:1f:70:f7:72:ab:5a:e8:f6:fe:6d:61:
ec:eb:f7:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgIEM199sDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NWJhMTVkNDdiYTRmNDQ4Mjc2NDQ3MmQ4ZDk3MTQ2YTFlYmJiZjg2MB4XDTIyMDEw
MTA3MDQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTM2N2VmNTA4NGM0
YTM3YzIzZmFjNWM5MWEyZTE5ZjUwNTFkNGQ4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK55xU7gCj4uwe4nN554o/8rNt9/5KWERReF10VNM04xt20t
Yzt9lkBVraACTno8iBdCQNqAIvOg9RHp1YzJU0X/EMkl5aYUCn+a4qCFu3HFiLVu
TKMehJsIAXDJ+c1vzw2mdHYWVOmNxZQXMd3wVzgVe0TvITqyWIVOSKjQG/o/Dclz
DHMy54yPf6+IIwidyZJkX8R1i5ubEpZRUnZv8I7i5CWKUW4RlIv3d5cvw2kQW/10
Q/D/9PHA8CHQJh1hk5818AFaJ7Fa8VK6XoL9Qirw6ZAss9fYYSZTZai4+rqkKYlO
B+oJ5NFPgFj5/jp5GkklNV+hhe/qWiHU1qpU2RsCAwEAAaOCAjAwggIsMB0GA1Ud
DgQWBBQTZ+9QhMSjfCP6xckaLhn1BR1NjjAfBgNVHSMEGDAWgBRluhXUe6T0SCdk
Ry2NlxRqHru/hjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pib1YxSHVrOUVnblpFY3RqWmNVYWg2N3Y0WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvMzA5MGRjLTdkMjgtNDIyOC04MzgwLWZlM2I5MThjMzA5Ny8x
L0UyZnZVSVRFbzN3ai1zWEpHaTRaOVFVZFRZNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
MzA5MGRjLTdkMjgtNDIyOC04MzgwLWZlM2I5MThjMzA5Ny8xL1pib1YxSHVrOUVn
blpFY3RqWmNVYWg2N3Y0WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBG
BggrBgEFBQcBBwEB/wQ3MDUwJAQCAAEwHgMEAFvrrgMEALkmZwMEArzjzAMEAMNF
4QMEAcNYyjANBAIAAjAHAwUDKgJ/gDANBgkqhkiG9w0BAQsFAAOCAQEARmTPPeWC
fd9f5d1tPXD4oCcFfUnc6X4rP/Nfc6aToOPf3QEyRBePpQOLepD40ylL8tCnABLM
5mGTBywPpMSaq4bdQwTXjDUDjCbdXxLygfx56qj99YvOMA/wd4Izko7aSBKMv7XU
0FnOz9evqoJkChRY/UW1aWxVyzGWhyWCVrr3ytBuuLk9UGnR4bFO1+oq/3vnvYoS
Ls4itNRj1+HKENf+65HUIUqFNBUpBziD4Ak3XI7BpJ/T1nPy2JsoAW6N2y1c2pxV
WJPeAubIdISGVaIn4HhV1bBa/Dl2mLD/Qkf9+VqT7H0a03yysG4zlOnXPB9w93Kr
Wuj2/m1h7Ov37w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:37 2024 by rpki-client on console-ams.rpki-client.org