Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/q432C_lZaqwqVMD9yBKHl-bqMnA.roa
File: q432C_lZaqwqVMD9yBKHl-bqMnA.roa (raw, json)
Hash identifier: hCHAVgxEsMJMvWgGoz1KFtGWLtKPkOLZ2c2LLEECJs0=
Subject key identifier: AB:8D:F6:0B:F9:59:6A:AC:2A:54:C0:FD:C8:12:87:97:E6:EA:32:70
Certificate issuer: /CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Certificate serial: 129DC7EA
Authority key identifier: DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/q432C_lZaqwqVMD9yBKHl-bqMnA.roa
Signing time: Fri 15 Apr 2022 15:28:34 +0000
ROA not before: Fri 15 Apr 2022 15:28:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39351
IP address blocks: 45.129.56.0/24 maxlen: 24
185.209.196.0/24 maxlen: 24
185.209.197.0/24 maxlen: 24
193.32.249.0/24 maxlen: 24
185.65.132.0/24 maxlen: 24
185.65.134.0/24 maxlen: 24
185.65.133.0/24 maxlen: 24
185.65.135.0/24 maxlen: 24
141.98.252.0/24 maxlen: 24
141.98.255.0/24 maxlen: 24
141.98.254.0/24 maxlen: 24
45.83.220.0/24 maxlen: 24
45.83.221.0/24 maxlen: 24
45.83.223.0/24 maxlen: 24
45.83.222.0/24 maxlen: 24
185.213.152.0/24 maxlen: 24
185.213.153.0/24 maxlen: 24
185.213.155.0/24 maxlen: 24
185.213.154.0/24 maxlen: 24
193.138.216.0/22 maxlen: 22
193.32.127.0/24 maxlen: 24
193.32.126.0/24 maxlen: 24
185.195.232.0/24 maxlen: 24
185.195.233.0/24 maxlen: 24
2a03:1b20:8::/48 maxlen: 48
2a03:1b20:3::/48 maxlen: 48
2a03:1b20:6::/48 maxlen: 48
2a03:1b20:1::/48 maxlen: 48
2a03:1b20:a::/48 maxlen: 48
2a03:1b20:5::/48 maxlen: 48
2a03:1b20:beef::/48 maxlen: 48
2a03:1b20:2::/48 maxlen: 48
2a03:1b20:7::/48 maxlen: 48
2a03:1b20:9::/48 maxlen: 48
2a03:1b20:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312330218 (0x129dc7ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Validity
Not Before: Apr 15 15:28:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab8df60bf9596aac2a54c0fdc8128797e6ea3270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:08:d3:1e:af:be:dd:b4:cf:4b:9e:6f:43:07:
af:52:e0:6b:4c:3d:46:2a:c7:b4:3d:d2:7d:9f:54:
a0:f0:99:2c:e1:76:e5:e2:7c:89:70:73:20:b4:ac:
66:ca:4b:af:38:4d:3e:f2:ed:b2:80:21:9c:3b:49:
98:25:44:67:44:0f:ee:a2:02:d2:54:41:35:0f:a9:
9b:2d:14:62:a7:82:9e:4a:b4:bc:e5:82:04:01:02:
49:ed:18:3d:73:5a:83:64:9c:0a:ed:c7:bb:ac:66:
91:0b:2e:40:82:c5:83:f6:9e:2c:3b:44:37:25:50:
a4:39:20:9c:11:59:ba:71:44:1a:f0:8c:42:9f:3e:
37:fd:a4:f5:65:3d:0c:f3:da:29:c8:34:dc:8d:ce:
41:77:19:19:a5:0e:70:79:60:a4:8a:73:70:bb:4e:
b1:66:ba:0c:89:a4:78:63:73:7e:3e:8b:0d:f0:b9:
e1:09:80:69:da:d7:ae:2b:31:9d:d1:15:07:39:ea:
31:54:77:eb:76:87:e8:25:34:54:2f:40:6e:b8:d6:
ed:e6:7b:6d:1b:6a:c0:44:8d:8d:fa:eb:e7:5a:c7:
56:43:00:46:f2:69:49:d5:61:3f:95:d6:cd:74:70:
35:1b:73:79:32:3d:31:1f:cd:63:7f:9a:32:7d:6e:
8c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8D:F6:0B:F9:59:6A:AC:2A:54:C0:FD:C8:12:87:97:E6:EA:32:70
X509v3 Authority Key Identifier:
keyid:DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/q432C_lZaqwqVMD9yBKHl-bqMnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/3i6RcxXwqHiyH8E51JqCGq3cPJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.220.0/22
45.129.56.0/24
141.98.252.0/24
141.98.254.0/23
185.65.132.0/22
185.195.232.0/23
185.209.196.0/23
185.213.152.0/22
193.32.126.0/23
193.32.249.0/24
193.138.216.0/22
IPv6:
2a03:1b20:1::-2a03:1b20:a:ffff:ffff:ffff:ffff:ffff
2a03:1b20:beef::/48
Signature Algorithm: sha256WithRSAEncryption
46:61:e6:49:e0:c2:a6:c6:97:e3:2e:ab:25:e2:e7:27:d1:af:
ec:d6:c8:64:b7:3e:0f:cc:50:e1:69:35:9a:ba:24:76:4f:3d:
01:63:a5:12:b2:07:4d:7c:da:45:77:45:eb:22:46:74:cb:f1:
61:08:6f:bf:31:57:56:9d:bd:74:eb:21:72:74:df:8c:9f:98:
3e:4c:25:13:44:28:a9:93:fd:98:cb:77:d3:36:2e:8f:c9:98:
5c:4a:cb:99:b4:86:9e:d4:10:12:10:29:40:a4:49:5d:5a:28:
74:88:d0:e8:f4:be:c0:52:26:6c:9d:19:05:bc:a8:90:a8:28:
61:0f:b6:a3:1c:80:7b:62:8e:34:76:2b:6e:2a:e3:87:b8:3e:
f2:22:29:94:78:0f:4e:cd:71:2f:b4:0b:9e:1a:b8:d2:80:2b:
83:ab:07:a9:47:27:5f:fd:f0:2d:bf:5b:1c:c0:c1:43:77:81:
6d:19:8d:de:69:2e:65:cc:77:dc:bb:49:b1:f2:27:9a:e5:34:
e5:6a:ac:d0:51:96:ae:b9:33:38:59:d3:9f:2a:86:d1:c0:ce:
d4:8a:a8:a9:ae:73:31:84:1e:e7:80:a8:79:f7:69:06:b0:da:
f2:35:84:f7:7c:4e:8a:69:7e:cf:f8:6d:87:50:9c:32:25:6a:
d7:84:17:dc
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIEEp3H6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZTJlOTE3MzE1ZjBhODc4YjIxZmMxMzlkNDlhODIxYWFkZGMzYzk3MB4XDTIyMDQx
NTE1MjgzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWI4ZGY2MGJmOTU5
NmFhYzJhNTRjMGZkYzgxMjg3OTdlNmVhMzI3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI8I0x6vvt20z0ueb0MHr1Lga0w9RirHtD3SfZ9UoPCZLOF2
5eJ8iXBzILSsZspLrzhNPvLtsoAhnDtJmCVEZ0QP7qIC0lRBNQ+pmy0UYqeCnkq0
vOWCBAECSe0YPXNag2ScCu3Hu6xmkQsuQILFg/aeLDtENyVQpDkgnBFZunFEGvCM
Qp8+N/2k9WU9DPPaKcg03I3OQXcZGaUOcHlgpIpzcLtOsWa6DImkeGNzfj6LDfC5
4QmAadrXrisxndEVBznqMVR363aH6CU0VC9AbrjW7eZ7bRtqwESNjfrr51rHVkMA
RvJpSdVhP5XWzXRwNRtzeTI9MR/NY3+aMn1ujPcCAwEAAaOCAmswggJnMB0GA1Ud
DgQWBBSrjfYL+VlqrCpUwP3IEoeX5uoycDAfBgNVHSMEGDAWgBTeLpFzFfCoeLIf
wTnUmoIardw8lzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNpNlJjeFh3cUhpeUg4RTUxSnFDR3EzY1BKYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvMmQ1YmM4LTVkOTMtNGIwYS1hOGI2LWY4ZDY1Yzk4Mzc0NC8x
L3E0MzJDX2xaYXF3cVZNRDl5QktIbC1icU1uQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
MmQ1YmM4LTVkOTMtNGIwYS1hOGI2LWY4ZDY1Yzk4Mzc0NC8xLzNpNlJjeFh3cUhp
eUg4RTUxSnFDR3EzY1BKYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
gAYIKwYBBQUHAQcBAf8EcTBvMEgEAgABMEIDBAItU9wDBAAtgTgDBACNYvwDBAGN
Yv4DBAK5QYQDBAG5w+gDBAG50cQDBAK51ZgDBAHBIH4DBADBIPkDBALBitgwIwQC
AAIwHTASAwcAKgMbIAABAwcAKgMbIAAKAwcAKgMbIL7vMA0GCSqGSIb3DQEBCwUA
A4IBAQBGYeZJ4MKmxpfjLqsl4ucn0a/s1shktz4PzFDhaTWauiR2Tz0BY6USsgdN
fNpFd0XrIkZ0y/FhCG+/MVdWnb106yFydN+Mn5g+TCUTRCipk/2Yy3fTNi6PyZhc
SsuZtIae1BASEClApEldWih0iNDo9L7AUiZsnRkFvKiQqChhD7ajHIB7Yo40ditu
KuOHuD7yIimUeA9OzXEvtAueGrjSgCuDqwepRydf/fAtv1scwMFDd4FtGY3eaS5l
zHfcu0mx8iea5TTlaqzQUZauuTM4WdOfKobRwM7UiqiprnMxhB7ngKh592kGsNry
NYT3fE6KaX7P+G2HUJwyJWrXhBfc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:20 2024 by rpki-client on console-fra.rpki-client.org