Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/N0R4bGO0FCAdU4Se3poUSz9gBEc.roa
File: N0R4bGO0FCAdU4Se3poUSz9gBEc.roa (raw, json)
Hash identifier: iLoWwqpIonj4NONRBy3vab1fd0x7lytsNM81X8qdu1M=
Subject key identifier: 37:44:78:6C:63:B4:14:20:1D:53:84:9E:DE:9A:14:4B:3F:60:04:47
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 07D7C4CA
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/N0R4bGO0FCAdU4Se3poUSz9gBEc.roa
Signing time: Tue 08 Feb 2022 05:21:09 +0000
ROA not before: Tue 08 Feb 2022 05:21:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48287
IP address blocks: 185.26.112.0/22 maxlen: 22
109.70.24.0/21 maxlen: 24
91.217.21.0/24 maxlen: 24
91.217.20.0/24 maxlen: 24
89.104.80.0/21 maxlen: 24
178.210.64.0/19 maxlen: 24
89.111.130.0/24 maxlen: 24
89.111.128.0/24 maxlen: 24
89.111.132.0/23 maxlen: 23
31.177.64.0/22 maxlen: 24
89.111.144.0/22 maxlen: 24
195.24.64.0/22 maxlen: 22
195.24.68.0/22 maxlen: 22
195.24.68.0/23 maxlen: 23
195.24.71.0/24 maxlen: 24
195.24.70.0/24 maxlen: 24
185.76.144.0/22 maxlen: 22
91.189.114.0/23 maxlen: 23
91.189.112.0/21 maxlen: 21
91.189.116.0/22 maxlen: 22
31.177.68.0/22 maxlen: 22
31.177.72.0/21 maxlen: 24
31.177.80.0/21 maxlen: 24
89.111.164.0/24 maxlen: 24
31.177.91.0/24 maxlen: 24
31.177.88.0/21 maxlen: 22
2a02:2090::/48 maxlen: 48
2a02:2090:ec00::/48 maxlen: 48
2a02:2090:e800::/48 maxlen: 48
2a02:2090:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131581130 (0x7d7c4ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Feb 8 05:21:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3744786c63b414201d53849ede9a144b3f600447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b3:09:26:b3:70:f9:96:69:6a:cc:d6:13:46:
f9:05:36:b1:b0:41:dd:7b:e8:c4:c6:f3:9d:25:e1:
9f:e8:48:9c:9f:bc:93:94:a5:a9:63:a2:8b:ed:ba:
6d:76:9c:0c:e6:01:57:3e:6c:22:76:6a:d5:a4:50:
b7:f5:29:1e:7d:ad:e8:24:63:00:64:70:72:7d:34:
fd:f2:6d:c8:4f:34:aa:24:7a:5f:0c:ed:1b:0a:d9:
57:6e:00:f2:20:1c:54:04:7e:de:da:e4:ac:2c:f6:
cb:ab:c5:34:3d:1f:24:c7:78:2a:a4:e5:31:3a:21:
c9:80:21:2b:d1:a4:2a:ab:d1:6f:c1:26:b7:7b:54:
89:85:44:8b:d8:93:a5:55:e6:52:2a:4b:04:bd:94:
53:81:32:5e:89:19:b0:1d:6f:f9:59:ae:27:d8:52:
04:82:a6:bf:a0:d1:17:12:48:c0:a8:3e:90:0e:52:
7d:74:85:bd:7a:33:e9:48:b5:af:f6:35:4c:09:22:
a9:25:d2:b8:f3:e1:e5:0f:42:76:48:07:8b:9d:9e:
91:19:72:17:59:9c:00:ce:a1:67:f6:68:97:bb:88:
b9:88:7f:cb:19:25:b0:28:4b:90:70:2e:1d:4c:8f:
3c:e9:18:86:d9:1d:16:18:62:7d:20:c8:31:3b:47:
25:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:44:78:6C:63:B4:14:20:1D:53:84:9E:DE:9A:14:4B:3F:60:04:47
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/N0R4bGO0FCAdU4Se3poUSz9gBEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.64.0/19
89.104.80.0/21
89.111.128.0/24
89.111.130.0/24
89.111.132.0/23
89.111.144.0/22
89.111.164.0/24
91.189.112.0/21
91.217.20.0/23
109.70.24.0/21
178.210.64.0/19
185.26.112.0/22
185.76.144.0/22
195.24.64.0/21
IPv6:
2a02:2090::/47
2a02:2090:e800::/48
2a02:2090:ec00::/48
Signature Algorithm: sha256WithRSAEncryption
78:cc:ee:e6:38:83:04:9a:32:75:5c:e2:69:dc:8b:0c:26:26:
52:8c:cd:4b:d5:71:4d:eb:43:ad:89:79:04:cd:21:63:e6:65:
9a:c3:a8:79:4f:84:4e:8f:eb:00:a9:b4:80:e2:ab:d8:75:7a:
dc:5e:c0:ed:67:bc:f0:e1:db:89:63:37:ac:42:b1:88:10:78:
7d:84:8a:d3:23:c5:d1:16:8f:aa:38:24:52:cc:32:6b:d4:78:
bf:7e:f4:e1:85:90:a5:e6:a4:cc:67:bf:f9:9c:4a:f0:eb:d5:
2a:45:5c:13:1c:50:88:48:b9:94:cf:69:7a:c2:4e:de:93:79:
c3:5e:47:e6:35:70:bf:9a:2b:08:f4:50:37:f8:c4:fd:18:a2:
f1:27:3b:f8:68:b6:85:4d:be:e8:1d:f1:b2:75:ba:25:b0:57:
a4:8e:21:13:db:02:1d:b0:d0:55:8a:ba:c1:a0:a3:19:be:66:
77:9a:fd:68:e1:12:a8:bb:12:b2:69:95:d7:0c:1a:35:a5:55:
80:c8:50:e1:29:c0:e8:b3:71:a9:8b:ab:a5:4e:55:c8:0f:5f:
be:a5:b7:b7:92:cc:a1:e4:51:36:2d:fa:61:b9:b5:fb:66:05:
bd:91:80:19:d4:2a:a7:2e:ca:e0:e8:42:af:95:ba:0d:63:e9:
cf:2e:39:bc
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgIEB9fEyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZGZhZDIzZTExY2YwZDI0YTQ3NzU5NGViYTA5Zjk5YWNjNmYxZmZmMB4XDTIyMDIw
ODA1MjEwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzc0NDc4NmM2M2I0
MTQyMDFkNTM4NDllZGU5YTE0NGIzZjYwMDQ0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJKzCSazcPmWaWrM1hNG+QU2sbBB3XvoxMbznSXhn+hInJ+8
k5SlqWOii+26bXacDOYBVz5sInZq1aRQt/UpHn2t6CRjAGRwcn00/fJtyE80qiR6
XwztGwrZV24A8iAcVAR+3trkrCz2y6vFND0fJMd4KqTlMTohyYAhK9GkKqvRb8Em
t3tUiYVEi9iTpVXmUipLBL2UU4EyXokZsB1v+VmuJ9hSBIKmv6DRFxJIwKg+kA5S
fXSFvXoz6Ui1r/Y1TAkiqSXSuPPh5Q9CdkgHi52ekRlyF1mcAM6hZ/Zol7uIuYh/
yxklsChLkHAuHUyPPOkYhtkdFhhifSDIMTtHJSkCAwEAAaOCAnwwggJ4MB0GA1Ud
DgQWBBQ3RHhsY7QUIB1ThJ7emhRLP2AERzAfBgNVHSMEGDAWgBS9+tI+Ec8NJKR3
WU66CfmazG8f/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZmclNQaEhQRFNTa2QxbE91Z241bXN4dkhfOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvZTI1MjM5LTZhYjAtNDkxOS1hNzZhLTRmNGU3MWUzMjA4NC8x
L04wUjRiR08wRkNBZFU0U2UzcG9VU3o5Z0JFYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
ZTI1MjM5LTZhYjAtNDkxOS1hNzZhLTRmNGU3MWUzMjA4NC8xL3ZmclNQaEhQRFNT
a2QxbE91Z241bXN4dkhfOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
kQYIKwYBBQUHAQcBAf8EgYEwfzBaBAIAATBUAwQFH7FAAwQDWWhQAwQAWW+AAwQA
WW+CAwQBWW+EAwQCWW+QAwQAWW+kAwQDW71wAwQBW9kUAwQDbUYYAwQFstJAAwQC
uRpwAwQCuUyQAwQDwxhAMCEEAgACMBsDBwEqAiCQAAADBwAqAiCQ6AADBwAqAiCQ
7AAwDQYJKoZIhvcNAQELBQADggEBAHjM7uY4gwSaMnVc4mnciwwmJlKMzUvVcU3r
Q62JeQTNIWPmZZrDqHlPhE6P6wCptIDiq9h1etxewO1nvPDh24ljN6xCsYgQeH2E
itMjxdEWj6o4JFLMMmvUeL9+9OGFkKXmpMxnv/mcSvDr1SpFXBMcUIhIuZTPaXrC
Tt6TecNeR+Y1cL+aKwj0UDf4xP0YovEnO/hotoVNvugd8bJ1uiWwV6SOIRPbAh2w
0FWKusGgoxm+Znea/WjhEqi7ErJpldcMGjWlVYDIUOEpwOizcamLq6VOVcgPX76l
t7eSzKHkUTYt+mG5tftmBb2RgBnUKqcuyuDoQq+Vug1j6c8uObw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org