Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/VGbfi-vF6bSAzApNoI8LGKy37s4.roa
File: VGbfi-vF6bSAzApNoI8LGKy37s4.roa (raw, json)
Hash identifier: BqDqC5rI/efmu7HEPXOa40rHl3rmNHECsbmGiuba6sw=
Subject key identifier: 54:66:DF:8B:EB:C5:E9:B4:80:CC:0A:4D:A0:8F:0B:18:AC:B7:EE:CE
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 03345FC2
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/VGbfi-vF6bSAzApNoI8LGKy37s4.roa
Signing time: Sat 01 Jan 2022 09:57:17 +0000
ROA not before: Sat 01 Jan 2022 09:57:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.92.44.0/24 maxlen: 24
185.92.45.0/24 maxlen: 24
185.92.47.0/24 maxlen: 24
185.92.46.0/24 maxlen: 24
46.37.98.0/24 maxlen: 24
46.37.97.0/24 maxlen: 24
46.37.100.0/24 maxlen: 24
46.37.99.0/24 maxlen: 24
46.37.105.0/24 maxlen: 24
46.37.102.0/24 maxlen: 24
46.37.101.0/24 maxlen: 24
46.37.104.0/24 maxlen: 24
46.37.103.0/24 maxlen: 24
46.37.112.0/24 maxlen: 24
46.37.109.0/24 maxlen: 24
46.37.108.0/24 maxlen: 24
46.37.111.0/24 maxlen: 24
46.37.110.0/24 maxlen: 24
46.37.107.0/24 maxlen: 24
46.37.106.0/24 maxlen: 24
46.37.114.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
46.37.116.0/24 maxlen: 24
46.37.115.0/24 maxlen: 24
46.37.117.0/24 maxlen: 24
46.37.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53764034 (0x3345fc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 09:57:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5466df8bebc5e9b480cc0a4da08f0b18acb7eece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:4e:7a:39:e4:9c:22:d5:ba:66:35:00:5b:
f7:32:af:23:a6:09:b7:fa:be:57:06:3d:70:9e:a2:
80:04:b8:9c:31:12:f6:e1:d1:30:19:a2:d0:94:4a:
35:b6:f9:b6:07:34:ad:74:c4:31:9b:68:5f:3a:a9:
9e:c9:24:51:36:0f:8b:c6:e5:99:c3:fa:63:4b:54:
11:a2:af:37:15:d6:48:6f:7e:e8:f5:3a:c9:67:02:
a3:82:b9:be:4e:bd:41:70:d7:3a:20:66:b5:b3:de:
54:43:25:eb:7d:de:e2:1a:fc:71:ca:2b:c2:47:db:
e8:58:2d:f1:dc:ba:a9:63:25:0a:35:b5:41:ab:f7:
44:38:6e:fb:fc:29:2c:b2:b5:09:be:cb:97:07:2e:
b8:09:d5:af:41:0e:d4:a9:94:3a:4c:00:7a:54:6a:
f7:05:e2:64:75:4a:ea:23:aa:f0:51:92:9c:d4:87:
ae:05:cd:a3:2e:c8:97:53:80:e7:dd:54:91:4d:56:
8f:79:92:36:5f:70:30:df:5a:35:aa:27:3c:b8:af:
c8:e9:03:2f:32:f2:24:e9:54:45:4f:9a:f4:78:34:
b3:5a:0c:2d:74:da:03:ee:cf:49:8f:4f:fd:d3:f2:
1f:fc:47:90:00:1c:84:eb:28:c5:ef:0b:00:85:f9:
86:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:66:DF:8B:EB:C5:E9:B4:80:CC:0A:4D:A0:8F:0B:18:AC:B7:EE:CE
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/VGbfi-vF6bSAzApNoI8LGKy37s4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.97.0-46.37.117.255
46.37.119.0/24
185.92.44.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:1d:84:bd:51:c2:e9:74:96:8e:8d:94:b3:af:dc:0a:7d:c5:
96:f3:8c:9e:61:31:b7:f5:f1:63:87:a5:af:19:99:e3:e9:a5:
b3:64:ba:64:b5:82:a1:c8:3c:e6:52:36:f2:67:86:1f:e2:e5:
4f:29:b5:e6:a7:73:86:d9:9a:fc:f2:b5:96:c1:6c:de:48:7b:
a8:76:ae:05:53:52:92:d8:bd:79:1a:23:ae:55:1d:39:36:91:
43:fa:05:1c:7a:5d:df:51:0a:ec:a6:6a:16:b5:d7:e3:1d:1c:
c5:a4:34:c7:25:02:b8:3e:ff:cf:c0:01:29:ca:de:fc:7b:08:
77:c5:78:33:cb:12:64:ac:4b:84:fb:11:81:ca:40:1c:dc:80:
9e:5a:01:d3:0b:ad:30:39:dc:21:6f:6e:e8:5e:6f:d1:cf:40:
01:a5:8c:bb:31:fb:15:71:ba:a6:3e:6f:81:7e:a9:e5:2e:45:
54:e1:f9:19:ca:98:ef:e0:5d:02:8d:5b:84:bd:8f:8a:94:34:
5f:34:26:d5:a9:4e:6a:44:3d:af:4e:b2:e2:5e:74:7b:54:77:
86:e5:9a:d5:a5:5c:cc:ed:d6:be:34:dd:9f:89:d4:5e:89:22:
17:13:d0:14:ca:19:2f:bd:97:09:dd:08:77:bd:0b:65:54:a3:
a4:21:8e:02
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEAzRfwjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2NmMDg4NDkxOGE1MDIzOWVmNzA1MThlZTlmYzA0ZjFhYWUxOTI5MB4XDTIyMDEw
MTA5NTcxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTQ2NmRmOGJlYmM1
ZTliNDgwY2MwYTRkYTA4ZjBiMThhY2I3ZWVjZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL87Tno55Jwi1bpmNQBb9zKvI6YJt/q+VwY9cJ6igAS4nDES
9uHRMBmi0JRKNbb5tgc0rXTEMZtoXzqpnskkUTYPi8blmcP6Y0tUEaKvNxXWSG9+
6PU6yWcCo4K5vk69QXDXOiBmtbPeVEMl633e4hr8ccorwkfb6Fgt8dy6qWMlCjW1
Qav3RDhu+/wpLLK1Cb7LlwcuuAnVr0EO1KmUOkwAelRq9wXiZHVK6iOq8FGSnNSH
rgXNoy7Il1OA591UkU1Wj3mSNl9wMN9aNaonPLivyOkDLzLyJOlURU+a9Hg0s1oM
LXTaA+7PSY9P/dPyH/xHkAAchOsoxe8LAIX5huMCAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBRUZt+L68XptIDMCk2gjwsYrLfuzjAfBgNVHSMEGDAWgBTTzwiEkYpQI573
BRjun8BPGq4ZKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA4OEloSkdLVUNPZTl3VVk3cF9BVHhxdUdTay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvY2RmZjE2LTQ1OGEtNDdjMy04ZGZhLTIzMTU0OTQwOTcyMC8x
L1ZHYmZpLXZGNmJTQXpBcE5vSThMR0t5MzdzNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
Y2RmZjE2LTQ1OGEtNDdjMy04ZGZhLTIzMTU0OTQwOTcyMC8xLzA4OEloSkdLVUNP
ZTl3VVk3cF9BVHhxdUdTay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGjAMAwQALiVhAwQBLiV0AwQALiV3AwQC
uVwsMA0GCSqGSIb3DQEBCwUAA4IBAQAeHYS9UcLpdJaOjZSzr9wKfcWW84yeYTG3
9fFjh6WvGZnj6aWzZLpktYKhyDzmUjbyZ4Yf4uVPKbXmp3OG2Zr88rWWwWzeSHuo
dq4FU1KS2L15GiOuVR05NpFD+gUcel3fUQrspmoWtdfjHRzFpDTHJQK4Pv/PwAEp
yt78ewh3xXgzyxJkrEuE+xGBykAc3ICeWgHTC60wOdwhb27oXm/Rz0ABpYy7MfsV
cbqmPm+BfqnlLkVU4fkZypjv4F0CjVuEvY+KlDRfNCbVqU5qRD2vTrLiXnR7VHeG
5ZrVpVzM7da+NN2fidReiSIXE9AUyhkvvZcJ3Qh3vQtlVKOkIY4C
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org