Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/Tb-9q-Mek0BfrESp9xn3HM_3RBs.roa
File: Tb-9q-Mek0BfrESp9xn3HM_3RBs.roa (raw, json)
Hash identifier: X8rQgO/nKd0VG63CWvM9tscAHxeeprjLziCgJLxyZOg=
Subject key identifier: 4D:BF:BD:AB:E3:1E:93:40:5F:AC:44:A9:F7:19:F7:1C:CF:F7:44:1B
Certificate issuer: /CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Certificate serial: 39339BA7
Authority key identifier: 92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/Tb-9q-Mek0BfrESp9xn3HM_3RBs.roa
Signing time: Tue 17 May 2022 10:30:46 +0000
ROA not before: Tue 17 May 2022 10:30:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51862
IP address blocks: 46.16.72.0/21 maxlen: 24
217.160.216.0/24 maxlen: 24
217.160.219.0/24 maxlen: 24
217.160.222.0/24 maxlen: 24
78.137.96.0/21 maxlen: 24
212.227.51.0/24 maxlen: 24
212.227.68.0/24 maxlen: 24
81.173.112.0/24 maxlen: 24
81.173.115.0/24 maxlen: 24
81.173.114.0/24 maxlen: 24
81.173.113.0/24 maxlen: 24
185.48.116.0/22 maxlen: 24
85.184.248.0/22 maxlen: 24
157.97.104.0/21 maxlen: 24
212.227.151.0/24 maxlen: 24
212.227.171.0/24 maxlen: 24
87.106.112.0/22 maxlen: 24
212.227.115.0/24 maxlen: 24
212.227.118.0/24 maxlen: 24
212.227.129.0/24 maxlen: 24
217.160.200.0/22 maxlen: 24
217.160.210.0/23 maxlen: 24
217.160.118.0/24 maxlen: 24
217.160.117.0/24 maxlen: 24
217.160.120.0/24 maxlen: 24
194.126.206.0/24 maxlen: 24
212.227.224.0/24 maxlen: 24
213.244.192.0/24 maxlen: 24
212.227.233.0/24 maxlen: 24
217.160.154.0/25 maxlen: 25
2a02:2478::/32 maxlen: 48
2a02:247a::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 959683495 (0x39339ba7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9295b1f1dcd8fa6ac1ef788278c489e15eacae70
Validity
Not Before: May 17 10:30:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dbfbdabe31e93405fac44a9f719f71ccff7441b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8a:6e:1e:0c:46:4f:ed:14:fa:0f:13:21:20:
41:3b:f1:cb:38:f9:1a:42:91:0d:7a:9c:82:67:4c:
cd:6c:82:a6:17:d7:f2:4d:ac:16:4b:61:b2:f4:20:
82:c4:1e:2a:03:b4:64:43:f4:0a:ec:30:1e:9e:7c:
52:db:89:f4:4d:9e:67:4d:79:61:6d:4f:05:9f:da:
0d:b1:1e:9c:7a:a7:9e:6e:e9:ed:29:69:cc:5b:0e:
01:e8:2f:fe:1d:9b:2f:ec:1b:25:06:b1:d0:d9:5d:
a7:a7:32:c7:f1:e3:f4:56:2d:e8:c1:43:48:bf:91:
1e:28:58:83:88:51:b1:65:0b:09:d4:67:7d:39:60:
f4:67:12:4a:ca:06:c7:95:e6:d8:b9:85:9b:3d:d3:
0c:92:a6:74:58:d0:f3:8f:f0:cd:19:46:3b:e8:10:
13:33:65:32:fc:45:78:75:18:f8:2e:0b:52:32:ac:
6a:9d:6b:24:ee:87:c2:98:88:50:e8:b9:7e:b9:ab:
d0:a9:47:bf:22:45:c1:b0:bb:28:34:84:11:3d:e8:
38:a5:5f:19:71:be:7c:ce:ed:c1:b6:c5:74:48:78:
9a:c0:9c:54:5d:81:58:1d:bd:b4:c4:29:18:3f:5b:
c2:e9:16:da:2a:d8:e5:8b:b5:0b:30:64:81:ed:cb:
53:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BF:BD:AB:E3:1E:93:40:5F:AC:44:A9:F7:19:F7:1C:CF:F7:44:1B
X509v3 Authority Key Identifier:
keyid:92:95:B1:F1:DC:D8:FA:6A:C1:EF:78:82:78:C4:89:E1:5E:AC:AE:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpWx8dzY-mrB73iCeMSJ4V6srnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/Tb-9q-Mek0BfrESp9xn3HM_3RBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0fbc2e-fd88-4df2-aae3-9eb40cc5f68b/1/kpWx8dzY-mrB73iCeMSJ4V6srnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.72.0/21
78.137.96.0/21
81.173.112.0/22
85.184.248.0/22
87.106.112.0/22
157.97.104.0/21
185.48.116.0/22
194.126.206.0/24
212.227.51.0/24
212.227.68.0/24
212.227.115.0/24
212.227.118.0/24
212.227.129.0/24
212.227.151.0/24
212.227.171.0/24
212.227.224.0/24
212.227.233.0/24
213.244.192.0/24
217.160.117.0-217.160.118.255
217.160.120.0/24
217.160.154.0/25
217.160.200.0/22
217.160.210.0/23
217.160.216.0/24
217.160.219.0/24
217.160.222.0/24
IPv6:
2a02:2478::/32
2a02:247a::/32
Signature Algorithm: sha256WithRSAEncryption
9e:48:f5:93:98:97:af:c0:da:64:49:7b:33:53:a5:14:87:e2:
c6:15:40:0d:e5:a9:17:69:72:9b:1c:50:ca:7f:ca:a4:bb:d5:
ee:c8:b5:cd:18:f0:83:a8:8e:a1:c5:42:78:34:67:1c:f0:3a:
fe:23:8a:aa:0b:4a:53:23:77:aa:08:cf:4b:53:9f:c1:2c:de:
60:8b:a3:58:f9:0c:cb:7d:f4:82:ff:a4:3c:4c:ad:09:83:1e:
c1:4f:5f:c4:62:12:b2:07:12:f0:f1:bd:75:2e:16:81:a9:08:
f0:06:4e:10:4f:c7:43:36:28:12:33:6d:13:f1:f6:43:8f:44:
33:82:bb:c4:2c:6e:18:3a:a0:e1:88:51:98:36:5f:26:18:ed:
99:98:28:93:bd:15:5e:f1:51:06:6a:28:04:1d:2f:51:94:e1:
f1:ff:e3:b5:73:e5:f2:1d:2f:6c:fc:d4:ab:6f:47:2b:aa:d6:
49:bd:4b:95:ed:3b:5b:6c:03:fd:fa:56:83:53:11:33:30:bc:
55:44:b4:00:9d:91:77:fa:be:5a:fe:18:4a:6a:9b:71:20:57:
f0:4f:57:a1:6b:0f:11:87:51:a6:b1:ca:e0:4f:d4:95:2b:c4:
e4:44:69:b0:12:32:1f:99:05:41:5f:96:2f:73:61:90:37:83:
0d:af:f5:2c
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgIEOTObpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
Mjk1YjFmMWRjZDhmYTZhYzFlZjc4ODI3OGM0ODllMTVlYWNhZTcwMB4XDTIyMDUx
NzEwMzA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGRiZmJkYWJlMzFl
OTM0MDVmYWM0NGE5ZjcxOWY3MWNjZmY3NDQxYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWKbh4MRk/tFPoPEyEgQTvxyzj5GkKRDXqcgmdMzWyCphfX
8k2sFkthsvQggsQeKgO0ZEP0CuwwHp58UtuJ9E2eZ015YW1PBZ/aDbEenHqnnm7p
7SlpzFsOAegv/h2bL+wbJQax0Nldp6cyx/Hj9FYt6MFDSL+RHihYg4hRsWULCdRn
fTlg9GcSSsoGx5Xm2LmFmz3TDJKmdFjQ84/wzRlGO+gQEzNlMvxFeHUY+C4LUjKs
ap1rJO6HwpiIUOi5frmr0KlHvyJFwbC7KDSEET3oOKVfGXG+fM7twbbFdEh4msCc
VF2BWB29tMQpGD9bwukW2irY5Yu1CzBkge3LU6sCAwEAAaOCAsMwggK/MB0GA1Ud
DgQWBBRNv72r4x6TQF+sRKn3Gfccz/dEGzAfBgNVHSMEGDAWgBSSlbHx3Nj6asHv
eIJ4xInhXqyucDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2twV3g4ZHpZLW1yQjczaUNlTVNKNFY2c3JuQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjIvMGZiYzJlLWZkODgtNGRmMi1hYWUzLTllYjQwY2M1ZjY4Yi8x
L1RiLTlxLU1lazBCZnJFU3A5eG4zSE1fM1JCcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIv
MGZiYzJlLWZkODgtNGRmMi1hYWUzLTllYjQwY2M1ZjY4Yi8xL2twV3g4ZHpZLW1y
QjczaUNlTVNKNFY2c3JuQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
2AYIKwYBBQUHAQcBAf8EgcgwgcUwgawEAgABMIGlAwQDLhBIAwQDTolgAwQCUa1w
AwQCVbj4AwQCV2pwAwQDnWFoAwQCuTB0AwQAwn7OAwQA1OMzAwQA1ONEAwQA1ONz
AwQA1ON2AwQA1OOBAwQA1OOXAwQA1OOrAwQA1OPgAwQA1OPpAwQA1fTAMAwDBADZ
oHUDBADZoHYDBADZoHgDBQfZoJoAAwQC2aDIAwQB2aDSAwQA2aDYAwQA2aDbAwQA
2aDeMBQEAgACMA4DBQAqAiR4AwUAKgIkejANBgkqhkiG9w0BAQsFAAOCAQEAnkj1
k5iXr8DaZEl7M1OlFIfixhVADeWpF2lymxxQyn/KpLvV7si1zRjwg6iOocVCeDRn
HPA6/iOKqgtKUyN3qgjPS1OfwSzeYIujWPkMy330gv+kPEytCYMewU9fxGISsgcS
8PG9dS4WgakI8AZOEE/HQzYoEjNtE/H2Q49EM4K7xCxuGDqg4YhRmDZfJhjtmZgo
k70VXvFRBmooBB0vUZTh8f/jtXPl8h0vbPzUq29HK6rWSb1Lle07W2wD/fpWg1MR
MzC8VUS0AJ2Rd/q+Wv4YSmqbcSBX8E9XoWsPEYdRprHK4E/UlSvE5ERpsBIyH5kF
QV+WL3NhkDeDDa/1LA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:21 2024 by rpki-client on console-fra.rpki-client.org