Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/6820f9-4459-4858-98ce-c694f0eacba6/1/3gsj3u47q5F0zcrZUb6l0OrOfr8.roa
File: 3gsj3u47q5F0zcrZUb6l0OrOfr8.roa (raw, json)
Hash identifier: JPkwGHwFe8D1GO3EG6NLUP4EDivFXM0Uqm6y7CelQXc=
Subject key identifier: DE:0B:23:DE:EE:3B:AB:91:74:CD:CA:D9:51:BE:A5:D0:EA:CE:7E:BF
Certificate issuer: /CN=a4b18f96aaa03567f22fc02c42a6935708655aa9
Certificate serial: 018419080243E0F135CCA6B77C51BC7DAFDE
Authority key identifier: A4:B1:8F:96:AA:A0:35:67:F2:2F:C0:2C:42:A6:93:57:08:65:5A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pLGPlqqgNWfyL8AsQqaTVwhlWqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/6820f9-4459-4858-98ce-c694f0eacba6/1/3gsj3u47q5F0zcrZUb6l0OrOfr8.roa
Signing time: Thu 27 Oct 2022 10:41:06 +0000
ROA not before: Thu 27 Oct 2022 10:41:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21245
IP address blocks: 185.230.17.0/24 maxlen: 24
185.230.16.0/24 maxlen: 24
185.230.19.0/24 maxlen: 24
185.21.183.0/24 maxlen: 24
185.21.182.0/24 maxlen: 24
185.21.181.0/24 maxlen: 24
185.21.180.0/24 maxlen: 24
31.3.3.0/24 maxlen: 24
31.3.2.0/24 maxlen: 24
31.3.1.0/24 maxlen: 24
31.3.0.0/24 maxlen: 24
31.3.4.0/24 maxlen: 24
31.3.6.0/24 maxlen: 24
31.3.5.0/24 maxlen: 24
31.3.7.0/24 maxlen: 24
185.87.172.0/24 maxlen: 24
185.87.175.0/24 maxlen: 24
185.87.174.0/24 maxlen: 24
185.87.173.0/24 maxlen: 24
185.22.160.0/24 maxlen: 24
185.22.163.0/24 maxlen: 24
185.22.162.0/24 maxlen: 24
185.22.161.0/24 maxlen: 24
2a03:3f00::/48 maxlen: 48
2a03:3f00:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:08:02:43:e0:f1:35:cc:a6:b7:7c:51:bc:7d:af:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4b18f96aaa03567f22fc02c42a6935708655aa9
Validity
Not Before: Oct 27 10:41:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de0b23deee3bab9174cdcad951bea5d0eace7ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4a:1e:5c:ad:6a:e4:de:9f:0f:29:97:e2:86:
67:03:29:33:aa:88:10:24:84:44:30:36:63:f6:4c:
e6:21:de:cf:1e:69:f5:17:c5:f3:e5:38:27:0a:c9:
04:86:67:83:09:b5:61:cc:49:52:ff:6c:16:ef:3c:
24:58:b9:eb:cc:92:2c:a7:7b:ed:6c:63:5a:9c:94:
ce:6e:f0:af:48:14:28:63:16:7d:2c:9e:d8:50:21:
fc:4d:d8:bf:ba:bd:ba:b8:e4:d4:81:5d:58:0a:c1:
3c:c0:4d:7e:fa:8a:c7:00:80:ff:3f:36:28:eb:87:
8f:a7:9c:b8:6c:0b:d6:78:a4:7c:1a:5f:cd:a5:20:
26:6d:4d:e3:63:1b:bb:8d:f9:92:9d:6f:3b:8d:5a:
72:3a:76:d6:44:08:de:bc:b9:41:db:38:e0:20:f8:
50:5d:19:f8:2d:22:46:bb:80:1d:2e:ae:71:c1:4a:
8d:94:fa:5d:bb:9d:6a:bd:07:59:cb:94:b3:1f:67:
91:5a:52:95:48:b7:d5:09:68:83:bb:c7:85:73:31:
b3:eb:45:a5:c9:dd:38:e1:d2:02:6d:7a:18:15:69:
98:62:ec:7d:4e:93:db:57:8b:af:d4:59:f0:d7:e9:
2e:f8:4b:f6:7f:f4:bf:8a:64:b0:1c:a5:15:be:8a:
35:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0B:23:DE:EE:3B:AB:91:74:CD:CA:D9:51:BE:A5:D0:EA:CE:7E:BF
X509v3 Authority Key Identifier:
keyid:A4:B1:8F:96:AA:A0:35:67:F2:2F:C0:2C:42:A6:93:57:08:65:5A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pLGPlqqgNWfyL8AsQqaTVwhlWqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/6820f9-4459-4858-98ce-c694f0eacba6/1/3gsj3u47q5F0zcrZUb6l0OrOfr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/6820f9-4459-4858-98ce-c694f0eacba6/1/pLGPlqqgNWfyL8AsQqaTVwhlWqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.0.0/21
185.21.180.0/22
185.22.160.0/22
185.87.172.0/22
185.230.16.0/23
185.230.19.0/24
IPv6:
2a03:3f00::/47
Signature Algorithm: sha256WithRSAEncryption
42:e5:9b:39:66:59:3b:31:2a:e3:f6:98:45:72:aa:17:7f:05:
a4:3f:f1:79:f6:df:be:9a:b8:b5:33:76:11:13:21:92:28:07:
79:56:98:bf:cd:47:1f:71:8d:41:b7:ff:b2:b5:ef:f4:d6:0c:
bd:c1:5f:73:6f:73:c9:6f:3b:ae:f4:8a:93:47:28:7d:d3:3d:
29:9a:64:2e:e4:9b:83:9a:c3:c2:2c:70:ee:e6:ac:70:a4:81:
ab:53:ee:55:07:c5:41:da:ce:ba:2d:e8:db:83:fd:7d:43:b9:
78:a7:f7:e7:ad:b8:ea:1b:23:89:66:71:8b:6e:f5:ba:db:07:
bb:ad:5f:93:85:fa:1f:c9:69:4d:43:4e:4b:25:3b:31:ce:a7:
54:e1:39:36:61:c4:48:73:06:7d:16:5c:9b:4b:e9:f5:02:5e:
0a:3f:1a:cd:1a:4e:44:53:f3:f4:42:20:a4:28:2e:a7:3a:b5:
3e:ae:64:7a:20:b1:4f:e0:4e:69:9f:80:a5:3b:03:5b:f1:91:
a9:82:33:07:8a:ad:1d:dc:35:b9:c2:f5:62:e9:ec:6a:a1:f8:
44:3b:47:da:28:6c:6b:f6:08:6e:2b:a6:2d:3e:77:6f:a0:cb:
70:96:9f:16:e3:5d:b2:fc:95:a2:0e:33:b3:51:f0:f2:b3:1c:
b5:3e:95:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:38 2024 by rpki-client on console-ams.rpki-client.org