Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/zWQ-5FZcKzVMXrsi9OgbkpPMR64.roa
File: zWQ-5FZcKzVMXrsi9OgbkpPMR64.roa (raw, json)
Hash identifier: kAlaJG/lvS1msSJI3ne7PzomOzd5bxoGtttjBuwCQXU=
Subject key identifier: CD:64:3E:E4:56:5C:2B:35:4C:5E:BB:22:F4:E8:1B:92:93:CC:47:AE
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018475CA0523B41DDAAC780C98AAE9CDE9C1
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/zWQ-5FZcKzVMXrsi9OgbkpPMR64.roa
Signing time: Mon 14 Nov 2022 10:58:04 +0000
ROA not before: Mon 14 Nov 2022 10:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 85.8.160.0/23 maxlen: 23
85.8.162.0/23 maxlen: 23
62.182.32.0/23 maxlen: 23
62.182.34.0/23 maxlen: 23
139.28.240.0/23 maxlen: 23
139.28.242.0/23 maxlen: 23
5.133.100.0/23 maxlen: 23
5.133.102.0/23 maxlen: 23
31.40.204.0/23 maxlen: 23
31.40.206.0/23 maxlen: 23
212.107.4.0/23 maxlen: 23
212.107.6.0/23 maxlen: 23
84.54.0.0/23 maxlen: 23
84.54.2.0/23 maxlen: 23
85.8.144.0/23 maxlen: 23
85.8.146.0/23 maxlen: 23
139.28.212.0/22 maxlen: 22
193.32.204.0/22 maxlen: 22
92.249.62.0/23 maxlen: 23
92.249.60.0/23 maxlen: 23
193.187.108.0/22 maxlen: 22
176.53.156.0/23 maxlen: 23
176.53.158.0/23 maxlen: 23
194.93.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:ca:05:23:b4:1d:da:ac:78:0c:98:aa:e9:cd:e9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Nov 14 10:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd643ee4565c2b354c5ebb22f4e81b9293cc47ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:28:09:38:27:ad:e0:78:98:a1:33:39:45:5f:
a3:1d:f8:54:94:db:09:91:bb:69:ef:cd:ab:67:78:
09:bf:94:37:4a:e9:a6:9c:9f:1d:96:0f:bb:b8:fb:
19:37:6d:de:8d:4b:ad:b8:dd:3b:b6:32:1b:2c:3d:
1a:c8:52:ca:8e:6f:ba:e6:0c:7a:8b:a0:a5:fd:30:
67:8e:4a:45:6c:3e:2d:8c:b3:6e:a1:a7:e0:d1:ab:
90:eb:aa:b8:d8:ae:e0:b6:9c:0f:2d:f8:d2:55:c7:
8b:93:f6:2c:c2:f4:9a:91:27:20:27:4f:26:08:fb:
6f:94:6c:36:77:22:b3:57:65:19:f7:a1:48:17:14:
69:28:e3:54:be:00:02:78:91:a7:05:db:ff:29:25:
e2:f9:17:5f:19:ee:80:70:c9:76:4d:8e:8e:18:e7:
a0:b0:c1:33:09:d9:43:48:71:a3:ab:92:37:c9:a2:
dd:56:a4:53:99:62:b3:2d:3f:48:cd:8c:0e:88:0d:
8c:a2:af:17:5c:6c:c3:bc:fe:11:e6:d1:26:4f:a0:
60:9e:de:44:1e:89:c1:a4:3f:a5:9b:1e:92:fc:eb:
a1:9d:12:51:11:d4:67:6c:fc:62:26:36:71:fc:b3:
5d:0c:3b:f4:af:09:fa:6f:f4:2e:b2:66:05:6c:21:
1c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:64:3E:E4:56:5C:2B:35:4C:5E:BB:22:F4:E8:1B:92:93:CC:47:AE
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/zWQ-5FZcKzVMXrsi9OgbkpPMR64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.100.0/22
31.40.204.0/22
62.182.32.0/22
84.54.0.0/22
85.8.144.0/22
85.8.160.0/22
92.249.60.0/22
139.28.212.0/22
139.28.240.0/22
176.53.156.0/22
193.32.204.0/22
193.187.108.0/22
194.93.60.0/22
212.107.4.0/22
Signature Algorithm: sha256WithRSAEncryption
37:36:e9:66:e9:b3:68:22:78:bf:e5:82:38:04:66:23:b1:a6:
67:23:02:b2:58:e9:9a:2f:c1:79:4f:99:c1:68:3b:c1:56:10:
1a:c6:fa:9f:eb:cf:74:b6:dd:ac:b4:2b:55:ac:0d:d6:3d:6a:
ff:ad:97:ef:af:12:c3:ec:74:87:7c:0e:c7:0d:e8:16:20:0e:
2d:39:cc:8e:0d:ce:49:42:01:19:ae:25:82:e8:9a:ab:94:36:
58:65:a3:ef:fc:7e:09:16:3e:64:21:d3:7f:5a:0d:7f:99:aa:
62:b4:99:94:91:4f:db:f3:87:12:49:35:d6:0a:45:40:5e:b4:
de:61:11:b9:69:34:9e:48:99:6a:1e:a8:fe:d2:cb:ce:9c:5e:
5e:12:c3:93:dc:ce:bb:75:3f:09:00:b3:aa:ac:2f:a2:28:b2:
3d:21:79:7b:c1:52:78:26:18:9a:5b:34:37:e7:0b:db:19:42:
be:1c:10:af:e4:1c:04:93:60:01:2d:10:fb:82:07:69:bd:38:
d9:5c:c6:06:18:99:6a:77:ca:14:ea:d0:96:b1:ee:cb:4f:b6:
3c:e5:ef:dc:b3:ab:d8:24:fe:e3:d0:ca:7f:ee:08:9d:68:99:
b9:71:d2:10:ef:f6:b0:99:f6:a6:92:73:83:cc:59:c3:da:3e:
c3:d1:20:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org