Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_ZYZPUaNS-dBONhNhFtaYQnSXos.roa
File: _ZYZPUaNS-dBONhNhFtaYQnSXos.roa (raw, json)
Hash identifier: eE/PE/uL9T7Y1/W0zgpyexLfH3U3uMK8jeLzIL7AtGI=
Subject key identifier: FD:96:19:3D:46:8D:4B:E7:41:38:D8:4D:84:5B:5A:61:09:D2:5E:8B
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 0187798F39205EFBA7976C1D3792B508EE08
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_ZYZPUaNS-dBONhNhFtaYQnSXos.roa
Signing time: Thu 13 Apr 2023 07:40:41 +0000
ROA not before: Thu 13 Apr 2023 07:40:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.180.0/24 maxlen: 24
45.83.181.0/24 maxlen: 24
45.83.182.0/24 maxlen: 24
45.83.183.0/24 maxlen: 24
139.28.73.0/24 maxlen: 24
139.28.74.0/24 maxlen: 24
139.28.75.0/24 maxlen: 24
139.28.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:79:8f:39:20:5e:fb:a7:97:6c:1d:37:92:b5:08:ee:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Apr 13 07:40:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd96193d468d4be74138d84d845b5a6109d25e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e5:66:8f:a1:65:44:1b:6e:08:3a:71:3b:2c:
8c:af:8c:8b:f7:4d:92:f8:2a:25:ec:d2:c1:4d:f6:
60:cd:ba:2a:c9:fd:27:93:36:d0:fa:1a:f9:c7:c2:
8d:b8:c9:8f:f2:d5:a0:c8:d5:bd:73:14:fc:dc:6b:
2b:74:41:28:cb:26:84:36:1e:83:91:fe:07:19:f5:
8f:99:83:68:95:1e:e1:0f:9d:5c:32:c1:1c:e4:8f:
c1:1c:9d:8c:2a:ab:1c:b5:e3:9b:8a:1e:8a:64:4e:
f9:dc:fc:a9:09:d6:96:b0:58:6c:b3:32:31:56:be:
4a:a7:78:d2:a3:cb:07:ca:15:6b:67:f7:0d:18:ed:
26:44:ea:f7:42:83:c3:31:61:37:ad:d9:bd:b1:e3:
bc:85:da:df:78:6e:6b:f6:79:d9:80:8a:1b:1e:04:
a2:d6:c3:d8:b8:36:ea:9e:69:78:cc:d3:52:52:1c:
83:d7:45:e4:c0:2b:5b:a3:46:89:69:71:71:68:d9:
17:9f:78:64:8b:56:70:39:78:a3:9a:4b:71:44:0c:
6a:76:b9:b1:f4:50:5c:9f:04:42:7f:bc:55:e0:c4:
80:16:88:d5:ae:28:1d:55:35:b3:ec:5d:11:9a:42:
2c:75:07:fd:bf:17:e5:02:a9:0f:dd:6d:09:34:8b:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:96:19:3D:46:8D:4B:E7:41:38:D8:4D:84:5B:5A:61:09:D2:5E:8B
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/_ZYZPUaNS-dBONhNhFtaYQnSXos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.180.0/22
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:37:75:68:23:06:ac:ad:05:73:57:fd:88:14:6c:47:64:7b:
18:62:3a:e5:7e:ef:6a:3e:0f:2c:16:d3:67:35:b8:68:8b:ab:
43:64:ca:fc:ae:0c:fd:56:1e:c6:36:9d:94:2e:13:70:16:d6:
66:c1:bc:c8:04:9c:de:e3:78:8d:0c:d7:58:33:e2:7d:be:1f:
d8:cd:01:06:1a:e5:69:5e:ec:56:59:29:62:fe:21:a8:38:3b:
b7:49:17:8f:95:bc:d8:33:32:14:86:8a:bb:e3:7a:f7:8b:44:
18:1c:36:ca:be:2a:62:01:d4:7d:bd:b3:75:66:97:6d:1c:2a:
30:c4:40:2e:e3:f2:58:37:62:db:f3:1c:8b:ae:ae:38:4e:60:
01:0f:fe:ba:15:30:10:5a:e3:d4:36:2d:d6:21:32:c2:81:e6:
d6:ef:09:19:34:1d:cb:f3:a7:3f:6b:4f:20:bd:33:36:fc:e7:
f9:2f:19:47:f9:ba:d2:95:22:e0:26:c8:2e:5a:ee:36:d0:ea:
da:21:77:ad:e8:8c:51:38:a5:ec:d4:a2:f8:40:38:78:b2:82:
bc:81:0f:6a:e0:11:64:b1:6b:2b:f1:8c:c5:f0:cf:a8:5d:60:
74:64:1a:cd:4c:1d:da:cc:c0:56:c0:35:3a:d3:47:f4:cf:11:
e3:22:37:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:24 2025 by rpki-client