Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/jZMeCVeSIYeoKKbf1O4ZDsvPmRQ.roa
File: jZMeCVeSIYeoKKbf1O4ZDsvPmRQ.roa (raw, json)
Hash identifier: 7ZYqn+FK9MI44OUe+GjSWW5Gy6CWQ8ANifAMc8RrTEU=
Subject key identifier: 8D:93:1E:09:57:92:21:87:A8:28:A6:DF:D4:EE:19:0E:CB:CF:99:14
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01837DEC6890E3959264551CFA500B7CB540
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/jZMeCVeSIYeoKKbf1O4ZDsvPmRQ.roa
Signing time: Tue 27 Sep 2022 07:49:48 +0000
ROA not before: Tue 27 Sep 2022 07:49:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210906
IP address blocks: 85.254.64.0/23 maxlen: 23
85.254.76.0/22 maxlen: 22
85.254.138.0/23 maxlen: 23
85.254.134.0/24 maxlen: 24
159.148.109.0/24 maxlen: 24
85.254.140.0/24 maxlen: 24
85.254.178.0/23 maxlen: 23
85.254.180.0/23 maxlen: 23
159.148.54.0/24 maxlen: 24
85.254.84.0/23 maxlen: 23
159.148.66.0/24 maxlen: 24
85.254.112.0/22 maxlen: 22
85.254.116.0/22 maxlen: 22
85.254.124.0/23 maxlen: 23
85.254.128.0/22 maxlen: 22
85.254.126.0/24 maxlen: 24
159.148.216.0/24 maxlen: 24
159.148.218.0/24 maxlen: 24
159.148.236.0/24 maxlen: 24
159.148.239.0/24 maxlen: 24
159.148.234.0/24 maxlen: 24
159.148.241.0/24 maxlen: 24
159.148.248.0/24 maxlen: 24
159.148.166.0/23 maxlen: 23
159.148.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:ec:68:90:e3:95:92:64:55:1c:fa:50:0b:7c:b5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Sep 27 07:49:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d931e0957922187a828a6dfd4ee190ecbcf9914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ea:c1:12:ab:21:8d:6a:bb:a0:ff:ae:0e:f8:
20:b9:ad:75:92:49:74:bc:5b:18:a1:c1:fb:7d:6a:
5f:74:c9:e2:a7:2c:f8:84:e5:30:1e:21:4e:f9:81:
c7:5f:9a:70:7d:57:eb:55:99:24:2f:3a:62:95:ba:
81:e8:85:3f:4e:96:87:fd:0a:29:22:71:12:e8:1f:
3b:ac:3a:05:f3:43:69:e8:c4:6a:fb:a3:cc:c5:52:
bb:26:b8:9c:e1:ca:b3:f2:ab:e7:76:46:15:f6:5b:
5e:e6:d9:ef:b7:b8:44:8c:2f:07:5c:21:b7:95:43:
81:ff:91:e7:4c:e8:af:11:19:87:43:54:79:c3:85:
c9:a9:da:d5:63:aa:35:a5:11:3b:6c:a2:e1:11:f2:
54:67:48:3b:ee:1e:10:3b:82:6c:48:08:1d:ee:ee:
68:a4:0d:f1:20:44:15:3e:84:fe:cf:ab:45:bd:3a:
c8:e4:74:9c:61:ef:29:84:46:d7:1d:a4:d1:27:25:
1d:02:0c:c8:24:d8:c2:14:4c:a2:86:9e:05:05:27:
80:41:b2:c2:92:22:26:18:82:56:b6:ea:e9:41:94:
25:bc:43:bc:a1:1d:14:f5:66:6c:25:cd:b7:b3:ca:
ff:ec:36:db:78:99:b9:32:70:8b:92:04:2e:d5:46:
a1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:93:1E:09:57:92:21:87:A8:28:A6:DF:D4:EE:19:0E:CB:CF:99:14
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/jZMeCVeSIYeoKKbf1O4ZDsvPmRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.64.0/23
85.254.76.0/22
85.254.84.0/23
85.254.112.0/21
85.254.124.0-85.254.126.255
85.254.128.0/22
85.254.134.0/24
85.254.138.0-85.254.140.255
85.254.178.0-85.254.181.255
159.148.54.0/24
159.148.66.0/24
159.148.109.0/24
159.148.166.0/23
159.148.204.0/24
159.148.216.0/24
159.148.218.0/24
159.148.234.0/24
159.148.236.0/24
159.148.239.0/24
159.148.241.0/24
159.148.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:18:62:40:08:68:95:65:2b:30:6a:ee:ca:65:35:44:93:bc:
89:d4:46:46:39:08:38:b0:ca:30:b4:4b:dd:af:11:45:3d:a5:
66:12:9e:ae:9e:a0:1a:4e:30:d2:15:3d:bd:4a:e4:34:22:5c:
b8:5c:57:07:51:d8:e0:ea:4a:fd:7e:81:0f:80:d5:4d:e8:f8:
7b:9a:0c:b8:b0:b2:af:21:66:8a:62:c1:58:da:7e:01:41:71:
c9:3f:f3:c8:36:7b:b1:25:d2:ff:2f:8b:eb:c0:c6:5f:ad:ab:
5c:be:53:b7:33:50:2a:27:b7:93:ac:f7:d3:d7:0e:11:b3:09:
14:2d:a0:24:ef:b3:21:ff:c2:bb:bc:fd:a4:62:08:07:c4:9b:
dc:43:29:1f:34:4a:09:e7:35:13:a4:3c:4f:00:29:ee:77:83:
a2:90:cf:c7:f7:7a:59:6a:7b:43:ca:f1:ce:b4:88:40:04:07:
da:f3:38:92:30:51:b8:2b:98:37:b2:ad:35:78:d8:70:7f:25:
fe:cd:3b:71:ec:a9:d1:96:26:46:f8:9c:ae:e1:46:d0:c9:1c:
1b:7c:1c:52:e0:d7:16:89:93:24:60:4c:e0:9a:11:bb:db:a4:
6f:44:82:4d:2b:c0:34:13:c0:f6:c8:2b:e1:41:96:d2:c8:47:
68:ae:50:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org