Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/zPe7KinMi8EdGrqQrLOxVCURGgU.roa
File: zPe7KinMi8EdGrqQrLOxVCURGgU.roa (raw, json)
Hash identifier: zxE/kTTF02+CarmtRamAjF7DxkRbW0NMwPh3i9ewNNw=
Subject key identifier: CC:F7:BB:2A:29:CC:8B:C1:1D:1A:BA:90:AC:B3:B1:54:25:11:1A:05
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 18CB94A8
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/zPe7KinMi8EdGrqQrLOxVCURGgU.roa
Signing time: Sat 01 Jan 2022 16:01:33 +0000
ROA not before: Sat 01 Jan 2022 16:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198024
IP address blocks: 31.172.152.0/21 maxlen: 21
37.44.48.0/21 maxlen: 21
185.59.116.0/22 maxlen: 22
185.127.60.0/22 maxlen: 22
185.127.84.0/22 maxlen: 22
2a06:c780::/29 maxlen: 29
2a06:c840::/29 maxlen: 29
2a03:7b80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415995048 (0x18cb94a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Jan 1 16:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccf7bb2a29cc8bc11d1aba90acb3b15425111a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d4:52:51:f4:52:96:6a:f0:a9:1b:fe:38:e7:
e8:92:7d:d7:a1:9e:74:47:6d:56:44:a5:40:2e:dc:
97:e9:c4:7b:32:fe:ea:f5:37:0f:46:7f:18:b8:8b:
5a:3f:7e:ee:0e:82:2b:d7:1a:fa:18:79:b0:4d:8e:
0a:12:b0:08:8b:02:e2:dd:69:5c:8d:e0:85:51:e8:
ea:03:a2:4e:2d:43:9f:0a:39:05:81:2a:1c:25:d5:
d6:1e:27:72:cd:04:5b:b0:fb:9a:83:3b:ec:5c:65:
73:fc:15:0c:53:ff:15:7e:d6:d9:71:68:2d:39:af:
a8:f7:cd:b8:54:be:c3:21:22:8d:28:1b:56:d2:79:
74:9f:37:54:70:89:76:0b:19:2a:ef:2c:12:df:88:
2c:ba:18:ab:3a:2a:3e:3f:ac:fa:05:29:d6:66:d5:
63:74:0a:c0:a8:6e:da:71:ca:f2:69:12:d4:9c:ad:
59:81:74:0d:c5:d4:2e:6e:cb:53:42:67:13:69:72:
51:68:20:dc:46:9e:d9:a1:57:f4:62:da:17:ad:15:
35:46:c8:21:62:24:47:6b:0c:6b:b6:0f:eb:d0:d0:
0a:a7:ed:b6:76:42:cf:44:67:ca:2c:56:77:ff:08:
0e:72:bb:e0:96:a3:9e:8a:a9:95:79:68:00:de:c9:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F7:BB:2A:29:CC:8B:C1:1D:1A:BA:90:AC:B3:B1:54:25:11:1A:05
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/zPe7KinMi8EdGrqQrLOxVCURGgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.152.0/21
37.44.48.0/21
185.59.116.0/22
185.127.60.0/22
185.127.84.0/22
IPv6:
2a03:7b80::/32
2a06:c780::/29
2a06:c840::/29
Signature Algorithm: sha256WithRSAEncryption
73:1d:31:36:09:4e:29:64:f9:af:71:e5:2a:0d:9c:cd:e0:29:
d1:c9:4e:20:20:ad:6d:db:93:1d:05:4a:00:45:db:cd:56:f0:
73:ab:bb:f9:c8:56:3e:6d:38:4f:d2:d5:6e:39:c7:ed:1b:d1:
94:47:18:21:93:cd:88:6e:1c:b2:22:f4:6b:35:54:6e:b6:10:
70:95:f6:06:78:af:34:9d:a6:27:30:6b:30:07:d7:03:05:f2:
7f:36:d2:95:e5:c9:19:d7:04:d9:6a:a6:ef:42:d7:98:7e:9e:
d3:28:e8:86:6d:8d:6c:95:2c:1b:db:21:1f:61:d0:b1:d2:cf:
be:9c:d2:7b:3e:52:43:3c:81:c0:31:94:f7:f7:22:ed:31:b4:
7a:80:53:00:23:a2:36:5e:7a:a9:3b:ee:b3:9f:73:a3:ac:5a:
7b:d8:bf:8d:44:d6:94:44:1b:ea:51:82:23:5e:d8:03:8f:cb:
e3:fc:f1:c0:65:ef:8c:65:b1:77:49:dd:64:53:22:04:53:eb:
16:17:11:69:60:e4:ed:07:75:48:72:8d:6f:00:f4:3a:7a:68:
51:94:2f:90:3f:d2:20:86:9d:f3:e8:5c:e3:bc:e0:d5:f2:c7:
e7:eb:40:4b:97:79:3b:eb:a2:12:d4:c5:99:40:5f:a8:82:2f:
73:29:9e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:02 2024 by rpki-client on console-ams.rpki-client.org