Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/5Zsf3BO8e87HDVTVP_6u_BotM_c.roa
File: 5Zsf3BO8e87HDVTVP_6u_BotM_c.roa (raw, json)
Hash identifier: tz6FSxKe1bjO6t+WaauaD9rWFLF4UqlxRm/K0I50cMU=
Subject key identifier: E5:9B:1F:DC:13:BC:7B:CE:C7:0D:54:D5:3F:FE:AE:FC:1A:2D:33:F7
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 01840985885DA2ECD34163B2E5CDB14D6C64
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/5Zsf3BO8e87HDVTVP_6u_BotM_c.roa
Signing time: Mon 24 Oct 2022 10:24:16 +0000
ROA not before: Mon 24 Oct 2022 10:24:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60304
IP address blocks: 185.33.35.0/24 maxlen: 24
185.33.34.0/24 maxlen: 24
185.33.33.0/24 maxlen: 24
185.33.32.0/24 maxlen: 24
2a04:5901:7::/48 maxlen: 48
2a04:5901:c::/48 maxlen: 48
2a04:5901:1d::/48 maxlen: 48
2a04:5901:22::/48 maxlen: 48
2a04:5901:2::/48 maxlen: 48
2a04:5901:13::/48 maxlen: 48
2a04:5901:18::/48 maxlen: 48
2a04:5901:9::/48 maxlen: 48
2a04:5901:e::/48 maxlen: 48
2a04:5900::/32 maxlen: 32
2a04:5901:1f::/48 maxlen: 48
2a04:5901:24::/48 maxlen: 48
2a04:5901:4::/48 maxlen: 48
2a04:5901:15::/48 maxlen: 48
2a04:5901:1a::/48 maxlen: 48
2a04:5901:b::/48 maxlen: 48
2a04:5901:10::/48 maxlen: 48
2a04:5901:21::/48 maxlen: 48
2a04:5901:1::/48 maxlen: 48
2a04:5901:6::/48 maxlen: 48
2a04:5901:26::/48 maxlen: 48
2a04:5901:17::/48 maxlen: 48
2a04:5901:1c::/48 maxlen: 48
2a04:5901:d::/48 maxlen: 48
2a04:5901:12::/48 maxlen: 48
2a04:5901:23::/48 maxlen: 48
2a04:5901:3::/48 maxlen: 48
2a04:5901:8::/48 maxlen: 48
2a04:5900::/29 maxlen: 29
2a04:5901:19::/48 maxlen: 48
2a04:5901:1e::/48 maxlen: 48
2a04:5901:f::/48 maxlen: 48
2a04:5901:14::/48 maxlen: 48
2a04:5901:25::/48 maxlen: 48
2a04:5901:5::/48 maxlen: 48
2a04:5901:a::/48 maxlen: 48
2a04:5901:1b::/48 maxlen: 48
2a04:5901::/32 maxlen: 32
2a04:5901:20::/48 maxlen: 48
2a04:5901:11::/48 maxlen: 48
2a04:5901:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:85:88:5d:a2:ec:d3:41:63:b2:e5:cd:b1:4d:6c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Oct 24 10:24:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e59b1fdc13bc7bcec70d54d53ffeaefc1a2d33f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:56:ad:18:28:4c:65:d4:b3:32:49:00:b3:32:
52:31:d2:ab:8a:00:09:bf:11:05:52:fe:f0:0b:0f:
4b:5d:3b:39:50:bd:d0:24:b7:a2:16:ff:09:bb:6f:
56:b7:f1:e3:0d:c5:e6:45:38:0a:7b:19:d2:56:70:
4d:5a:b0:57:e1:59:9a:80:fd:8f:90:bb:e5:5e:ef:
2d:9d:65:95:6c:6f:bd:71:c1:d6:06:78:7d:41:2f:
6e:90:b6:85:9e:79:b8:c7:aa:5c:31:a3:e3:f2:10:
61:29:73:d7:21:0d:90:49:fe:fa:fa:a5:cf:64:a0:
1c:2e:56:f7:7f:13:ee:68:0c:c9:a7:68:37:5e:95:
de:41:9e:cf:7f:10:34:7c:93:61:1e:2c:f7:e1:40:
20:87:32:36:c0:2a:a4:a8:b1:fc:e3:97:40:a4:51:
41:53:88:31:a3:7d:94:e1:fe:5a:f7:58:db:97:e1:
30:fe:8b:74:63:bf:b4:bc:e0:a9:a3:cf:af:e5:b3:
48:23:8f:83:62:38:64:d0:11:d9:e1:ed:df:65:ed:
3a:69:92:50:ac:70:c3:b2:bf:4a:44:78:8d:67:f0:
2a:4a:7b:35:51:1e:3a:dc:ab:bf:e6:15:ea:8d:fc:
72:d7:e0:19:0e:11:5f:95:5d:be:7c:2b:bf:08:a8:
b4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9B:1F:DC:13:BC:7B:CE:C7:0D:54:D5:3F:FE:AE:FC:1A:2D:33:F7
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/5Zsf3BO8e87HDVTVP_6u_BotM_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.32.0/22
IPv6:
2a04:5900::/29
Signature Algorithm: sha256WithRSAEncryption
08:f1:15:e9:54:df:d3:ac:e2:18:1b:85:2b:e3:b1:21:9d:e1:
c4:3d:c8:f2:ad:8c:5f:5a:ae:36:be:5e:ad:64:e9:0f:ba:cb:
a2:7c:0e:82:b3:6b:6b:d0:b7:e4:9a:ca:79:85:b6:60:84:bb:
81:24:70:f8:88:8a:06:6b:09:13:85:2a:9c:c4:6d:c0:40:e6:
96:14:11:bf:6f:8f:c7:dc:7d:27:cb:04:ce:37:e0:e3:40:ac:
57:3d:81:9d:b7:5e:ab:39:af:8d:05:5b:d4:84:52:65:97:22:
15:69:a2:d2:33:8c:da:ef:ff:f7:c4:c1:d0:78:e1:80:0b:cb:
7a:6a:31:60:4a:14:87:2d:7e:a8:d3:b4:e5:d4:d8:d1:89:52:
18:bd:55:c2:1a:78:a1:96:87:5d:82:d2:a6:01:4b:cb:92:aa:
61:4d:45:11:5e:c9:f4:31:1f:53:e7:24:7e:fc:23:6e:a0:9f:
d9:32:6b:c6:6b:a3:d5:4e:1d:f3:49:1f:4c:e0:c4:44:1b:ae:
96:02:ee:58:4d:a1:3e:67:4c:8f:2c:4d:11:38:e6:05:48:aa:
6c:2f:97:43:e4:ce:13:f7:a2:e5:ec:ad:eb:95:ab:b7:9b:9c:
93:a9:fc:26:cb:31:84:58:b0:a2:f1:95:36:f8:24:4d:79:e1:
14:90:86:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org