Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/z1_KUyE_ZcCAzHOYUgBi_QW2utI.roa
File: z1_KUyE_ZcCAzHOYUgBi_QW2utI.roa (raw, json)
Hash identifier: qlQ4eZWkGT1vo4ljLvxhfczsOO0bxZ9IsnN9gGqWK1E=
Subject key identifier: CF:5F:CA:53:21:3F:65:C0:80:CC:73:98:52:00:62:FD:05:B6:BA:D2
Certificate issuer: /CN=1763214280055a47deb554fe9cb28dc0c1792302
Certificate serial: 0223C8
Authority key identifier: 17:63:21:42:80:05:5A:47:DE:B5:54:FE:9C:B2:8D:C0:C1:79:23:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F2MhQoAFWkfetVT-nLKNwMF5IwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/z1_KUyE_ZcCAzHOYUgBi_QW2utI.roa
Signing time: Wed 25 May 2022 10:28:37 +0000
ROA not before: Wed 25 May 2022 10:28:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12997
IP address blocks: 212.97.16.0/20 maxlen: 20
37.218.128.0/18 maxlen: 18
37.218.128.0/19 maxlen: 19
212.97.0.0/19 maxlen: 19
212.97.0.0/20 maxlen: 20
185.66.252.0/22 maxlen: 22
185.66.252.0/23 maxlen: 23
185.66.254.0/23 maxlen: 23
37.218.160.0/19 maxlen: 19
212.241.16.0/20 maxlen: 20
85.113.16.0/20 maxlen: 20
80.72.176.0/21 maxlen: 21
80.72.176.0/20 maxlen: 20
89.237.192.0/19 maxlen: 19
89.237.192.0/18 maxlen: 18
80.72.184.0/21 maxlen: 21
31.29.0.0/20 maxlen: 20
31.29.0.0/19 maxlen: 19
89.237.224.0/19 maxlen: 19
212.241.0.0/19 maxlen: 19
85.113.0.0/19 maxlen: 19
212.241.0.0/20 maxlen: 20
85.113.0.0/20 maxlen: 20
213.145.129.0/24 maxlen: 24
213.145.128.0/20 maxlen: 20
213.145.128.0/24 maxlen: 24
213.145.130.0/24 maxlen: 24
213.145.128.0/19 maxlen: 19
213.145.144.0/20 maxlen: 20
213.145.140.0/24 maxlen: 24
31.29.16.0/20 maxlen: 20
195.114.240.0/20 maxlen: 20
195.114.240.0/21 maxlen: 21
195.114.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140232 (0x223c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1763214280055a47deb554fe9cb28dc0c1792302
Validity
Not Before: May 25 10:28:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf5fca53213f65c080cc7398520062fd05b6bad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:34:2a:13:2f:d7:48:64:03:1e:71:40:f2:0a:
c2:52:2f:7b:f4:c0:2e:9e:50:3c:91:f5:06:f1:e0:
25:82:a2:48:22:91:38:4b:c5:98:44:7b:ed:77:a8:
f6:58:a0:af:e9:84:54:7c:dd:87:21:56:68:e8:a9:
3e:18:aa:7c:7d:10:30:33:e0:e6:7e:44:08:47:20:
b4:5d:b1:e6:40:98:81:d3:0d:cd:58:44:d6:07:27:
7e:bb:8d:86:07:65:4e:f2:00:dd:1a:55:aa:bd:a8:
9b:98:2d:27:d8:13:46:1c:42:a7:69:f8:b1:96:e1:
fb:ba:c0:95:2c:cf:db:cc:e2:55:43:65:4a:fa:68:
6c:99:8f:d1:15:3c:ce:f0:f5:83:d4:0d:a4:c5:2f:
ae:8b:25:f1:8d:ca:99:a6:c0:91:46:75:86:d1:bb:
e9:91:7b:19:c5:fc:02:fd:5f:c8:f9:18:e6:c8:62:
ca:84:f3:7e:49:99:fb:8c:4f:8c:05:f1:b5:99:8f:
32:55:8a:87:32:ee:65:5b:eb:ad:04:c7:32:68:57:
9c:a3:5f:95:2f:ba:fb:4b:9b:c8:ff:cc:ab:ff:23:
c5:b1:f1:b5:5b:9c:68:2d:07:5b:29:07:e8:24:32:
d0:47:03:38:6b:d6:60:4b:d2:d8:1b:34:ba:0a:bc:
4e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5F:CA:53:21:3F:65:C0:80:CC:73:98:52:00:62:FD:05:B6:BA:D2
X509v3 Authority Key Identifier:
keyid:17:63:21:42:80:05:5A:47:DE:B5:54:FE:9C:B2:8D:C0:C1:79:23:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F2MhQoAFWkfetVT-nLKNwMF5IwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/z1_KUyE_ZcCAzHOYUgBi_QW2utI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/F2MhQoAFWkfetVT-nLKNwMF5IwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.29.0.0/19
37.218.128.0/18
80.72.176.0/20
85.113.0.0/19
89.237.192.0/18
185.66.252.0/22
195.114.240.0/20
212.97.0.0/19
212.241.0.0/19
213.145.128.0/19
Signature Algorithm: sha256WithRSAEncryption
95:04:ec:af:c4:69:5b:82:7d:32:ad:14:d0:4f:2b:08:41:28:
f3:55:13:4f:0d:1a:a8:1b:ee:fd:d3:53:b2:93:fe:19:b5:21:
95:eb:49:84:ba:67:38:c4:82:46:ae:a0:88:e9:86:a6:21:e8:
f4:e6:89:ae:7b:9f:44:d8:62:d2:84:7f:86:25:89:15:f7:03:
0e:d9:29:50:30:28:d8:f6:ab:6e:12:57:05:a1:fb:8b:d6:8b:
3b:d0:da:ad:51:6e:d6:8c:fd:e8:d8:c8:f7:79:ee:73:29:8f:
f0:20:6e:3b:aa:25:54:9c:ea:2d:68:ae:d6:b7:ac:c0:1f:6d:
67:49:1f:ef:6e:d4:8f:12:69:a8:71:b5:e8:f2:1b:c8:73:57:
bd:c3:e8:3a:57:fa:b6:63:fd:07:1b:58:82:bf:d8:c0:ab:8d:
22:18:0e:9c:ce:4b:cc:e3:0d:3d:17:95:81:ca:31:3d:fe:49:
51:4d:1c:f0:6c:23:c3:55:17:b1:44:72:5d:33:75:67:16:6a:
57:94:f9:43:4f:09:61:68:e3:99:5b:7e:ca:6f:68:3f:0d:f1:
04:a1:ec:93:19:5e:d8:cb:f0:7a:bc:fb:fd:32:f0:4f:57:92:
d1:86:4a:e0:6f:28:af:29:5e:c1:bd:2a:88:b7:20:d1:ac:81:
97:62:fe:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org