Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/ZRJYpOfFLbM7fQ7SunoDd_PFymI.roa
File: ZRJYpOfFLbM7fQ7SunoDd_PFymI.roa (raw, json)
Hash identifier: mhxsv7D4nZy3Am/lX6z8biAaYdP4dm79SEa8RjZACNE=
Subject key identifier: 65:12:58:A4:E7:C5:2D:B3:3B:7D:0E:D2:BA:7A:03:77:F3:C5:CA:62
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 08BDD1C4
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/ZRJYpOfFLbM7fQ7SunoDd_PFymI.roa
Signing time: Sat 01 Jan 2022 11:57:02 +0000
ROA not before: Sat 01 Jan 2022 11:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198605
IP address blocks: 77.234.40.0/21 maxlen: 24
77.234.40.0/24 maxlen: 24
37.156.184.0/22 maxlen: 24
195.74.76.0/24 maxlen: 24
185.189.94.0/24 maxlen: 24
185.189.92.0/22 maxlen: 24
69.94.64.0/20 maxlen: 24
91.213.143.0/24 maxlen: 24
185.167.64.0/24 maxlen: 24
185.51.228.0/22 maxlen: 24
5.45.56.0/21 maxlen: 24
2a0b:e180::/29 maxlen: 45
2001:67c:284::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146657732 (0x8bdd1c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 1 11:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=651258a4e7c52db33b7d0ed2ba7a0377f3c5ca62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:57:d9:24:52:94:50:3c:b4:bc:a3:05:26:6b:
59:0f:6d:75:b3:7d:1c:fc:ac:82:4a:69:5a:3f:12:
af:e9:f5:66:3a:0c:2b:fe:45:f9:f1:32:a1:f9:53:
3c:31:6f:b1:c0:e7:10:a6:67:c0:4b:7f:31:d1:a6:
53:69:4e:e2:0d:50:98:e4:75:bd:46:e3:1e:0a:ac:
02:03:c2:cf:b1:a7:07:cc:0c:df:01:6c:6b:88:99:
00:e6:25:13:0b:20:2e:e1:8c:f1:05:ac:8b:8d:4b:
05:a1:6a:7a:e0:8a:46:1a:a1:f0:ac:19:39:f5:c2:
19:05:4b:af:4f:6f:f3:5e:7e:ad:32:50:8d:a0:e6:
dc:6a:31:6e:12:3d:ef:66:6e:62:da:26:c4:d9:c4:
f0:3f:b2:76:8c:58:6f:43:01:86:ec:0d:0c:36:20:
9f:6b:99:64:19:dd:d1:a3:e4:74:51:c5:ab:26:c9:
a9:a0:98:67:1c:01:07:dc:b2:ac:24:d0:6f:f1:6a:
da:38:91:4b:d6:19:3b:60:21:41:c7:c6:cf:76:d9:
73:ac:48:f8:e4:89:81:3e:00:64:b7:0f:63:a8:02:
a8:3b:00:fa:49:38:aa:c6:48:99:90:df:3a:6b:8a:
61:6a:45:aa:bb:99:22:58:44:01:5d:3f:ea:77:e1:
2c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:12:58:A4:E7:C5:2D:B3:3B:7D:0E:D2:BA:7A:03:77:F3:C5:CA:62
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/ZRJYpOfFLbM7fQ7SunoDd_PFymI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.56.0/21
37.156.184.0/22
69.94.64.0/20
77.234.40.0/21
91.213.143.0/24
185.51.228.0/22
185.167.64.0/24
185.189.92.0/22
195.74.76.0/24
IPv6:
2001:67c:284::/48
2a0b:e180::/29
Signature Algorithm: sha256WithRSAEncryption
5d:84:3a:44:d4:d5:44:3f:3f:3f:f7:b0:08:15:80:2d:4e:66:
f4:29:f3:13:21:fd:6a:28:38:18:df:76:e6:4d:3c:43:40:5e:
8d:0e:6c:b5:30:49:26:b2:c6:2e:f9:9e:1f:8a:69:cf:25:f9:
f5:58:6b:7b:6b:7f:48:92:47:e7:73:38:4b:ca:6a:43:43:75:
88:08:70:88:bd:eb:77:fa:56:00:ab:6f:a5:09:1a:b3:7a:d5:
a7:c8:89:3f:03:b8:2c:ea:60:ea:36:69:8e:04:79:3b:16:d4:
2a:a5:df:b5:4a:00:41:6f:86:41:b9:87:dc:fb:da:19:f6:65:
d9:83:a0:c8:f0:e3:a9:77:29:85:8f:a6:d4:f5:4f:48:66:be:
9c:fd:ce:70:1d:53:f2:0d:1c:65:54:93:17:3b:04:f2:0a:d9:
7f:a7:2c:ed:cd:fb:cb:85:af:60:37:75:05:d0:7c:9e:04:d6:
2c:4d:cb:93:02:12:e8:f9:eb:9c:4f:73:ae:fb:90:8d:68:c3:
46:03:ba:60:fb:2d:72:0c:d6:21:26:72:99:51:f0:c6:5a:cf:
b4:1d:79:82:d0:17:72:56:00:01:7c:71:c8:32:3f:d8:3d:c1:
49:28:60:96:15:35:16:15:1e:ee:18:91:42:1c:f8:34:8d:80:
46:cb:0d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org