Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Z7aucI8gNytixVNAb-Z7FYIMdQo.roa
File: Z7aucI8gNytixVNAb-Z7FYIMdQo.roa (raw, json)
Hash identifier: H8mHnuAjlqfPrtdy/cdxLk5G/qD6ZTWI+XypJfhpgds=
Subject key identifier: 67:B6:AE:70:8F:20:37:2B:62:C5:53:40:6F:E6:7B:15:82:0C:75:0A
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 145A7587
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Z7aucI8gNytixVNAb-Z7FYIMdQo.roa
Signing time: Sat 19 Mar 2022 06:33:45 +0000
ROA not before: Sat 19 Mar 2022 06:33:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.31.104.0/22 maxlen: 22
85.159.117.0/24 maxlen: 24
212.90.116.0/22 maxlen: 22
45.95.88.0/22 maxlen: 22
195.216.156.0/22 maxlen: 22
91.242.105.0/24 maxlen: 24
91.242.100.0/23 maxlen: 23
91.242.108.0/22 maxlen: 22
91.242.120.0/21 maxlen: 21
5.253.228.0/22 maxlen: 22
91.242.64.0/22 maxlen: 22
194.50.206.0/23 maxlen: 23
194.50.200.0/23 maxlen: 23
195.138.96.0/19 maxlen: 24
45.150.44.0/22 maxlen: 22
45.91.84.0/22 maxlen: 22
45.143.44.0/22 maxlen: 22
45.86.16.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
193.37.200.0/22 maxlen: 22
45.143.252.0/22 maxlen: 22
185.173.244.0/22 maxlen: 24
185.145.80.0/22 maxlen: 22
62.182.100.0/23 maxlen: 23
45.83.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 341472647 (0x145a7587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 19 06:33:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67b6ae708f20372b62c553406fe67b15820c750a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:af:e4:13:89:df:98:e7:25:06:06:24:a5:
b0:9c:24:41:01:14:8b:36:fc:92:57:52:b2:01:f8:
ed:9f:0a:74:1e:fc:f8:b9:de:47:7c:7b:4f:34:9f:
ed:96:cb:1e:dc:bf:73:d8:23:c5:b3:fe:a5:0b:3e:
ba:a1:9f:7a:6b:31:39:08:8e:cb:3b:5f:12:7e:cd:
76:2d:89:82:c1:08:da:03:9c:97:e0:95:3a:86:56:
9c:77:30:ee:fd:2f:54:51:b0:ea:a9:fc:c1:86:4d:
3d:c8:20:2e:6d:4b:69:ad:62:45:3f:f5:6a:8a:51:
6b:90:c5:ce:5e:9e:3e:e9:1d:5e:d6:2f:dd:a1:19:
2e:d9:ec:4b:ba:0c:e8:0f:bd:3a:3b:59:e7:e9:ef:
e7:62:47:f2:5b:f8:5a:20:19:5b:b9:63:4f:0f:f0:
79:9c:53:6a:91:fe:90:66:22:49:3e:a9:f4:b8:5d:
9b:a4:0a:25:b1:9a:cd:35:ed:1f:94:6b:32:ff:80:
58:9b:28:4b:56:11:c5:39:9e:61:8e:8f:44:73:4e:
42:98:86:fe:fb:a3:9d:5a:60:64:51:1a:60:41:10:
e0:c3:bc:6d:3e:7a:54:8d:c2:22:68:f4:81:21:13:
f1:8b:23:16:3f:93:1a:18:3e:18:2a:d8:b5:93:fd:
74:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B6:AE:70:8F:20:37:2B:62:C5:53:40:6F:E6:7B:15:82:0C:75:0A
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Z7aucI8gNytixVNAb-Z7FYIMdQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.228.0/22
45.83.12.0/22
45.86.16.0/22
45.91.84.0/22
45.95.88.0/22
45.143.44.0/22
45.143.252.0/22
45.150.44.0/22
45.151.196.0/22
62.182.100.0/23
85.159.117.0/24
91.242.64.0/22
91.242.100.0/23
91.242.105.0/24
91.242.108.0/22
91.242.120.0/21
185.145.80.0/22
185.173.244.0/22
193.31.104.0/22
193.37.200.0/22
194.50.200.0/23
194.50.206.0/23
195.138.96.0/19
195.216.156.0/22
212.90.116.0/22
Signature Algorithm: sha256WithRSAEncryption
42:6d:6f:c9:8f:d4:2b:5d:2d:0c:32:52:6e:09:57:40:6d:2d:
1e:85:54:7d:be:99:d1:98:40:62:88:16:25:3f:4f:0d:55:e3:
dc:cc:63:6f:b9:84:9d:da:dc:da:80:cd:28:84:17:31:ea:ef:
48:6b:f2:00:69:0b:c1:8e:c3:a1:a3:0a:3c:40:e5:92:e6:e5:
55:ff:7a:54:e5:53:d2:b7:20:4c:50:72:ab:ef:0d:0c:f0:e5:
d1:33:eb:47:e6:38:2f:a2:95:8d:14:54:13:1d:47:0f:41:e8:
40:9e:55:4d:a9:ef:98:c5:99:bf:97:bc:7c:a4:39:f6:e4:9b:
bb:19:cc:d2:b4:e6:2f:92:ee:43:3f:37:77:f9:af:23:30:3a:
72:09:85:37:c9:cc:f9:6b:5e:1c:9c:41:de:dd:e9:7b:53:96:
c8:a4:ed:cb:cf:ce:7e:d1:dd:6a:90:97:10:72:5c:70:a9:fa:
63:47:6b:0a:9a:73:38:48:a4:2d:59:bf:08:53:1e:8c:af:79:
fa:8d:3f:8c:b3:8b:e6:5e:0b:f9:d7:bb:01:3e:f9:20:04:68:
19:bf:7c:fb:55:26:84:cc:e3:dc:79:54:04:a7:23:80:40:42:
47:0d:b3:54:fc:df:43:3b:67:f7:a7:bf:a7:2a:f7:75:b4:29:
3d:a6:c1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:26 2024 by rpki-client on console-ams.rpki-client.org