Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/ZJmZemhbNjhzL35Z0Z2T1q9LJE8.roa
File: ZJmZemhbNjhzL35Z0Z2T1q9LJE8.roa (raw, json)
Hash identifier: zy1pf4T0X1tlsDRTPUFdT5oMb7z0VIfZaVl3kHh1Gzc=
Subject key identifier: 64:99:99:7A:68:5B:36:38:73:2F:7E:59:D1:9D:93:D6:AF:4B:24:4F
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 05D244A5
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/ZJmZemhbNjhzL35Z0Z2T1q9LJE8.roa
Signing time: Sat 01 Jan 2022 13:01:27 +0000
ROA not before: Sat 01 Jan 2022 13:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47645
IP address blocks: 94.137.64.0/21 maxlen: 21
94.137.80.0/22 maxlen: 22
94.137.84.0/22 maxlen: 22
94.137.88.0/24 maxlen: 24
2a05:c440::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97666213 (0x5d244a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 1 13:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6499997a685b3638732f7e59d19d93d6af4b244f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:96:ad:76:69:23:a9:ab:e5:67:a2:96:65:ff:
46:4c:99:81:fe:5b:b4:66:95:86:43:a4:c0:7b:d7:
b6:2c:c7:5c:1d:0d:0f:5c:97:75:b7:0c:d7:80:72:
4d:f5:64:d3:7f:e1:62:47:4b:72:d3:31:69:ca:5f:
c9:d9:2d:aa:23:c6:c9:40:d0:2b:bc:64:44:1e:84:
5d:aa:c5:60:bf:61:dc:b8:52:55:5d:81:ae:29:0e:
ec:86:b9:85:96:ab:af:68:5e:a2:db:92:d8:d9:21:
cf:df:37:78:5d:43:8e:5e:c5:d3:9f:67:d9:d7:84:
2b:fe:15:ec:14:0d:63:d0:27:f2:d1:21:1a:69:cc:
64:c5:29:06:d1:94:08:c1:c3:73:82:2d:be:35:ec:
be:48:0f:ab:a8:db:4c:ad:4c:28:0b:95:a6:1f:67:
91:ec:a3:02:ae:a3:55:79:2b:5b:e0:7b:fc:17:e4:
16:83:e2:3c:bc:30:81:af:1d:56:40:f2:72:bc:c3:
7c:6c:3d:23:36:a1:f8:a8:d3:6d:89:aa:99:e0:33:
bb:0e:63:c6:8c:3b:c6:d9:41:a7:82:8a:b8:29:56:
e1:59:86:57:60:9f:2d:11:b1:b3:61:b0:db:67:01:
68:d7:f1:28:94:04:f1:cb:30:f5:bb:c5:2e:42:d4:
2c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:99:99:7A:68:5B:36:38:73:2F:7E:59:D1:9D:93:D6:AF:4B:24:4F
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/ZJmZemhbNjhzL35Z0Z2T1q9LJE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.64.0/21
94.137.80.0-94.137.88.255
IPv6:
2a05:c440::/48
Signature Algorithm: sha256WithRSAEncryption
81:bb:21:c0:e1:b5:4f:97:40:9c:be:fe:99:80:5e:ab:e8:cc:
a2:0a:1f:c9:58:39:08:1e:52:46:3d:18:7e:ac:97:23:15:46:
06:df:a7:2e:97:ed:7c:47:7d:72:ea:ad:40:35:b5:9f:f5:3a:
a2:49:3f:7d:0d:25:3c:2d:1e:0a:2e:65:6e:0b:1b:22:a1:25:
2a:37:e5:9d:c6:57:0c:bb:d4:c1:af:67:91:e6:0f:a3:2f:74:
55:ef:d9:e8:60:4b:87:00:ad:13:62:c6:fa:d9:a1:87:db:e4:
84:3e:75:ee:2f:6a:5e:89:bd:7a:7c:73:1b:95:dc:32:3d:94:
7d:52:11:b6:2c:72:f9:27:ea:ba:d6:6e:ee:93:cb:83:9f:d1:
38:0e:5a:79:21:3a:87:e3:71:c7:1e:23:0f:ca:37:a5:cb:a2:
80:f5:31:d9:8c:9f:9c:38:aa:ed:e1:73:03:5f:27:17:a8:cb:
2f:25:e6:73:8b:16:a6:1e:86:f4:47:a1:47:0c:f1:e4:c6:a0:
97:4d:7c:2b:b4:7c:90:7e:b4:4c:91:81:5b:c0:d8:74:2c:17:
ce:7e:f6:93:5e:46:ff:e1:db:c7:4b:df:dd:0c:18:6d:f1:70:
d6:49:00:28:72:6d:26:69:9c:d6:a1:ff:91:e8:d2:f6:0c:25:
6c:64:8b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org