Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZPfsTGPLJs-m5ql2fbX_XvxkbrM.roa
File: ZPfsTGPLJs-m5ql2fbX_XvxkbrM.roa (raw, json)
Hash identifier: AeKm+fhWn8rLh6mohaaH0hfgdHBXWl5zBb6xg069x4o=
Subject key identifier: 64:F7:EC:4C:63:CB:26:CF:A6:E6:A9:76:7D:B5:FF:5E:FC:64:6E:B3
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0183F3D9FA881607F531F0A7282D350B78ED
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZPfsTGPLJs-m5ql2fbX_XvxkbrM.roa
Signing time: Thu 20 Oct 2022 05:24:52 +0000
ROA not before: Thu 20 Oct 2022 05:24:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 84.32.90.0/23 maxlen: 24
84.32.88.0/23 maxlen: 24
88.216.131.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/23 maxlen: 24
84.32.24.0/22 maxlen: 22
88.216.134.0/24 maxlen: 24
88.216.135.0/24 maxlen: 24
84.32.28.0/22 maxlen: 22
88.216.94.0/23 maxlen: 24
88.216.92.0/23 maxlen: 24
88.216.224.0/22 maxlen: 24
88.216.16.0/23 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.33.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.43.0/24 maxlen: 24
88.216.44.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f3:d9:fa:88:16:07:f5:31:f0:a7:28:2d:35:0b:78:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 20 05:24:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64f7ec4c63cb26cfa6e6a9767db5ff5efc646eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:a1:d4:9a:39:25:f2:02:f8:b6:9b:0c:35:
22:8d:e9:2d:12:4c:ad:e7:fd:1c:c7:90:29:fd:a4:
df:d5:68:2a:2f:73:da:07:31:a0:7d:01:71:95:49:
28:6d:72:f5:81:f3:d1:70:5d:8b:75:2c:10:ac:41:
18:7f:92:d9:88:95:97:74:f6:cd:76:bf:94:96:6b:
2b:cf:f6:92:e0:e2:34:50:3d:3d:8d:41:46:b7:e2:
56:e0:a7:07:2f:bd:84:d5:a7:c6:06:07:b5:aa:45:
3b:14:a3:c0:e3:f4:3e:38:27:76:a5:df:64:12:13:
e5:4b:ba:4a:6a:d9:86:ac:7e:f2:45:33:bb:6f:d3:
15:26:89:5b:73:b9:82:18:86:ee:2b:e6:15:66:9b:
71:0c:46:84:3b:4b:98:7f:ed:bc:e0:ad:99:ea:04:
21:cd:3e:70:8e:eb:f4:fd:0f:c2:6a:e8:1f:d6:9d:
1f:e6:84:be:43:ab:e7:4d:41:dc:ee:49:0b:21:8d:
6e:98:6c:c3:7a:3a:e7:92:97:b7:90:0e:e9:7b:e0:
4f:12:bc:1c:b3:78:46:be:d9:6e:d8:09:4b:b8:21:
2c:a6:a2:9b:4e:a8:70:f3:4b:60:36:1a:6d:79:a9:
fa:4d:d8:fc:43:2e:96:6b:9d:65:12:b2:93:0b:b4:
87:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F7:EC:4C:63:CB:26:CF:A6:E6:A9:76:7D:B5:FF:5E:FC:64:6E:B3
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZPfsTGPLJs-m5ql2fbX_XvxkbrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.24.0/21
84.32.88.0/22
88.216.16.0/23
88.216.33.0/24
88.216.41.0/24
88.216.43.0-88.216.45.255
88.216.92.0/22
88.216.128.0/24
88.216.131.0-88.216.135.255
88.216.224.0/22
88.216.232.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:c9:08:46:60:84:27:18:9d:e6:b0:72:eb:5e:7c:9d:2a:af:
64:19:49:21:af:ab:14:f5:7a:37:4b:ee:de:c6:fd:b8:2c:77:
6a:12:d6:d2:85:48:31:69:24:40:5d:ef:da:3a:fc:3c:e9:36:
82:ea:d7:27:5b:25:ea:6c:32:6e:cc:7c:b2:9b:16:da:17:b4:
87:44:47:14:d4:45:28:59:67:31:3b:b9:5b:5b:a3:83:a3:14:
72:2c:ec:a3:2b:5c:c0:4e:91:0d:26:02:eb:d9:01:62:31:30:
d2:67:13:e6:78:c2:8c:df:e6:ed:27:f0:9a:1b:cf:81:15:05:
73:c6:87:7e:fd:98:a9:47:9e:28:ad:2e:8c:dd:17:1a:6b:66:
0c:4d:28:c4:c1:4b:ab:d5:06:44:3b:75:3c:26:15:46:1c:93:
06:56:d8:f4:cb:26:da:4f:21:82:e6:1c:22:a0:1b:74:62:0e:
2c:69:41:6c:ae:2f:81:82:7f:54:3d:73:8d:41:13:04:9c:b6:
53:07:27:ab:4c:61:ee:74:e8:a3:36:e0:cc:9a:9b:82:b6:7f:
ec:26:f9:0a:a3:36:07:91:85:f1:f3:aa:c0:9a:fa:05:da:e4:
81:32:fc:4b:9c:89:8e:3b:41:60:6d:5a:6a:92:e8:a5:c7:38:
55:84:e6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org