Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/Zqv40ar8upQTf_hc8vvVowac254.roa
File: Zqv40ar8upQTf_hc8vvVowac254.roa (raw, json)
Hash identifier: W0MIaMv6UcrWL6mPrWQc5lEC+/IzQVGNUbVCXw19i18=
Subject key identifier: 66:AB:F8:D1:AA:FC:BA:94:13:7F:F8:5C:F2:FB:D5:A3:06:9C:DB:9E
Certificate issuer: /CN=4a7a917ddcfc26e8c87b30858b6f07f29a3db43e
Certificate serial: 059C8D7C
Authority key identifier: 4A:7A:91:7D:DC:FC:26:E8:C8:7B:30:85:8B:6F:07:F2:9A:3D:B4:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnqRfdz8JujIezCFi28H8po9tD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/Zqv40ar8upQTf_hc8vvVowac254.roa
Signing time: Sat 01 Jan 2022 15:58:51 +0000
ROA not before: Sat 01 Jan 2022 15:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8585
IP address blocks: 213.149.96.0/19 maxlen: 19
85.94.96.0/19 maxlen: 19
46.33.192.0/22 maxlen: 22
46.33.192.0/19 maxlen: 19
109.228.64.0/18 maxlen: 18
95.155.0.0/18 maxlen: 18
46.33.198.0/24 maxlen: 24
46.33.199.0/24 maxlen: 24
46.33.196.0/24 maxlen: 24
46.33.197.0/24 maxlen: 24
195.66.166.0/24 maxlen: 24
195.66.164.0/24 maxlen: 24
195.66.160.0/19 maxlen: 19
195.66.167.0/24 maxlen: 24
31.204.192.0/18 maxlen: 18
195.66.180.0/24 maxlen: 24
78.155.32.0/19 maxlen: 19
46.161.64.0/18 maxlen: 18
46.161.76.0/22 maxlen: 22
37.122.160.0/19 maxlen: 19
77.222.0.0/19 maxlen: 19
2a00:fe80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94145916 (0x59c8d7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7a917ddcfc26e8c87b30858b6f07f29a3db43e
Validity
Not Before: Jan 1 15:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66abf8d1aafcba94137ff85cf2fbd5a3069cdb9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:20:63:e2:d0:20:8f:82:86:02:0e:4a:f1:1c:
61:2e:d6:ea:67:64:b6:e1:42:9a:7b:97:d9:9f:0b:
f8:8a:12:22:e5:02:79:d2:90:ca:a4:5a:72:e5:a6:
df:10:fe:d4:fe:76:e3:54:c8:7d:4b:3f:d6:a1:d4:
17:d0:2c:94:14:1d:86:3c:8b:40:59:b0:a5:80:68:
0f:50:03:97:b9:d9:82:f9:a6:c3:53:0b:67:62:17:
88:b5:c7:ec:d9:15:87:fd:a5:2b:f6:a2:66:8e:0f:
77:8d:2b:76:f1:62:af:81:94:3b:e7:cc:3d:6f:e5:
09:96:24:f9:10:bc:c0:14:c8:fe:95:e6:50:80:66:
2e:19:8e:c8:f7:48:a6:77:64:59:64:e5:9a:88:d8:
ca:87:1c:3e:1f:fe:67:f3:af:5e:f1:e8:71:8a:56:
19:2f:eb:7d:8c:0c:dc:17:fe:44:a0:3e:b8:4b:05:
47:5a:1b:1d:f5:dc:d2:d1:2c:0d:15:cf:f9:4b:91:
0e:ba:6d:2d:23:3a:91:f1:bc:68:37:69:a0:f2:ce:
14:fa:80:79:91:c5:04:1f:fb:db:bc:13:39:9d:f8:
f6:bc:08:02:6e:85:d9:f4:a2:e9:d6:0e:7a:86:88:
43:58:e1:ca:a4:ad:f3:7b:69:73:84:61:ff:c1:01:
9e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AB:F8:D1:AA:FC:BA:94:13:7F:F8:5C:F2:FB:D5:A3:06:9C:DB:9E
X509v3 Authority Key Identifier:
keyid:4A:7A:91:7D:DC:FC:26:E8:C8:7B:30:85:8B:6F:07:F2:9A:3D:B4:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnqRfdz8JujIezCFi28H8po9tD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/Zqv40ar8upQTf_hc8vvVowac254.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/34c2bb-79ea-4f39-ac82-82016de42212/1/SnqRfdz8JujIezCFi28H8po9tD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.204.192.0/18
37.122.160.0/19
46.33.192.0/19
46.161.64.0/18
77.222.0.0/19
78.155.32.0/19
85.94.96.0/19
95.155.0.0/18
109.228.64.0/18
195.66.160.0/19
213.149.96.0/19
IPv6:
2a00:fe80::/32
Signature Algorithm: sha256WithRSAEncryption
2a:b1:fb:bf:25:84:eb:ae:54:85:ed:af:69:20:d6:15:5b:b9:
c5:9f:cd:7b:b6:1b:8b:ba:b1:08:d3:b5:e5:1e:77:86:e1:07:
a3:fd:38:97:bc:e7:56:91:0d:9d:cf:a9:16:71:39:5a:cf:83:
99:17:03:29:3e:21:73:01:b2:3f:83:5d:20:18:9f:57:d7:37:
76:d5:a9:ad:ea:1b:00:5b:3a:df:52:14:1c:bf:59:4f:a0:59:
f3:bb:de:09:af:53:dc:4e:9d:39:a1:00:a0:b8:37:23:06:22:
1f:8a:95:1f:8c:37:6e:c6:22:64:31:55:58:ed:93:8a:b7:5b:
97:2f:cf:3d:ff:48:d4:e3:5f:b2:06:1e:5d:1c:ac:ee:b9:e8:
40:c1:65:5b:f1:fe:22:73:cb:f1:0b:28:2d:31:8b:fc:c9:4b:
e5:c3:0f:4d:67:05:aa:e9:88:07:81:c1:f1:9a:50:b6:cb:f4:
f6:14:69:14:39:f4:6b:d9:ef:72:89:9f:66:dc:11:b3:8b:c3:
9b:9e:29:10:20:ac:90:2f:c5:9e:6f:84:ae:b5:07:8e:a4:7d:
a6:a8:a3:b6:9c:d1:42:3d:28:9f:2f:e6:23:de:2f:27:bb:54:
a7:e4:a3:d4:79:4f:2b:49:81:f8:b0:49:ad:3b:9a:4a:4e:ed:
33:ad:fb:37
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:01 2024 by rpki-client on console-ams.rpki-client.org