Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/ZWvi9pUGa0uEY6enWVIfJMnL4zo.roa
File: ZWvi9pUGa0uEY6enWVIfJMnL4zo.roa (raw, json)
Hash identifier: UddWR7nFqvUJp7g2uyVQCziayzXYS00wMB8+UGhr0g8=
Subject key identifier: 65:6B:E2:F6:95:06:6B:4B:84:63:A7:A7:59:52:1F:24:C9:CB:E3:3A
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 0181FB662B897FA9B92BCA0AB7FF3C13F081
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/ZWvi9pUGa0uEY6enWVIfJMnL4zo.roa
Signing time: Thu 14 Jul 2022 06:29:45 +0000
ROA not before: Thu 14 Jul 2022 06:29:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12975
IP address blocks: 213.244.121.0/24 maxlen: 24
103.196.120.0/22 maxlen: 22
103.215.4.0/22 maxlen: 22
139.190.176.0/20 maxlen: 20
213.244.71.0/24 maxlen: 24
213.244.70.0/23 maxlen: 24
213.244.70.0/24 maxlen: 24
213.244.72.0/21 maxlen: 24
213.244.72.0/24 maxlen: 24
83.244.78.0/24 maxlen: 24
213.244.76.0/24 maxlen: 24
83.244.75.0/24 maxlen: 24
83.244.74.0/24 maxlen: 24
213.244.73.0/24 maxlen: 24
83.244.73.0/24 maxlen: 24
83.244.79.0/24 maxlen: 24
103.206.108.0/22 maxlen: 22
45.127.177.0/24 maxlen: 24
45.127.176.0/22 maxlen: 22
45.127.176.0/24 maxlen: 24
45.127.179.0/24 maxlen: 24
45.127.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:66:2b:89:7f:a9:b9:2b:ca:0a:b7:ff:3c:13:f0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Jul 14 06:29:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=656be2f695066b4b8463a7a759521f24c9cbe33a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e7:df:95:7d:6d:39:5f:93:24:aa:55:c3:b4:
91:60:c1:87:d8:74:0f:44:e0:24:d3:78:ef:83:d1:
7b:47:dd:44:f3:e6:c8:e6:f9:d8:33:94:bc:ed:9f:
9f:81:02:68:9e:66:10:d3:40:2d:a2:35:e6:51:e8:
42:dc:15:cb:13:f6:b0:fd:61:1b:42:a3:64:82:ec:
23:32:d6:48:c1:2f:ed:f3:a4:00:0f:d0:1e:3c:9c:
fb:ef:f4:7b:f8:ca:fb:b3:69:67:0b:d5:38:3e:bd:
20:a2:80:eb:e1:5b:27:7f:52:d1:09:17:02:30:37:
0c:96:e7:bc:19:40:27:b2:c0:19:ab:ce:05:1d:41:
ee:5d:93:9d:ee:2e:1a:12:15:b3:c1:8f:52:fb:9d:
50:b8:d3:e6:5a:67:cc:ac:1f:a5:82:ed:87:14:7a:
d1:42:5e:dd:11:5a:99:f9:c8:e1:4d:f7:90:53:ba:
a8:ea:3e:b2:05:0c:53:25:30:20:30:4b:e6:0e:6c:
7b:50:96:03:1d:9f:65:81:e0:bf:75:ae:dc:a5:71:
0f:61:78:37:db:a5:f1:98:0d:ab:e3:61:ea:1d:49:
5a:42:de:68:09:57:de:f3:d1:35:15:9d:77:b5:45:
9a:95:84:36:d4:24:e1:c0:bb:88:60:6f:e4:5f:8e:
e0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6B:E2:F6:95:06:6B:4B:84:63:A7:A7:59:52:1F:24:C9:CB:E3:3A
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/ZWvi9pUGa0uEY6enWVIfJMnL4zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.127.176.0/22
83.244.73.0-83.244.75.255
83.244.78.0/23
103.196.120.0/22
103.206.108.0/22
103.215.4.0/22
139.190.176.0/20
213.244.70.0-213.244.79.255
213.244.121.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:8d:74:49:d5:20:75:c0:00:5a:db:fd:cd:36:e1:62:ca:2a:
ff:51:cc:d8:97:d8:f7:07:8a:65:33:d0:c9:37:67:d1:7b:5f:
57:f2:3b:a1:cc:67:cc:e1:e2:9a:74:f0:15:41:80:96:58:18:
c6:0d:d5:6c:f2:c1:41:3f:48:c6:bd:d3:13:4e:6f:78:cb:d9:
5c:4a:78:19:b9:86:a3:ba:60:f1:f3:02:c2:d6:13:7d:02:1f:
72:db:ca:32:90:46:36:52:d4:88:5c:6c:57:f4:06:e9:24:1e:
ac:c1:ed:1a:4f:cd:eb:2d:e7:21:5f:80:3f:66:5d:48:f7:d1:
b7:cb:cc:d9:19:23:b9:40:c8:e0:e6:27:4b:3f:95:9a:db:65:
a8:20:a3:20:f8:58:aa:32:dd:9c:1d:fd:55:6b:ab:bb:5e:91:
19:fc:d1:c9:3f:c3:7c:6e:80:2c:3b:74:8b:7a:a3:ad:11:a6:
45:db:c2:19:c2:b3:9e:db:6b:93:41:b4:a7:5c:90:ad:7b:bb:
c4:7a:70:6c:03:53:83:04:63:83:73:09:01:c5:d0:21:f0:58:
b0:52:03:d9:16:ee:25:58:1b:60:9d:1e:fa:49:1b:32:01:b9:
1d:33:6d:9e:e3:bc:56:5c:48:b6:8c:98:8c:4b:73:b5:c2:1a:
6f:6d:b4:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:10 2024 by rpki-client on console-ams.rpki-client.org