Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/ZKB5x_vPZf54iO-mtgrT14U0TRw.roa
File: ZKB5x_vPZf54iO-mtgrT14U0TRw.roa (raw, json)
Hash identifier: sTNRUY2rYrwSU2yWXBfsdX2XS5XmEffbryRi0tZRrFY=
Subject key identifier: 64:A0:79:C7:FB:CF:65:FE:78:88:EF:A6:B6:0A:D3:D7:85:34:4D:1C
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 018312D6B1702DED0E7BF65D4E7FF077F781
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/ZKB5x_vPZf54iO-mtgrT14U0TRw.roa
Signing time: Tue 06 Sep 2022 12:46:43 +0000
ROA not before: Tue 06 Sep 2022 12:46:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39608
IP address blocks: 194.50.85.0/24 maxlen: 24
185.53.76.0/23 maxlen: 24
176.36.0.0/16 maxlen: 17
176.37.0.0/16 maxlen: 17
194.60.69.0/24 maxlen: 24
194.33.189.0/24 maxlen: 24
86.111.64.0/19 maxlen: 19
86.111.88.0/21 maxlen: 22
2a01:5800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:d6:b1:70:2d:ed:0e:7b:f6:5d:4e:7f:f0:77:f7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Sep 6 12:46:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64a079c7fbcf65fe7888efa6b60ad3d785344d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:16:45:af:9a:54:4b:04:4d:06:d1:16:81:99:
db:33:8d:dd:35:66:f3:04:1b:6e:82:c6:2f:38:02:
b0:91:d7:dd:b0:2b:6d:f3:73:61:51:81:50:e1:2f:
32:ac:f2:a1:b7:4e:02:34:4d:c2:d5:19:ed:bf:df:
5d:5e:4a:33:c3:1d:e1:39:66:93:ea:db:9a:fd:88:
59:f0:5a:fe:99:05:ac:9d:1f:1f:f4:cf:ae:de:f2:
52:74:bc:9a:12:fc:6b:90:16:41:13:33:67:27:c6:
e1:fe:9f:63:d6:45:11:99:d5:d4:3e:53:90:f8:bc:
6d:25:5e:d8:7e:21:13:6f:a0:43:02:d5:2b:02:a4:
ea:46:78:ec:01:91:38:63:db:63:12:71:ec:87:4e:
13:19:33:2f:80:66:56:e0:c1:22:d5:c8:57:df:8b:
57:7c:e9:91:42:00:4e:8c:d3:2c:aa:fb:c3:ca:de:
52:7e:10:eb:f2:c1:b3:d1:f3:13:50:ed:57:63:b0:
25:a4:45:78:aa:03:fa:9f:94:b4:94:31:9e:e4:78:
b0:2d:c0:a5:e4:56:10:0c:eb:66:77:d8:54:45:cb:
f3:7a:04:54:ce:ec:8e:fb:a9:e0:61:f5:f4:31:b8:
73:c5:d0:5f:30:ce:41:ce:8a:0b:2a:5d:00:52:85:
3c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A0:79:C7:FB:CF:65:FE:78:88:EF:A6:B6:0A:D3:D7:85:34:4D:1C
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/ZKB5x_vPZf54iO-mtgrT14U0TRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.64.0/19
176.36.0.0/15
185.53.76.0/23
194.33.189.0/24
194.50.85.0/24
194.60.69.0/24
IPv6:
2a01:5800::/32
Signature Algorithm: sha256WithRSAEncryption
96:12:fd:ff:33:d2:7a:b4:0c:6e:5a:d1:08:da:44:ee:61:91:
7a:0c:15:4a:88:9e:32:31:82:c9:2b:fa:54:78:63:d0:a3:8d:
d6:49:44:6b:ee:af:0c:aa:0d:c0:0e:dd:b7:95:fb:48:b4:32:
84:66:69:be:76:0a:d0:f2:50:ac:ea:69:a8:ea:00:10:5e:ca:
97:7f:2f:0f:47:92:d6:5c:3b:57:6b:73:14:36:91:2f:33:65:
58:d9:9f:8e:88:91:64:26:40:45:d3:08:4d:6f:49:f3:7a:5c:
ee:28:bf:36:0e:ea:28:28:f3:f1:ba:e4:d2:c8:21:c9:16:79:
aa:1b:57:a0:74:ad:f3:5a:1a:7f:0a:7f:19:ed:a0:75:66:81:
b1:94:aa:9b:74:22:83:3a:ef:ab:6f:a3:3e:a5:07:d1:33:83:
01:93:ef:17:61:88:3b:87:70:a6:dd:69:7c:6c:13:57:3a:82:
21:ae:ba:51:ce:a5:17:fd:39:bd:43:02:27:fa:e2:fd:fc:d7:
a0:c2:5c:7d:6a:0f:e1:de:42:b5:68:5f:95:a9:69:f6:7d:aa:
54:1a:58:9e:0c:64:ad:91:12:c5:ff:41:de:21:93:c5:db:36:
81:48:58:cc:7d:bf:e2:cb:7d:c4:07:26:73:13:3d:ae:d0:27:
7b:3e:b0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org