Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/ZpKcBhOzV_oCA4otbBWUOQHpnSQ.roa
File: ZpKcBhOzV_oCA4otbBWUOQHpnSQ.roa (raw, json)
Hash identifier: 13gRnS1aSRA6K6CyolN+WG5kn+9V770RjZZ+tZ/h6Ls=
Subject key identifier: 66:92:9C:06:13:B3:57:FA:02:03:8A:2D:6C:15:94:39:01:E9:9D:24
Certificate issuer: /CN=48171672d53fdf8b2537764f537e365a5927bdaf
Certificate serial: 065CE4A9
Authority key identifier: 48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/ZpKcBhOzV_oCA4otbBWUOQHpnSQ.roa
Signing time: Fri 20 May 2022 09:53:04 +0000
ROA not before: Fri 20 May 2022 09:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21056
IP address blocks: 185.241.20.0/22 maxlen: 32
185.224.60.0/22 maxlen: 32
87.247.232.0/21 maxlen: 32
45.151.12.0/22 maxlen: 32
213.182.64.0/19 maxlen: 32
45.84.140.0/22 maxlen: 32
185.224.104.0/22 maxlen: 32
79.135.32.0/19 maxlen: 32
185.230.192.0/22 maxlen: 32
80.93.128.0/20 maxlen: 32
185.170.36.0/22 maxlen: 32
185.231.160.0/22 maxlen: 32
46.44.192.0/18 maxlen: 32
185.158.116.0/22 maxlen: 32
185.230.232.0/22 maxlen: 32
144.48.192.0/22 maxlen: 32
78.152.96.0/19 maxlen: 32
45.143.36.0/22 maxlen: 32
185.230.92.0/22 maxlen: 32
45.151.64.0/22 maxlen: 32
185.234.164.0/22 maxlen: 32
94.138.160.0/19 maxlen: 32
91.143.192.0/20 maxlen: 32
2a00:14f8::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106751145 (0x65ce4a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48171672d53fdf8b2537764f537e365a5927bdaf
Validity
Not Before: May 20 09:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66929c0613b357fa02038a2d6c15943901e99d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:40:a0:aa:e2:97:6f:1e:bb:85:f7:0b:0d:71:
f5:a4:42:7e:29:aa:5b:52:d1:36:ab:2b:85:9f:05:
b3:5e:75:d3:ee:6e:e1:92:e4:c4:60:ba:a7:b4:11:
5c:18:76:ec:ab:ef:1f:99:8c:ae:6f:96:e5:34:11:
22:4e:84:a2:5f:0b:8f:ab:2d:3e:f6:47:89:38:e0:
1c:8f:45:ea:4d:f7:f3:10:dc:7f:51:1e:ed:d9:2c:
fa:67:64:41:30:3d:6a:ae:c6:e9:eb:8d:b6:47:3c:
98:c5:72:3f:70:75:be:e2:b7:f1:69:3d:74:a1:9d:
29:4c:c6:5e:65:57:75:19:e3:66:d1:7c:eb:a4:50:
67:c1:ea:41:9e:2d:dd:f7:f8:68:bb:ad:11:51:e2:
43:0b:0b:43:7e:95:66:e7:11:8b:73:3e:cf:d5:a4:
a3:ed:43:b9:3f:be:06:1c:58:2f:10:10:53:00:10:
ae:75:dd:a5:36:a9:85:d1:46:64:d1:03:10:94:2b:
f0:7a:bb:ed:2d:d4:62:81:99:b6:78:f4:0a:36:4e:
12:12:81:c7:68:9e:a9:15:8d:6d:75:4a:31:6b:0b:
06:98:cd:64:fd:d4:48:96:51:07:dc:a5:a8:a0:22:
b5:c9:75:13:b4:37:be:5e:39:2c:36:c5:6e:f9:8f:
07:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:92:9C:06:13:B3:57:FA:02:03:8A:2D:6C:15:94:39:01:E9:9D:24
X509v3 Authority Key Identifier:
keyid:48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/ZpKcBhOzV_oCA4otbBWUOQHpnSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/SBcWctU_34slN3ZPU342Wlknva8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.140.0/22
45.143.36.0/22
45.151.12.0/22
45.151.64.0/22
46.44.192.0/18
78.152.96.0/19
79.135.32.0/19
80.93.128.0/20
87.247.232.0/21
91.143.192.0/20
94.138.160.0/19
144.48.192.0/22
185.158.116.0/22
185.170.36.0/22
185.224.60.0/22
185.224.104.0/22
185.230.92.0/22
185.230.192.0/22
185.230.232.0/22
185.231.160.0/22
185.234.164.0/22
185.241.20.0/22
213.182.64.0/19
IPv6:
2a00:14f8::/32
Signature Algorithm: sha256WithRSAEncryption
b3:de:51:8a:4e:15:32:23:eb:41:18:a8:1b:b7:61:d2:7c:a0:
d1:8b:b5:37:ba:d0:6b:8b:6c:85:e7:13:93:ad:57:33:ce:a7:
f1:f2:38:3b:60:d8:b8:f6:94:e1:36:f3:b9:fe:1e:13:fc:2e:
57:63:dc:a4:b2:49:18:82:fd:b5:e3:d8:13:a1:ad:56:19:04:
b1:92:59:99:a8:06:e3:7c:ce:91:a0:9b:74:50:f7:a9:90:49:
a4:7b:35:50:13:8d:02:af:99:ba:d4:4d:60:f2:3f:dd:60:56:
fd:1f:65:a1:9c:3c:e9:6b:ea:bd:33:f0:92:ef:ae:a3:92:f0:
25:bb:62:42:11:f2:e9:37:25:52:48:75:75:66:f2:7f:9e:f8:
5e:d4:49:b5:62:42:01:4e:9d:2b:e4:79:cc:81:1a:a7:70:70:
1f:99:b6:3a:1a:29:e3:c6:d7:79:6d:e1:f3:6e:9f:f7:b9:7e:
b5:8d:51:88:09:7b:92:55:4b:8f:f9:86:ab:11:14:09:9d:90:
1b:57:31:53:73:18:99:0f:c2:18:6d:99:28:f2:5d:a7:f3:be:
33:8a:95:18:cb:d9:d7:25:4a:c5:fc:41:f1:8a:97:40:a3:e4:
cf:83:13:d4:5f:a8:fa:cd:de:f9:9e:2f:04:33:66:e5:50:f7:
d3:ea:71:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:30 2025 by rpki-client