Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/b6k4ZMUPYUB5UOXqrbAd5ufoMhk.roa
File: b6k4ZMUPYUB5UOXqrbAd5ufoMhk.roa (raw, json)
Hash identifier: BknmwXrSQ+V8R3y8xo6QSTefNfTNHZWCMnvDh95dqxc=
Subject key identifier: 6F:A9:38:64:C5:0F:61:40:79:50:E5:EA:AD:B0:1D:E6:E7:E8:32:19
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 064D25B2
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/b6k4ZMUPYUB5UOXqrbAd5ufoMhk.roa
Signing time: Sat 01 Jan 2022 11:01:10 +0000
ROA not before: Sat 01 Jan 2022 11:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51964
IP address blocks: 57.92.0.0/15 maxlen: 24
57.7.0.0/16 maxlen: 24
57.199.0.0/16 maxlen: 24
57.76.0.0/14 maxlen: 32
57.98.0.0/16 maxlen: 24
57.66.0.0/15 maxlen: 32
57.194.0.0/15 maxlen: 24
57.205.0.0/16 maxlen: 24
57.96.0.0/15 maxlen: 24
57.80.0.0/14 maxlen: 32
57.70.0.0/16 maxlen: 32
57.86.0.0/15 maxlen: 32
57.100.0.0/16 maxlen: 24
57.68.0.0/15 maxlen: 32
57.207.0.0/16 maxlen: 24
57.74.0.0/16 maxlen: 32
57.90.0.0/16 maxlen: 32
57.202.0.0/15 maxlen: 24
57.197.0.0/16 maxlen: 24
57.21.0.0/16 maxlen: 24
57.208.0.0/12 maxlen: 24
57.200.0.0/16 maxlen: 24
57.72.0.0/15 maxlen: 32
57.35.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105719218 (0x64d25b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fa93864c50f61407950e5eaadb01de6e7e83219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:13:eb:19:28:43:3e:65:de:ba:87:3b:3e:43:
8d:db:bd:6d:15:7b:0f:ef:51:57:3c:54:67:a5:0e:
c1:71:03:2f:ae:b1:46:49:49:b5:d4:aa:c5:db:9f:
53:8f:78:aa:b1:0a:42:41:50:24:fd:e6:08:f4:af:
28:1d:f1:79:07:3a:7a:31:e2:ce:fe:2f:e4:65:04:
2f:cc:c7:3f:7e:a0:be:8b:78:c2:8c:75:4a:4c:4e:
81:b0:c3:cb:8f:c3:19:a7:31:c5:b4:44:3d:cf:69:
e1:1a:84:02:bc:df:8f:65:22:f4:7a:46:15:4d:0d:
1e:e2:76:9e:b1:cc:1b:59:37:32:7e:b9:71:53:8d:
f4:7a:d7:7c:23:d1:f0:c6:69:5d:53:e6:99:63:4a:
b5:7c:1e:ce:1d:3a:c8:72:d3:ba:c5:f2:e0:7f:b5:
a4:56:76:da:a5:5c:b5:ee:08:9d:ce:f9:68:24:99:
e2:19:64:e7:db:b5:85:cd:12:91:4c:a9:b6:a7:a0:
17:96:e8:b1:b2:99:7f:86:f0:64:cf:8b:e4:07:0a:
aa:95:e2:0a:86:de:4b:c7:13:fd:68:63:3a:da:3c:
8b:0c:23:d6:b8:db:c5:c7:4c:fd:07:d0:3c:38:db:
43:b1:5a:54:50:fc:c3:c2:04:26:82:1d:49:f9:02:
49:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A9:38:64:C5:0F:61:40:79:50:E5:EA:AD:B0:1D:E6:E7:E8:32:19
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/b6k4ZMUPYUB5UOXqrbAd5ufoMhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.7.0.0/16
57.21.0.0/16
57.35.0.0/16
57.66.0.0-57.70.255.255
57.72.0.0-57.74.255.255
57.76.0.0-57.83.255.255
57.86.0.0/15
57.90.0.0/16
57.92.0.0/15
57.96.0.0-57.98.255.255
57.100.0.0/16
57.194.0.0/15
57.197.0.0/16
57.199.0.0-57.200.255.255
57.202.0.0/15
57.205.0.0/16
57.207.0.0-57.223.255.255
Signature Algorithm: sha256WithRSAEncryption
73:9b:3a:47:5a:42:ea:e4:1b:38:56:a8:ac:0e:0b:ee:5a:79:
5c:ad:c0:e7:4b:01:cd:9b:81:bf:5b:5a:54:59:6f:e1:e2:f2:
d0:ed:33:8d:2b:2e:11:e1:f2:67:29:87:b5:63:57:18:43:b7:
b2:6e:a0:26:6c:0d:69:29:14:f5:f4:f7:ec:37:a2:3d:e9:56:
9c:70:8d:26:70:f7:17:cd:af:c2:d5:80:d0:42:14:f6:b3:0f:
d2:91:80:74:0a:4c:ee:ab:64:26:ad:2f:19:45:76:ea:08:85:
0a:37:57:df:b6:5d:48:8e:95:e9:aa:50:55:b2:00:7a:fd:64:
0c:f4:84:08:a9:21:74:fb:04:12:92:aa:e9:2d:32:f6:06:1d:
14:41:3e:04:78:7f:fc:88:78:0f:38:82:b8:e0:93:70:b3:01:
e7:aa:06:a0:a8:87:be:68:bd:ff:85:a4:de:5f:9c:b5:eb:f9:
58:ab:59:e5:e0:69:c3:eb:b1:ee:72:ff:15:7d:b6:94:4b:d2:
0e:34:4a:ed:22:7e:87:48:7b:58:df:ab:ce:ce:94:07:8e:10:
1f:c9:c4:ec:ea:24:de:d4:a5:9a:b9:47:e9:ac:84:a7:d0:6c:
fa:a8:9a:a5:74:41:af:36:a1:74:ec:01:d0:44:c4:48:65:a4:
32:b5:eb:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:35 2024 by rpki-client on console-ams.rpki-client.org