Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/zq7rMcLYcX5b62KZWgIcARY1DqE.roa
File: zq7rMcLYcX5b62KZWgIcARY1DqE.roa (raw, json)
Hash identifier: 0PlnRrJ7nVzXDlnsn3cyO31sqZqMjnkPqlUi0+F4IpE=
Subject key identifier: CE:AE:EB:31:C2:D8:71:7E:5B:EB:62:99:5A:02:1C:01:16:35:0E:A1
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 39524D5B
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/zq7rMcLYcX5b62KZWgIcARY1DqE.roa
Signing time: Sat 02 Jul 2022 11:35:25 +0000
ROA not before: Sat 02 Jul 2022 11:35:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205647
IP address blocks: 151.240.80.0/21 maxlen: 21
31.56.116.0/24 maxlen: 24
94.182.206.0/24 maxlen: 24
94.182.204.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.205.0/24 maxlen: 24
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.228.0/22 maxlen: 22
151.247.216.0/21 maxlen: 21
94.182.41.0/24 maxlen: 24
151.247.214.0/23 maxlen: 23
151.247.224.0/22 maxlen: 22
94.182.72.0/21 maxlen: 21
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.0.0/18 maxlen: 18
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 961695067 (0x39524d5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Jul 2 11:35:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ceaeeb31c2d8717e5beb62995a021c0116350ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d8:f5:30:f3:41:9b:2b:77:a9:0f:da:73:22:
59:e4:89:f3:38:19:e5:59:88:5a:83:c2:2a:96:0f:
11:cf:43:11:4c:93:68:61:ea:c8:64:58:41:34:f7:
fb:f4:a8:58:f7:ac:3c:d5:8f:8f:0a:9f:cd:fd:a4:
84:82:d3:a4:35:95:30:ee:93:f4:4d:eb:10:32:61:
c8:79:88:35:3d:53:65:dd:0b:a2:75:1b:62:05:c6:
f4:fd:af:bd:0e:e0:50:b7:72:dc:a2:a0:ae:ec:de:
9d:89:f0:5e:71:f0:58:56:0a:bf:c7:08:ec:3d:ce:
a8:ca:a8:c3:dd:b0:0b:87:b6:17:c6:09:1c:29:18:
3f:33:9e:88:29:0e:ca:96:77:93:df:e5:1c:aa:8f:
e4:be:b5:ca:aa:7c:1a:6f:89:26:7a:c5:87:b1:7b:
d3:66:aa:40:85:80:0d:33:1e:f6:00:e7:f5:08:7e:
a8:cd:99:5b:79:0f:12:9d:19:94:8f:da:96:f7:73:
ea:83:63:f0:50:54:24:40:c4:1c:e8:a9:c6:fe:7f:
e7:fe:53:83:a8:37:c5:96:1b:f3:af:39:ae:48:dd:
8b:2f:61:35:f6:2b:d0:81:ae:ca:77:26:6b:b5:55:
97:78:ed:12:6f:5a:9a:eb:c3:4c:0d:a6:6c:95:16:
8a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AE:EB:31:C2:D8:71:7E:5B:EB:62:99:5A:02:1C:01:16:35:0E:A1
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/zq7rMcLYcX5b62KZWgIcARY1DqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
85.15.48.0/23
94.182.8.0/23
94.182.12.0/23
94.182.41.0/24
94.182.72.0/21
94.182.114.0-94.182.127.255
94.182.204.0/22
94.182.217.0/24
94.182.226.0/24
94.182.228.0/22
151.240.80.0/21
151.247.214.0-151.247.227.255
Signature Algorithm: sha256WithRSAEncryption
5a:51:0a:0b:1b:96:1d:16:fc:26:7e:6b:8d:e3:c4:03:af:ed:
9d:1d:e5:f8:19:a2:9d:90:ab:0d:95:0e:f7:67:cb:84:68:e6:
cb:f8:e3:39:26:46:98:9e:9c:ef:39:c8:46:93:ea:3c:b1:92:
1c:d3:f2:0f:0a:3c:1c:65:60:43:0b:88:bb:f8:02:af:2f:1c:
85:a1:ff:ce:c1:fb:4d:12:db:1b:a4:70:83:a2:d2:79:1a:95:
6e:6c:85:21:c6:c0:b0:6d:8c:2f:84:5c:50:dc:c0:33:10:f2:
c0:87:60:91:d9:64:b8:86:3c:fc:71:48:d0:ee:68:03:fb:95:
7b:38:42:69:f4:fd:af:69:8f:7d:2f:60:4e:16:25:2c:4b:e5:
4f:f0:9a:f2:cb:73:f6:51:85:ec:a1:60:a9:8e:90:06:2b:3b:
cf:03:be:17:d2:1c:14:33:b3:7e:ef:dc:13:b0:fb:51:81:b7:
1e:5a:95:10:93:84:a7:a4:cf:99:be:72:3b:2d:f4:a4:a2:74:
0b:eb:05:cb:22:13:e0:5d:1e:80:b6:aa:33:05:77:92:a6:0a:
48:b8:3f:09:0a:3f:cb:64:ac:ea:d4:f8:78:b5:4f:98:10:95:
6e:1a:18:1e:66:82:15:e0:b4:88:bd:f0:f6:02:c5:ec:01:92:
90:8c:69:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-ams.rpki-client.org