Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/KZ2MxF8quoI0OlheruhjNyisqIo.roa
File: KZ2MxF8quoI0OlheruhjNyisqIo.roa (raw, json)
Hash identifier: 5AoI3JOlPtRwu6er9yzfQSI7cXfaOHfTXjMvdJ1Bl/o=
Subject key identifier: 29:9D:8C:C4:5F:2A:BA:82:34:3A:58:5E:AE:E8:63:37:28:AC:A8:8A
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0C4F98BF
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/KZ2MxF8quoI0OlheruhjNyisqIo.roa
Signing time: Thu 16 Jun 2022 13:17:41 +0000
ROA not before: Thu 16 Jun 2022 13:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20485
IP address blocks: 80.76.240.0/20 maxlen: 24
145.255.136.0/21 maxlen: 21
80.237.0.0/17 maxlen: 17
188.43.0.0/16 maxlen: 16
62.33.0.0/16 maxlen: 16
213.137.230.0/23 maxlen: 23
213.137.232.0/23 maxlen: 24
213.137.236.0/22 maxlen: 24
213.137.240.0/21 maxlen: 24
213.137.248.0/21 maxlen: 24
83.234.0.0/16 maxlen: 16
89.237.32.0/22 maxlen: 24
89.237.37.0/24 maxlen: 24
89.237.44.0/24 maxlen: 24
89.237.41.0/24 maxlen: 24
89.237.43.0/24 maxlen: 24
89.237.46.0/24 maxlen: 24
89.237.45.0/24 maxlen: 24
62.33.111.0/24 maxlen: 24
89.237.55.0/24 maxlen: 24
217.150.32.0/19 maxlen: 19
185.50.216.0/22 maxlen: 24
80.82.160.0/19 maxlen: 19
185.13.160.0/22 maxlen: 22
213.141.240.0/22 maxlen: 22
151.237.240.0/21 maxlen: 24
213.141.247.0/24 maxlen: 24
195.246.122.0/23 maxlen: 24
217.148.208.0/20 maxlen: 24
2a00:1e48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206543039 (0xc4f98bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jun 16 13:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=299d8cc45f2aba82343a585eaee8633728aca88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:72:e7:13:10:b8:1d:d6:44:75:03:2b:13:4e:
a6:1d:07:48:0c:78:9f:d4:4b:b8:78:48:f2:a1:a5:
95:7c:82:96:93:38:a8:01:b9:cf:c7:48:a3:3a:f2:
6c:40:ae:63:b7:dc:74:21:ab:30:1a:25:66:5c:3d:
d6:16:a7:81:2b:df:7b:90:c9:ab:e8:dc:b6:21:f9:
ab:46:61:eb:b5:d4:c4:2f:ce:04:ec:86:b3:3f:59:
20:1d:12:3a:77:de:97:8a:2d:bd:d7:96:11:80:f4:
53:ef:39:e0:04:12:32:fa:a1:df:74:b1:9f:5f:1e:
89:5f:dc:26:37:0e:12:c8:e3:c8:ae:b8:5d:57:a9:
32:7e:ca:a9:c9:25:27:d5:ad:9e:1b:72:1f:5f:5b:
36:a9:a7:77:a8:d3:b9:43:83:c1:7e:59:8a:ee:96:
af:db:71:0a:8b:be:52:4c:35:cf:a8:e0:97:54:c7:
7b:df:21:32:20:b0:3a:bf:69:21:ea:8f:0b:8c:b3:
81:65:c3:72:16:bd:68:2b:02:26:29:1f:df:6b:b6:
f1:4b:36:d5:4b:ae:45:db:00:d1:8b:13:d1:ce:e7:
af:9b:b1:3d:58:cf:7a:f2:e4:14:f2:5e:de:4d:87:
a6:e8:5d:4b:99:ff:05:ad:9c:10:ad:c9:93:c3:34:
83:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9D:8C:C4:5F:2A:BA:82:34:3A:58:5E:AE:E8:63:37:28:AC:A8:8A
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/KZ2MxF8quoI0OlheruhjNyisqIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.33.0.0/16
80.76.240.0/20
80.82.160.0/19
80.237.0.0/17
83.234.0.0/16
89.237.32.0/22
89.237.37.0/24
89.237.41.0/24
89.237.43.0-89.237.46.255
89.237.55.0/24
145.255.136.0/21
151.237.240.0/21
185.13.160.0/22
185.50.216.0/22
188.43.0.0/16
195.246.122.0/23
213.137.230.0-213.137.233.255
213.137.236.0-213.137.255.255
213.141.240.0/22
213.141.247.0/24
217.148.208.0/20
217.150.32.0/19
IPv6:
2a00:1e48::/32
Signature Algorithm: sha256WithRSAEncryption
c4:96:1e:fc:0a:7b:f7:70:61:89:87:a4:32:1a:c0:ae:33:32:
16:7a:6f:25:d5:cd:13:d3:93:92:88:9d:02:1e:43:90:62:08:
b3:5d:93:9e:57:96:bb:b6:7a:f3:19:df:40:fb:a7:80:63:28:
df:89:7c:40:d4:24:93:21:cc:71:8b:41:1b:d3:3c:a9:9e:ac:
de:ca:6e:77:f4:ef:7d:2e:94:93:c5:e2:d8:4f:ab:e3:d8:d7:
cd:19:36:49:aa:36:75:04:41:a4:57:41:05:94:2d:f4:7f:00:
c4:55:bb:d1:24:19:5d:c0:2f:9c:03:a1:45:55:6c:31:25:13:
0a:b9:a7:3f:ac:b0:da:65:64:34:19:16:5b:22:c8:de:22:40:
fe:b9:91:00:77:4c:c1:a2:fd:a3:84:dc:f4:76:c8:d8:0a:fb:
50:15:ff:15:99:09:e5:f2:2f:a9:f8:0c:a1:b6:e0:b8:a0:b6:
a7:75:77:a8:63:50:ae:9b:b9:43:c6:91:1e:22:4f:bc:91:3b:
bb:25:43:ba:59:e8:b0:af:d0:bb:b1:8a:04:c0:0c:6e:63:4a:
ca:8d:31:7d:b2:7f:15:96:85:0c:c1:65:af:5c:49:0f:4a:de:
bd:e4:9a:bd:a3:15:58:b3:ff:63:66:e0:c1:35:5c:69:ca:18:
3f:dd:59:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org