Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/ZJh4_tDbClaf0ftNvAdFFG0VDEY.roa
File: ZJh4_tDbClaf0ftNvAdFFG0VDEY.roa (raw, json)
Hash identifier: Xvh9s0dWh1pGZpBpOmkb1eU1QI0M6Kh8Yfy6Ra/Tb1o=
Subject key identifier: 64:98:78:FE:D0:DB:0A:56:9F:D1:FB:4D:BC:07:45:14:6D:15:0C:46
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01F5EF62
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/ZJh4_tDbClaf0ftNvAdFFG0VDEY.roa
Signing time: Sat 01 Jan 2022 15:06:19 +0000
ROA not before: Sat 01 Jan 2022 15:06:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53340
IP address blocks: 176.111.222.0/24 maxlen: 24
193.8.194.0/24 maxlen: 24
147.189.139.0/24 maxlen: 24
147.189.133.0/24 maxlen: 24
5.183.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32894818 (0x1f5ef62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 15:06:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=649878fed0db0a569fd1fb4dbc0745146d150c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2a:2b:09:f2:62:05:6a:ea:f1:e0:6c:08:ad:
cf:1f:ab:7a:0f:74:49:66:2d:6a:fd:e9:89:8f:13:
d4:ee:0b:df:b3:59:4c:de:14:ab:fa:35:87:14:38:
80:33:b2:ce:6f:d6:95:61:71:66:0c:d0:68:4d:e1:
04:ac:bd:b4:1f:90:75:9e:26:20:8f:16:cf:3e:6f:
64:6e:14:c6:7a:c3:73:9e:fd:f0:89:ce:45:ab:c8:
26:6d:61:7a:12:cf:7e:b8:99:ad:69:44:f7:de:fb:
9c:58:12:a2:a1:4f:38:a9:15:65:41:6c:f7:37:9e:
23:02:09:b8:d5:6e:d6:37:31:00:17:6d:fd:c8:89:
25:26:99:ce:91:b2:80:b7:d6:18:c9:8b:7a:c4:03:
01:0c:cd:4b:11:d3:26:da:2d:7a:b0:e6:d3:c4:df:
81:39:73:73:73:e6:07:c7:99:67:fa:cc:47:0a:b4:
ce:e5:e6:d3:bf:a9:47:ff:4a:23:59:cf:f8:90:e1:
ec:ba:4a:ff:f4:f6:94:da:2b:c3:ad:ac:8e:4e:76:
7d:f1:d1:ee:be:bb:d9:ce:1e:03:46:f9:6b:7c:be:
98:10:1d:ba:f1:0f:1e:f4:2c:54:6e:f6:83:14:94:
45:11:9d:d4:ca:3c:f6:a9:fe:04:a2:29:44:f6:f0:
12:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:98:78:FE:D0:DB:0A:56:9F:D1:FB:4D:BC:07:45:14:6D:15:0C:46
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/ZJh4_tDbClaf0ftNvAdFFG0VDEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.77.0/24
147.189.133.0/24
147.189.139.0/24
176.111.222.0/24
193.8.194.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:e3:82:c0:87:a1:62:55:48:cd:2b:28:e5:27:25:09:27:c1:
70:2f:49:d8:f4:7d:34:56:c8:8d:d0:de:30:8b:35:3e:b7:87:
50:63:32:71:ef:0c:0c:a7:69:ed:c3:18:d2:84:71:c1:aa:4c:
87:f9:4d:ca:64:a1:79:0b:37:12:5b:2e:1d:e4:43:94:7c:b7:
4a:2a:58:d2:af:43:3c:b2:24:7c:97:0f:d1:f7:9a:fb:fa:1d:
a6:78:71:dc:03:73:e0:3b:82:d5:16:2b:48:0c:99:db:1c:28:
af:24:49:7c:76:23:a9:a8:8b:ab:f9:05:be:6a:40:d8:d8:71:
96:b5:57:2e:a2:3a:ee:f1:b5:cb:fc:48:63:d6:0b:32:18:56:
8b:86:9f:d6:18:10:4a:63:b1:65:d7:a0:01:ba:d1:be:45:59:
4c:de:6e:73:ba:1c:5f:4b:ce:e6:ec:e6:40:40:ad:18:8a:dc:
63:14:65:b4:81:9c:d6:07:7d:c6:2f:46:8b:29:20:8e:6b:a0:
06:bf:78:44:72:26:78:51:25:53:7e:59:e0:05:3f:16:69:03:
ef:8d:ab:cd:89:34:f2:02:bc:88:b9:7f:17:f5:bb:a6:c9:2b:
8d:3a:1c:cd:b9:ed:c2:e2:65:98:b3:12:69:e7:0d:04:45:29:
76:7b:d5:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:12 2024 by rpki-client on console-fra.rpki-client.org