Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/ZEaaofIs0DD0HtIVsCcYEm6JUyc.roa
File: ZEaaofIs0DD0HtIVsCcYEm6JUyc.roa (raw, json)
Hash identifier: joFh7nLGcWvLUacfWuedi53eymTr1L9MZVxA7usQxO0=
Subject key identifier: 64:46:9A:A1:F2:2C:D0:30:F4:1E:D2:15:B0:27:18:12:6E:89:53:27
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 0182EE3B091F8E16C2880911A1A17414B17A
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/ZEaaofIs0DD0HtIVsCcYEm6JUyc.roa
Signing time: Tue 30 Aug 2022 10:10:22 +0000
ROA not before: Tue 30 Aug 2022 10:10:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 198.244.128.0/17 maxlen: 17
152.228.128.0/17 maxlen: 17
5.135.0.0/16 maxlen: 16
141.95.128.0/17 maxlen: 17
135.125.0.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
135.125.128.0/17 maxlen: 17
37.59.0.0/16 maxlen: 16
37.187.0.0/16 maxlen: 16
193.70.0.0/17 maxlen: 17
217.182.0.0/16 maxlen: 16
162.19.128.0/17 maxlen: 17
164.132.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
145.239.0.0/16 maxlen: 16
137.74.0.0/16 maxlen: 16
149.202.0.0/16 maxlen: 16
147.135.128.0/17 maxlen: 17
188.165.0.0/16 maxlen: 16
162.19.0.0/17 maxlen: 17
213.251.128.0/18 maxlen: 18
141.94.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:3b:09:1f:8e:16:c2:88:09:11:a1:a1:74:14:b1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Aug 30 10:10:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64469aa1f22cd030f41ed215b02718126e895327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:48:f7:30:05:fd:4e:56:b3:51:43:7c:50:3f:
52:65:ed:9b:23:02:79:c8:ab:17:8c:99:50:8c:f1:
ea:fc:ce:d1:fb:06:77:95:4f:0f:f0:26:ff:2a:7b:
75:89:ef:33:a6:8e:25:cd:71:c0:63:f9:01:28:85:
fb:73:9b:cc:f4:cb:c9:43:bd:84:cd:1d:65:c0:bd:
54:9c:01:59:88:20:cc:a7:35:43:97:65:8b:97:0d:
17:b4:34:14:f7:52:f6:63:78:fa:15:fe:1b:87:d1:
51:6d:4b:34:33:37:92:e2:a5:ea:22:fc:8f:c1:87:
92:8c:08:34:7f:14:14:bf:b1:15:13:82:0c:2f:c2:
0d:ee:06:65:1c:98:66:5b:d5:bd:23:7d:8d:20:37:
eb:99:7d:69:4a:83:91:13:14:91:f3:84:2f:7b:7b:
9b:a4:90:67:ac:46:d4:3a:cb:fc:c0:a7:44:13:92:
42:06:d9:4f:0b:d8:d2:50:83:c3:8b:3a:d8:41:8c:
94:2f:ea:09:6e:4d:55:5c:ed:fc:03:02:61:d2:3a:
82:ff:2d:8f:60:9f:d6:d9:51:76:31:97:60:dd:29:
95:84:0c:73:02:6f:e7:11:5b:6b:e8:99:a2:79:4a:
f7:bd:c9:74:42:cc:c3:96:e8:fc:fe:e5:05:31:24:
74:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:46:9A:A1:F2:2C:D0:30:F4:1E:D2:15:B0:27:18:12:6E:89:53:27
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/ZEaaofIs0DD0HtIVsCcYEm6JUyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.135.0.0/16
37.59.0.0/16
37.187.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
145.239.0.0/16
147.135.128.0/17
149.202.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9f:42:cd:61:48:69:63:80:b6:9b:15:56:a9:ef:eb:19:0b:9d:
84:95:4f:4c:be:b4:17:11:b0:af:36:a0:30:35:57:50:4a:63:
38:81:41:6d:89:1f:a0:c9:13:8d:6d:c2:e0:7f:2e:c5:02:7f:
57:91:68:ef:2e:bf:5c:f4:c1:f1:df:b5:fb:e1:51:11:fb:d8:
4b:6d:8e:3a:42:e1:ca:6d:6f:05:a4:fd:c6:73:62:9e:a1:e4:
73:70:95:19:54:9d:93:ae:00:f1:8f:b8:0b:16:af:e7:fd:59:
8f:88:4e:dd:01:73:e7:86:d0:d3:f0:20:31:1d:1e:de:1b:5e:
89:fa:0a:68:37:d7:83:22:47:19:2e:fa:64:3d:0e:f8:41:05:
d9:9d:a7:d9:a4:50:6e:43:45:f9:97:0d:28:64:d3:be:bb:03:
16:0e:8e:db:03:79:97:60:c8:13:87:63:37:00:6d:25:ea:6a:
9e:0a:a1:5f:68:c8:59:64:05:2d:01:36:c0:29:8d:e1:c3:1b:
7b:5e:ad:57:1b:08:0a:e0:41:ba:58:35:5a:10:82:ca:ed:a2:
e0:5e:98:73:06:33:3e:bf:a2:33:30:00:b1:6a:2a:5b:3d:ad:
af:44:71:13:cd:3e:89:9d:97:ac:84:68:42:be:88:c9:4f:0f:
58:8c:4b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org