Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/ZPH22IKncJRut9gDnisRKpt8kJQ.roa
File: ZPH22IKncJRut9gDnisRKpt8kJQ.roa (raw, json)
Hash identifier: BCyvwhmLhISJYRsFxAFSgnAjs+yTYwBEU7NtwCtn/no=
Subject key identifier: 64:F1:F6:D8:82:A7:70:94:6E:B7:D8:03:9E:2B:11:2A:9B:7C:90:94
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 0182EEBC23180395458B7225D783FF5C7D28
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/ZPH22IKncJRut9gDnisRKpt8kJQ.roa
Signing time: Tue 30 Aug 2022 12:31:23 +0000
ROA not before: Tue 30 Aug 2022 12:31:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 152.228.128.0/17 maxlen: 17
141.95.128.0/17 maxlen: 17
51.210.0.0/16 maxlen: 16
51.178.0.0/16 maxlen: 16
135.125.128.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
193.70.0.0/17 maxlen: 17
162.19.128.0/17 maxlen: 17
51.38.0.0/16 maxlen: 16
145.239.0.0/16 maxlen: 16
137.74.0.0/16 maxlen: 16
149.202.0.0/16 maxlen: 16
188.165.0.0/16 maxlen: 16
51.195.0.0/16 maxlen: 16
141.94.0.0/16 maxlen: 16
5.39.0.0/17 maxlen: 17
198.244.128.0/17 maxlen: 17
5.135.0.0/16 maxlen: 16
135.125.0.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
37.59.0.0/16 maxlen: 16
37.187.0.0/16 maxlen: 16
217.182.0.0/16 maxlen: 16
5.196.0.0/16 maxlen: 16
164.132.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
147.135.128.0/17 maxlen: 17
162.19.0.0/17 maxlen: 17
213.251.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:bc:23:18:03:95:45:8b:72:25:d7:83:ff:5c:7d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Aug 30 12:31:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64f1f6d882a770946eb7d8039e2b112a9b7c9094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:65:82:8f:0e:c3:b5:37:85:9c:34:36:36:3f:
92:55:5a:f8:c2:7c:e6:54:2a:77:e7:92:cb:98:a8:
56:6f:29:b4:12:b1:c9:9d:2a:85:e9:81:c5:3b:81:
88:b6:59:3f:06:c6:fd:f0:1c:6b:d6:03:9c:08:66:
7b:2b:cd:48:a9:4a:86:64:81:d8:32:9d:87:d1:74:
94:14:94:60:1c:d3:3b:f1:07:1f:2e:7f:1b:40:aa:
a0:16:16:69:00:68:50:d8:b5:d0:21:be:86:57:d3:
12:fe:fd:3f:47:5d:bf:60:fb:5c:15:22:dc:34:d9:
6b:fb:0e:07:b0:71:5b:18:c6:11:5b:7b:34:d0:7f:
56:b0:bb:58:79:bb:24:f4:6f:25:52:f2:66:37:a1:
73:7e:dd:84:52:15:a8:43:6c:1f:88:2b:79:ac:45:
6e:e5:48:3e:03:a0:10:4e:3d:7b:72:2a:e5:c3:6e:
d9:87:83:e8:dd:6d:ba:7d:eb:69:c4:be:05:b1:5e:
26:92:9c:7f:61:e6:b5:b3:c0:cc:cd:49:c2:70:e7:
6d:cf:86:9f:f9:61:49:f8:7a:5e:25:3b:d3:e6:e8:
3b:2b:b1:64:bf:fc:56:ca:30:75:90:82:88:dc:3a:
a6:ec:38:07:f0:37:86:04:44:9d:53:c2:92:10:f2:
1b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F1:F6:D8:82:A7:70:94:6E:B7:D8:03:9E:2B:11:2A:9B:7C:90:94
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/ZPH22IKncJRut9gDnisRKpt8kJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
51.38.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
145.239.0.0/16
147.135.128.0/17
149.202.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:23:bb:6c:f8:d2:f0:36:1d:a4:37:ad:d0:87:c1:31:a1:01:
08:76:35:8c:a4:84:44:48:b1:92:98:38:8d:f7:78:92:c6:5e:
0f:45:59:a3:cf:87:2f:9e:cf:43:00:56:8b:93:45:d8:ef:09:
e9:43:d6:ed:f9:f5:1f:cc:5c:91:d0:2f:fb:9f:3a:fc:a6:62:
56:23:2b:35:9d:99:ab:45:2b:2e:d1:5e:e7:c7:28:f9:de:96:
e9:35:9f:2f:81:ac:dc:ba:d6:17:f3:53:fe:d1:e8:c2:18:fb:
3e:7b:58:ad:a5:f3:49:c3:8b:63:cf:31:b0:d8:4e:b3:e4:54:
82:0d:fd:50:9b:bb:54:a3:ae:0a:43:9e:86:e3:9f:f3:dd:ce:
a1:c1:d6:9d:de:82:f9:c9:2f:e1:bc:23:71:73:0d:51:de:3a:
81:d9:64:7d:70:74:d4:22:95:08:29:fc:7c:cd:c4:85:35:d0:
92:33:16:c2:81:4d:49:52:f0:58:14:b0:6d:9b:ff:96:69:4a:
3b:93:ca:eb:2b:fc:ae:38:41:e4:20:be:cb:fc:d1:d1:cb:3d:
0d:23:66:20:84:8e:74:45:7a:24:db:40:7d:0e:b9:73:3f:0f:
15:78:e3:08:85:6b:26:bd:5b:52:bb:e5:fd:66:04:38:8a:cb:
16:bc:72:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:35 2025 by rpki-client