Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/7pZ3-bevC5Xya99BJbf7x4wOq08.roa
File: 7pZ3-bevC5Xya99BJbf7x4wOq08.roa (raw, json)
Hash identifier: b60sRj4+OmiQVb8nOiXgNtAZDzXDqyWivQ8ryPpI1mE=
Subject key identifier: EE:96:77:F9:B7:AF:0B:95:F2:6B:DF:41:25:B7:FB:C7:8C:0E:AB:4F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183EFBFDB713F373A790FB014AF1997642D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/7pZ3-bevC5Xya99BJbf7x4wOq08.roa
Signing time: Wed 19 Oct 2022 10:17:51 +0000
ROA not before: Wed 19 Oct 2022 10:17:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.196.0/22 maxlen: 24
45.8.200.0/22 maxlen: 24
45.8.205.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
85.208.105.0/24 maxlen: 24
45.66.152.0/22 maxlen: 24
5.180.82.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.232.0/22 maxlen: 24
5.180.32.0/22 maxlen: 24
85.209.160.0/22 maxlen: 24
5.180.48.0/22 maxlen: 24
85.208.112.0/22 maxlen: 24
5.253.36.0/22 maxlen: 24
5.253.44.0/22 maxlen: 24
45.8.252.0/22 maxlen: 24
45.9.0.0/22 maxlen: 24
45.9.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ef:bf:db:71:3f:37:3a:79:0f:b0:14:af:19:97:64:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 19 10:17:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee9677f9b7af0b95f26bdf4125b7fbc78c0eab4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:57:93:5d:ce:8b:6e:b6:ce:25:14:f8:cc:1e:
81:d9:3c:a0:54:65:ff:39:de:6e:26:f5:11:7c:52:
89:60:0a:0c:4f:99:17:f6:7b:09:0a:51:fa:3d:d3:
e7:13:17:99:52:34:0d:40:79:0d:b9:d4:d1:79:58:
0b:15:32:4b:8b:0c:50:e9:67:36:29:ab:48:7f:fa:
f6:5b:fb:81:8b:1b:be:9e:63:0e:c1:77:78:54:b1:
46:88:8d:e9:d7:7a:bd:65:82:bc:97:22:5a:f1:a3:
7f:6e:02:a8:31:9d:4b:de:bd:3f:a9:04:97:af:1b:
d3:ec:e1:46:aa:3c:39:71:85:23:91:f8:21:2c:10:
a5:8f:b3:fe:9b:ec:ba:02:d4:13:1a:e5:dc:d7:41:
74:d2:1f:48:52:ae:27:8b:7e:b1:39:10:66:33:db:
7f:09:1a:93:a0:18:88:37:36:02:0e:a5:b1:a7:0b:
77:8c:f8:55:eb:07:38:8f:12:c4:6e:8a:2b:4a:b2:
fd:65:e7:2b:33:b6:97:95:ae:31:ad:31:77:11:58:
42:8b:16:22:bf:06:81:cb:2b:9a:5e:53:ca:5a:ba:
de:01:24:05:9b:4a:3f:79:13:58:7a:11:9d:2b:42:
c6:a4:d5:f1:2b:6a:57:e9:2b:cb:68:4b:bf:c6:c2:
20:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:96:77:F9:B7:AF:0B:95:F2:6B:DF:41:25:B7:FB:C7:8C:0E:AB:4F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/7pZ3-bevC5Xya99BJbf7x4wOq08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/22
5.180.80.0/24
5.180.82.0/24
5.180.232.0/22
5.253.36.0/22
5.253.44.0/22
45.8.184.0-45.8.203.255
45.8.205.0/24
45.8.252.0-45.9.7.255
45.66.152.0/22
85.208.105.0/24
85.208.112.0/22
85.209.160.0/22
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
71:4b:2d:e0:e4:f1:72:5b:26:80:b4:43:ab:d4:a3:45:5c:70:
f2:6b:46:82:9e:0d:61:13:ee:27:e8:08:4b:65:a8:cd:95:77:
e2:65:c6:c7:ad:7e:98:df:cc:17:f1:6f:63:b3:96:bb:13:e5:
9a:91:1f:35:74:31:ed:0f:a9:9a:ae:12:0b:cf:f0:bb:2e:60:
b4:aa:9e:61:8e:2e:95:86:c0:7c:4e:8a:b6:89:f8:da:1b:aa:
af:bc:b1:bc:fa:77:4d:ce:cc:6e:1d:76:d3:36:d9:51:7c:77:
a7:24:21:68:1a:a7:36:56:51:4e:22:a2:fc:0d:f7:7e:c1:73:
80:a2:ad:d1:a9:0b:c3:9c:bb:5f:16:b3:49:10:1c:74:a7:e0:
1a:df:53:7f:13:24:db:d5:d1:4a:49:1b:02:45:cd:87:de:67:
65:2d:f4:78:2c:f0:0a:65:67:00:ee:1d:94:73:12:9f:4f:c7:
25:55:bc:d6:f2:1d:47:cb:82:0c:7a:10:39:84:fb:66:19:76:
04:50:ef:6a:4b:15:1e:02:60:5c:fe:e1:60:38:b1:83:27:36:
d8:69:4f:22:eb:a1:cd:ab:cf:eb:e6:52:91:62:2c:e9:5c:b8:
fc:b3:71:c8:9c:4b:ef:0f:e2:d5:b7:2b:6b:61:99:0a:96:0c:
90:f7:a9:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:22 2023 by rpki-client on console-ams.rpki-client.org