Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZeZAcDJEtywo5KenQowcjfqwqlI.roa
File: ZeZAcDJEtywo5KenQowcjfqwqlI.roa (raw, json)
Hash identifier: EkY92EkfeiwCnnC/rI2qrCh3WP7TKw9t8h/LZjYDGIY=
Subject key identifier: 65:E6:40:70:32:44:B7:2C:28:E4:A7:A7:42:8C:1C:8D:FA:B0:AA:52
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0184527CA0633703424D1D18B7403D0E25D1
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZeZAcDJEtywo5KenQowcjfqwqlI.roa
Signing time: Mon 07 Nov 2022 14:26:50 +0000
ROA not before: Mon 07 Nov 2022 14:26:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.196.0/22 maxlen: 24
45.8.200.0/22 maxlen: 24
45.8.205.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
85.208.105.0/24 maxlen: 24
45.66.152.0/22 maxlen: 24
5.180.82.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.232.0/22 maxlen: 24
5.180.32.0/22 maxlen: 24
85.209.160.0/22 maxlen: 24
5.180.48.0/22 maxlen: 24
85.208.112.0/22 maxlen: 24
5.253.36.0/22 maxlen: 24
5.253.44.0/24 maxlen: 24
45.8.252.0/22 maxlen: 24
5.253.46.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
5.253.45.0/24 maxlen: 24
45.9.0.0/22 maxlen: 24
45.9.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:7c:a0:63:37:03:42:4d:1d:18:b7:40:3d:0e:25:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 7 14:26:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65e640703244b72c28e4a7a7428c1c8dfab0aa52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bc:e6:43:f9:89:f1:8f:03:a6:c8:11:37:37:
4e:4d:ed:b8:3d:97:9a:90:ba:2b:3f:33:a2:82:12:
03:2d:fe:4c:65:99:bb:8f:be:1c:f1:ea:ef:68:30:
37:73:e5:7e:1e:53:de:28:e9:22:fc:37:56:e0:ab:
8c:56:46:8a:b8:25:09:7a:12:40:41:0f:65:57:0b:
85:23:f8:d7:83:af:40:b7:a4:db:a6:3e:e3:23:97:
c6:af:68:01:6f:94:9d:1b:db:5b:b7:b5:63:09:67:
7a:55:5b:b3:57:de:4d:bd:3d:07:e3:f8:5d:db:e4:
c8:6f:c7:07:ff:77:c6:4c:56:64:cf:99:92:03:5f:
d1:27:ad:59:2d:43:51:4a:8f:26:ba:d6:73:29:70:
5a:e9:81:2b:a6:95:b5:34:2e:ff:d6:27:4e:e4:52:
5e:4e:c3:49:77:8e:40:b2:74:90:04:8a:dd:3d:e0:
01:9e:16:a9:32:33:f9:d4:35:64:46:c0:7f:e8:13:
e1:73:fa:f3:c4:11:28:02:86:f8:9f:65:35:0f:58:
71:35:e1:10:47:2b:1d:62:53:b9:85:16:b5:54:71:
c8:ae:7a:b1:c4:54:f4:90:81:00:02:fb:7b:01:db:
af:90:92:a5:a1:ac:fb:d1:53:c0:e9:77:9d:a3:18:
a0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E6:40:70:32:44:B7:2C:28:E4:A7:A7:42:8C:1C:8D:FA:B0:AA:52
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZeZAcDJEtywo5KenQowcjfqwqlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/22
5.180.80.0/24
5.180.82.0/24
5.180.232.0/22
5.253.36.0/22
5.253.44.0/22
45.8.184.0-45.8.203.255
45.8.205.0/24
45.8.252.0-45.9.7.255
45.66.152.0/22
85.208.105.0/24
85.208.112.0/22
85.209.160.0/22
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
15:b4:ff:e9:3d:0f:ae:03:4f:71:27:2b:45:06:86:ec:23:9c:
78:43:68:e0:fa:2b:85:5b:8e:17:96:fc:29:d4:e4:da:9e:d1:
b6:c3:b3:ad:70:d3:cf:62:b0:42:07:5a:34:79:4f:0c:41:c7:
70:bb:e8:98:c7:03:bb:8a:cd:57:79:99:21:4a:2c:2f:43:b3:
09:16:0e:a2:ed:e0:cc:3d:39:c4:0b:1b:51:42:b2:0c:bd:1b:
53:ee:04:dc:c2:96:42:3b:94:8b:57:07:cf:96:bf:de:27:6d:
14:9e:3b:cc:4c:13:d8:59:24:dd:ba:b3:5d:d1:ab:5e:0a:90:
8f:49:dd:b9:4e:c6:6f:8f:64:4e:e4:9b:de:db:ea:da:61:11:
3a:20:f7:e1:0e:fe:20:8f:1a:17:27:c3:f1:bb:74:c7:06:50:
3e:00:46:5f:47:e2:4f:6a:16:6b:44:5f:a5:4b:8c:4e:44:9c:
fd:ad:b0:1c:77:ae:b3:32:9e:a3:0f:c3:12:62:cd:72:1c:28:
69:30:4e:2a:5a:29:87:4f:10:2a:cd:19:fd:38:d8:e6:20:76:
a1:ee:ab:67:fa:1d:bf:71:24:be:31:23:b3:02:52:46:56:e6:
5c:ac:a3:c7:3d:fa:09:1a:09:14:91:09:48:68:70:21:76:d5:
df:54:2f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org