Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/zw8DeVEKcbQ3QycBDD2vO2Rj7xk.roa
File: zw8DeVEKcbQ3QycBDD2vO2Rj7xk.roa (raw, json)
Hash identifier: 49L4v5NxTk8A4Gfvl9PxrgYM6GDy0lKoE97wDcoaFwY=
Subject key identifier: CF:0F:03:79:51:0A:71:B4:37:43:27:01:0C:3D:AF:3B:64:63:EF:19
Certificate issuer: /CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Certificate serial: 16DED9
Authority key identifier: 0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/zw8DeVEKcbQ3QycBDD2vO2Rj7xk.roa
Signing time: Sun 17 Apr 2022 15:23:33 +0000
ROA not before: Sun 17 Apr 2022 15:23:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200590
IP address blocks: 91.192.82.0/24 maxlen: 24
213.183.34.0/24 maxlen: 24
213.183.35.0/24 maxlen: 24
5.188.175.0/24 maxlen: 24
5.188.174.0/24 maxlen: 24
93.189.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1498841 (0x16ded9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Validity
Not Before: Apr 17 15:23:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf0f0379510a71b4374327010c3daf3b6463ef19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:df:2b:06:3a:0a:ea:79:59:e0:ab:0e:26:2a:
39:a9:c3:28:40:fc:c8:61:79:35:3b:02:23:4c:da:
f8:d3:1f:67:48:81:a8:d8:b0:47:b4:c9:92:a5:b1:
e8:58:f8:09:81:8c:8e:ff:bd:5b:37:fb:e0:49:b8:
5e:ce:dd:bc:c3:31:33:cc:15:f1:00:05:57:df:7a:
6f:18:5e:1b:98:4c:b3:2a:42:fa:e3:ed:31:8f:44:
ee:15:0f:ff:f2:bf:72:fb:a0:93:79:da:23:de:00:
a1:81:d8:c3:14:92:ad:72:d6:eb:e5:aa:16:dd:54:
d1:2b:31:9c:a1:c7:50:a3:1c:a1:9f:cf:44:66:11:
77:c5:e6:46:66:45:34:b1:15:19:9b:8a:50:51:72:
a9:fd:ca:33:fe:ab:bf:98:0c:da:90:d9:67:a8:45:
02:73:d3:ea:63:db:47:3a:79:ed:7d:17:76:0c:d1:
48:c5:67:fc:2b:48:ea:8c:6c:75:5f:d3:29:e4:1e:
04:9a:82:2a:6a:66:63:12:b7:87:e5:0e:42:5c:10:
9c:4c:dc:8d:65:f7:fb:14:d8:8f:21:e4:a6:81:2a:
d5:f4:a2:bf:30:d0:83:d7:43:be:33:36:03:c7:e2:
9b:2b:d6:ac:0a:95:1e:5e:fc:81:f5:17:74:ff:fc:
6b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0F:03:79:51:0A:71:B4:37:43:27:01:0C:3D:AF:3B:64:63:EF:19
X509v3 Authority Key Identifier:
keyid:0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/zw8DeVEKcbQ3QycBDD2vO2Rj7xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/D-v7_W-TfFrjnj446KuDhBB0IaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.174.0/23
91.192.82.0/24
93.189.59.0/24
213.183.34.0/23
Signature Algorithm: sha256WithRSAEncryption
14:e2:6e:5a:cc:b7:35:bf:1e:92:04:08:89:71:5f:28:f2:ae:
d9:2b:94:0c:8e:b5:af:04:5a:28:dd:5b:f4:b8:79:0c:21:55:
bf:5d:1b:45:8c:53:23:a1:1b:5c:36:65:90:23:26:1a:5d:c3:
cb:af:d0:83:f4:17:0e:fe:d4:ad:5d:5d:f1:04:67:78:b8:98:
b8:be:18:ca:55:d7:3f:3a:d0:15:24:02:bb:52:97:1f:2e:8e:
6e:c9:79:d2:1b:39:c0:d7:41:34:bb:07:ac:60:84:f5:ab:00:
6c:2d:9f:40:52:f6:a6:95:88:32:3f:4c:c0:09:c1:62:01:b2:
26:d6:fa:a2:40:40:df:77:9e:37:53:2f:f2:b3:dc:2f:8b:2e:
3c:55:e9:1e:c1:bf:8c:0c:d7:08:dd:ef:80:54:52:6d:b5:2d:
92:cb:13:c7:5c:2c:51:1d:05:f5:be:e9:08:e1:3d:42:18:6d:
e8:0b:bf:83:84:b8:e3:3d:3d:0e:20:c1:d8:14:53:8b:8e:67:
91:36:e8:3f:26:d5:7f:27:e2:b6:2d:35:8d:c5:f9:96:6e:f5:
66:78:89:8e:f2:5c:4b:55:fa:9c:2e:40:97:13:8d:36:f5:1d:
b4:5a:e0:71:fc:88:0f:ef:a3:67:3a:5b:f7:71:1f:62:33:7c:
b1:0d:ef:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:11 2023 by rpki-client on console-fra.rpki-client.org