Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZBZ_YlpEfIPAcnl10qjXv_r3UQg.roa
File: ZBZ_YlpEfIPAcnl10qjXv_r3UQg.roa (raw, json)
Hash identifier: 9Gf+5Wh0qRQmetgvf/gOrnixNOJhpjyxZ/3vK0rHXx8=
Subject key identifier: 64:16:7F:62:5A:44:7C:83:C0:72:79:75:D2:A8:D7:BF:FA:F7:51:08
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 022F5FBF
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZBZ_YlpEfIPAcnl10qjXv_r3UQg.roa
Signing time: Thu 03 Mar 2022 08:04:19 +0000
ROA not before: Thu 03 Mar 2022 08:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
2a0e:e980::/29 maxlen: 29
2a0f:ac00::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:a02::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36659135 (0x22f5fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 3 08:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64167f625a447c83c0727975d2a8d7bffaf75108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:54:3a:77:7e:45:64:50:bd:b4:cd:c0:41:7a:
c5:4b:eb:34:ef:ab:34:26:c8:85:7b:18:15:52:46:
23:db:dc:a5:a5:50:a0:d2:20:b5:06:a9:f9:4e:4e:
4b:4d:95:d1:22:f1:44:29:7b:6a:4b:90:2b:ac:dd:
1e:03:6f:49:12:29:98:ae:8e:ae:06:77:90:86:01:
c0:e0:1a:fd:68:28:60:da:7b:c3:fa:d8:25:8b:81:
b3:5c:c9:fd:fa:51:36:98:9a:dc:22:09:66:ea:b1:
2c:ba:4e:aa:d9:e0:9e:b3:d0:1c:88:c9:b4:89:d8:
f9:ea:5f:28:f6:a1:7f:a9:80:7a:5c:6d:0d:60:5d:
b4:eb:22:a5:5c:e0:21:61:26:ad:32:1d:f9:1e:1e:
31:2d:4c:2c:93:0e:c8:54:a9:59:03:34:c7:00:be:
d7:8e:c3:71:e5:e8:d9:23:cf:6b:35:46:ec:3b:89:
ef:d0:aa:f9:8b:70:b7:9f:b8:1c:6c:72:35:c4:47:
75:0c:9a:4a:6b:f6:f1:e9:19:92:67:31:0b:af:47:
ca:d6:62:af:0b:87:6e:88:7f:1e:2d:d6:13:a4:b0:
28:e9:87:f2:67:37:bb:79:c6:06:26:29:d2:8a:c3:
ec:de:7f:86:ef:7f:b3:20:9b:80:20:df:11:d3:c0:
87:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:16:7F:62:5A:44:7C:83:C0:72:79:75:D2:A8:D7:BF:FA:F7:51:08
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZBZ_YlpEfIPAcnl10qjXv_r3UQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.86.0/24
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/24
45.157.38.0/24
45.158.197.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
24:4b:74:1e:b6:cf:82:80:97:cb:1e:6e:62:f4:aa:b3:3e:04:
0c:b7:3f:e1:2a:56:9e:d1:83:48:00:47:09:91:d4:3a:f1:e3:
7e:ae:5d:0c:91:79:cb:3f:8c:74:29:40:7c:3e:1d:7d:39:3a:
6f:6f:5f:99:a0:cc:f4:70:a6:a1:a5:f2:66:e8:c8:d6:a6:27:
a7:12:c3:66:d2:f5:3a:26:96:42:7a:a3:a0:8d:5e:8e:6e:ea:
96:6e:70:af:03:77:1b:24:95:02:4d:f7:3f:77:26:cc:0b:f5:
90:e7:55:37:1a:24:3f:c3:6c:4c:03:87:73:2b:61:b4:59:f4:
31:51:22:38:f8:e7:67:69:7e:4a:cf:7d:a5:63:ee:4d:16:92:
b6:0f:56:2f:bd:a9:4d:bc:65:5c:53:17:da:50:c2:a1:ce:c8:
25:6f:30:5f:b9:6b:08:56:83:5d:e8:48:e1:ef:13:56:4d:80:
42:7e:8a:0a:e2:60:a1:71:af:d3:0f:49:04:b6:9a:f3:c9:df:
52:bf:66:b3:4b:ac:25:e2:36:90:d2:b4:4a:48:fb:cf:be:a7:
d9:56:4b:38:f8:16:79:ee:72:75:83:17:cb:05:7d:9d:57:ad:
94:af:b0:22:de:78:ae:91:24:2a:67:db:83:1e:ec:3e:3a:28:
68:c1:49:38
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 21 22:22:06 2025 by rpki-client