Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/FGZM2WJX4V2vVr4pJuBHwjQBipo.roa
File: FGZM2WJX4V2vVr4pJuBHwjQBipo.roa (raw, json)
Hash identifier: AiS+9DEcpvPd9xAcaNAGZxlNduV6pJocmqR8rMOu0wY=
Subject key identifier: 14:66:4C:D9:62:57:E1:5D:AF:56:BE:29:26:E0:47:C2:34:01:8A:9A
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 01891C1514D334EC6E266957E8E8B657CED8
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/FGZM2WJX4V2vVr4pJuBHwjQBipo.roa
Signing time: Mon 03 Jul 2023 14:08:10 +0000
ROA not before: Mon 03 Jul 2023 14:08:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59711
IP address blocks: 185.80.54.0/23 maxlen: 23
185.174.133.0/24 maxlen: 24
185.80.52.0/23 maxlen: 23
185.174.135.0/24 maxlen: 24
91.193.18.0/24 maxlen: 24
185.117.88.0/23 maxlen: 23
185.117.90.0/23 maxlen: 23
77.83.197.0/24 maxlen: 24
77.83.196.0/24 maxlen: 24
77.83.198.0/24 maxlen: 24
185.235.137.0/24 maxlen: 24
185.235.138.0/24 maxlen: 24
79.141.174.0/23 maxlen: 23
185.104.194.0/24 maxlen: 24
185.104.193.0/24 maxlen: 24
193.42.36.0/24 maxlen: 24
193.42.39.0/24 maxlen: 24
5.149.248.0/23 maxlen: 23
5.149.254.0/23 maxlen: 23
79.141.164.0/23 maxlen: 23
79.141.172.0/24 maxlen: 24
185.81.114.0/23 maxlen: 23
185.81.114.0/24 maxlen: 24
185.81.115.0/24 maxlen: 24
2a01:8640:12::/48 maxlen: 48
2a01:8640:6::/48 maxlen: 48
2a01:8640:f::/48 maxlen: 48
2a01:8640:a::/48 maxlen: 48
2a01:8640::/48 maxlen: 48
2a01:8640:2::/48 maxlen: 48
2a01:8640:11::/48 maxlen: 48
2a01:8640:13::/48 maxlen: 48
2a01:8640:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:15:14:d3:34:ec:6e:26:69:57:e8:e8:b6:57:ce:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jul 3 14:08:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14664cd96257e15daf56be2926e047c234018a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:f7:1b:51:a2:81:76:95:a4:1b:59:db:f7:
88:20:8c:fe:28:a4:09:43:1f:55:ff:64:bf:18:9e:
88:15:b6:43:7f:31:bf:21:8f:19:31:5d:f1:73:70:
95:f2:5f:b8:db:bb:e0:43:4d:d1:10:4a:bd:df:66:
c8:d9:4f:87:e5:95:e2:3f:48:8a:85:f0:cb:d3:08:
96:74:7a:58:0d:4d:09:db:56:2a:3d:54:bb:bc:71:
fd:88:56:72:45:53:80:81:91:a5:86:f1:65:67:57:
2b:d0:23:05:9b:55:62:ae:dd:3c:b1:00:9a:a1:af:
36:68:04:f1:12:7a:1d:d5:59:08:21:1c:5b:b4:22:
a7:ae:8b:28:2e:86:0f:e3:84:da:e1:64:1b:c2:42:
35:65:09:d8:fd:eb:19:19:0b:ba:88:35:27:98:70:
ec:d7:94:98:8d:42:2b:0b:9f:61:91:e8:fc:74:4c:
2d:d4:a0:db:26:bb:86:a4:96:41:c0:7e:52:c9:c4:
f2:48:75:44:d1:5e:7b:a6:15:98:f5:98:cf:12:2d:
08:4c:9e:67:58:98:50:a6:46:0b:4b:e1:25:04:16:
84:4c:b0:b2:c7:55:01:bc:e1:a3:98:16:e8:e3:c9:
bb:29:a3:1f:3a:47:17:26:5e:05:4a:af:2e:35:05:
24:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:4C:D9:62:57:E1:5D:AF:56:BE:29:26:E0:47:C2:34:01:8A:9A
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/FGZM2WJX4V2vVr4pJuBHwjQBipo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.248.0/23
5.149.254.0/23
77.83.196.0-77.83.198.255
79.141.164.0/23
79.141.172.0/24
79.141.174.0/23
91.193.18.0/24
185.80.52.0/22
185.81.114.0/23
185.104.193.0-185.104.194.255
185.117.88.0/22
185.174.133.0/24
185.174.135.0/24
185.235.137.0-185.235.138.255
193.42.36.0/24
193.42.39.0/24
IPv6:
2a01:8640::/48
2a01:8640:2::/48
2a01:8640:6::/48
2a01:8640:9::-2a01:8640:a:ffff:ffff:ffff:ffff:ffff
2a01:8640:f::/48
2a01:8640:11::-2a01:8640:13:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1c:63:f4:5a:aa:eb:40:b1:bf:00:49:c0:48:b0:21:e6:24:8e:
92:bc:df:da:de:bb:45:fd:f1:da:e5:eb:7b:9b:58:02:9a:c1:
f3:d4:46:8b:aa:56:71:96:85:5f:c0:49:93:b0:43:43:ba:31:
f4:05:66:ff:4d:05:2d:ec:35:bf:4b:66:e5:d3:4e:ed:fd:13:
2e:e5:88:90:fc:e1:f7:56:d7:9b:f0:d5:21:db:75:04:dd:13:
6c:1c:da:c9:df:8a:f6:cb:5e:e7:27:d7:8b:cc:4b:9d:7c:01:
c0:a2:e4:fa:a4:35:1d:4e:2b:8b:6c:bd:8e:ef:e4:71:f6:99:
2f:04:5a:e6:dd:2b:4b:d0:49:45:ea:94:39:b2:86:40:c7:f8:
b3:de:ff:69:56:72:a7:cd:08:2c:ee:74:61:55:98:69:ec:2e:
55:0d:aa:68:0c:79:21:a1:24:ad:48:10:f7:8b:ee:df:2d:29:
c0:c4:4a:86:55:06:29:4a:7b:ed:56:36:63:f9:73:c0:ff:f8:
d8:49:0e:de:c8:aa:e7:a1:50:f6:73:6e:e7:28:20:3f:0f:e4:
f4:c0:a1:c9:ca:9a:01:35:5a:6d:7e:4e:4b:62:38:35:8d:9e:
47:bf:d4:e9:39:85:bd:e4:08:46:56:27:d8:07:06:fd:02:8e:
46:8f:f5:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:32 2025 by rpki-client