Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/ZnWaIPvzlG_6L7p4d7PYZ1Wy7Yc.roa
File: ZnWaIPvzlG_6L7p4d7PYZ1Wy7Yc.roa (raw, json)
Hash identifier: cwQfxcHWSkznkI+/bNitvlcmUl4izUkJMyazpmieFK4=
Subject key identifier: 66:75:9A:20:FB:F3:94:6F:FA:2F:BA:78:77:B3:D8:67:55:B2:ED:87
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 0182BC67A2172DE0259AB6567CBA7BED7386
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/ZnWaIPvzlG_6L7p4d7PYZ1Wy7Yc.roa
Signing time: Sat 20 Aug 2022 17:58:04 +0000
ROA not before: Sat 20 Aug 2022 17:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208046
IP address blocks: 193.142.147.0/24 maxlen: 24
193.142.146.0/24 maxlen: 24
193.142.59.0/24 maxlen: 24
2a0f:ca80:1338::/48 maxlen: 48
2a0f:ca80:618::/48 maxlen: 48
2a0f:ca86::/40 maxlen: 40
2a0f:ca80:1::/48 maxlen: 48
2a0f:ca80:1337::/48 maxlen: 48
2a0f:ca80:617::/48 maxlen: 48
2a0f:ca83:1337::/48 maxlen: 48
2a0f:ca84::/40 maxlen: 40
2a0f:ca80::/48 maxlen: 48
2a0f:ca80:619::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:bc:67:a2:17:2d:e0:25:9a:b6:56:7c:ba:7b:ed:73:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Aug 20 17:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66759a20fbf3946ffa2fba7877b3d86755b2ed87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:17:56:bd:6c:db:91:bd:6d:ac:eb:df:57:
96:65:13:91:0a:a0:87:5d:13:c1:13:27:01:5a:c6:
87:68:2d:01:10:7f:0f:0c:24:e8:06:cc:b6:51:6a:
3f:f3:89:82:b0:34:9d:91:7a:53:fd:79:35:83:e0:
87:db:22:f2:9e:e8:92:f9:78:8f:8f:2f:f6:aa:59:
3c:de:52:68:77:5b:a1:0d:9f:7f:3d:9a:b6:29:5e:
d5:61:48:4c:aa:e4:58:69:d2:aa:ef:0d:13:36:19:
2f:97:86:a4:66:b3:f4:18:47:c4:34:ed:df:43:df:
be:12:db:f8:92:4b:e9:74:f1:b6:94:e1:cd:65:40:
9e:78:b7:66:9c:71:04:e9:58:5a:5f:30:d0:72:c2:
43:0a:bd:14:f1:9b:5d:78:49:20:82:b0:43:48:93:
33:7a:4c:85:5b:31:9f:4c:76:f7:67:ad:57:e4:53:
8c:b6:51:d8:b9:dc:04:b0:51:4f:cf:67:99:61:a4:
b0:fb:da:4c:27:6a:12:84:8a:c1:10:d1:64:ac:d0:
82:db:b2:75:64:c9:ab:44:f1:c2:36:93:6b:e2:78:
ec:8f:7e:23:55:df:b6:c8:51:39:13:41:9f:e3:f0:
f6:89:ad:21:f2:cb:dc:f5:5e:10:16:3c:3c:c5:c5:
10:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:75:9A:20:FB:F3:94:6F:FA:2F:BA:78:77:B3:D8:67:55:B2:ED:87
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/ZnWaIPvzlG_6L7p4d7PYZ1Wy7Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.59.0/24
193.142.146.0/23
IPv6:
2a0f:ca80::/47
2a0f:ca80:617::-2a0f:ca80:619:ffff:ffff:ffff:ffff:ffff
2a0f:ca80:1337::-2a0f:ca80:1338:ffff:ffff:ffff:ffff:ffff
2a0f:ca83:1337::/48
2a0f:ca84::/40
2a0f:ca86::/40
Signature Algorithm: sha256WithRSAEncryption
18:0e:e3:96:9a:31:ed:89:8c:d9:8d:33:26:f6:9d:97:39:b4:
48:9a:6d:f9:19:4e:8b:de:1c:dd:a8:81:dd:5b:8f:56:2c:09:
d1:72:d8:5f:f4:49:ea:95:53:15:07:6b:3a:8a:3c:43:86:e2:
1b:d2:d5:54:b6:f5:f6:c6:c4:a1:f5:4f:6d:23:33:54:6d:68:
01:d7:cb:41:80:6d:00:2d:fc:65:c7:ff:36:1f:fc:ac:bd:6d:
15:32:02:dc:cd:ce:ce:cd:d5:9d:7e:01:30:95:1c:2d:42:a7:
39:c4:7b:44:70:ca:2c:02:ec:cf:bb:aa:7c:02:c6:11:a5:06:
92:d8:05:63:28:84:29:e9:e4:5c:b2:c4:0b:c3:e9:89:63:6b:
7e:97:ea:8c:a8:12:3b:e5:47:83:49:d8:6b:cc:e2:3c:04:2d:
41:aa:1c:4d:6d:80:18:33:12:fa:1e:f7:55:f3:4d:0c:95:df:
ee:ca:d3:92:05:f3:c8:c1:51:50:3d:87:7d:da:ec:d9:43:fc:
4a:4d:09:75:f8:11:a6:c6:37:ad:86:6a:c7:7b:d9:1c:ef:c3:
30:fb:66:ff:84:84:4d:8d:b4:93:55:78:a7:be:5d:3b:fa:2c:
94:84:05:44:7b:f9:36:85:63:96:20:09:ea:bf:ee:47:be:c6:
6a:9c:10:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:22 2023 by rpki-client on console-fra.rpki-client.org