Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/pZvwuybT7v_Ap-9dIYxDnJXkIE0.roa
File: pZvwuybT7v_Ap-9dIYxDnJXkIE0.roa (raw, json)
Hash identifier: 4Sd5rXXQj6M50MEPZm/jvTydjliSEc54Q6Aruzlx7Vk=
Subject key identifier: A5:9B:F0:BB:26:D3:EE:FF:C0:A7:EF:5D:21:8C:43:9C:95:E4:20:4D
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 018253235ECFC2E4F0BFAB702928EC830686
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/pZvwuybT7v_Ap-9dIYxDnJXkIE0.roa
Signing time: Sun 31 Jul 2022 07:23:23 +0000
ROA not before: Sun 31 Jul 2022 07:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202468
IP address blocks: 37.152.176.0/20 maxlen: 24
37.152.184.0/24 maxlen: 24
185.206.92.0/22 maxlen: 22
185.231.180.0/22 maxlen: 22
185.228.238.0/24 maxlen: 24
185.228.239.0/24 maxlen: 24
185.228.236.0/24 maxlen: 24
185.228.236.0/22 maxlen: 22
185.228.237.0/24 maxlen: 24
185.97.116.0/22 maxlen: 22
188.121.120.0/21 maxlen: 24
185.239.104.0/24 maxlen: 24
185.239.105.0/24 maxlen: 24
185.220.224.0/24 maxlen: 24
185.220.224.0/22 maxlen: 22
185.220.225.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
185.239.106.0/23 maxlen: 23
185.220.227.0/24 maxlen: 24
37.32.24.0/22 maxlen: 22
193.176.240.0/22 maxlen: 24
37.32.28.0/22 maxlen: 24
193.176.242.0/23 maxlen: 23
188.121.96.0/19 maxlen: 24
94.101.176.0/20 maxlen: 24
94.101.184.0/21 maxlen: 24
94.101.180.0/23 maxlen: 23
94.101.180.0/24 maxlen: 24
94.101.182.0/24 maxlen: 24
185.143.232.0/22 maxlen: 24
185.226.116.0/22 maxlen: 22
2a0c:a7c0:1::/48 maxlen: 48
2a0c:a7c0:3::/48 maxlen: 48
2a0c:a7c0::/48 maxlen: 48
2a07:3900::/29 maxlen: 29
2a0c:a7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:53:23:5e:cf:c2:e4:f0:bf:ab:70:29:28:ec:83:06:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Jul 31 07:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a59bf0bb26d3eeffc0a7ef5d218c439c95e4204d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:46:60:c0:28:c3:be:d6:59:f4:6a:d9:5e:db:
0c:40:05:cf:99:00:a0:06:5e:b7:d8:cb:6b:de:50:
82:70:24:0b:11:34:c1:02:67:2d:e3:15:c8:59:46:
a5:e4:e3:f8:9b:c5:00:0b:8f:66:04:a6:f5:13:2d:
1b:7a:8a:e2:c9:0a:e8:51:a9:d7:76:b7:ab:81:41:
77:a8:3b:ba:c1:ca:f0:ae:cf:31:c5:9e:68:bb:06:
a7:d0:93:d5:64:29:0b:87:8c:64:8c:a2:1f:a3:6e:
49:ad:e4:5c:53:5d:35:c4:c7:12:09:9b:c0:49:b4:
78:b2:bc:15:14:bf:9d:ff:d6:89:f4:0e:74:0f:8b:
f8:9c:8f:a8:76:16:c5:87:a9:0e:4c:ad:81:fe:82:
72:65:b8:4e:61:a3:a8:83:41:13:c0:38:42:06:5d:
c3:ac:1a:e3:98:b7:5c:28:11:57:f9:89:9e:91:cf:
d9:68:3d:68:47:dc:c8:62:04:c2:64:9b:3f:33:ad:
98:55:4a:fb:6c:f8:cc:e4:0f:c8:e9:09:18:72:41:
09:1d:0e:71:f1:d1:a2:fc:61:e6:c8:ee:41:ae:b0:
80:f9:5d:db:13:b0:7f:01:8b:64:85:0f:01:9c:c8:
2e:0b:db:f7:5d:ea:cb:73:22:54:e5:16:2b:9b:1f:
ef:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9B:F0:BB:26:D3:EE:FF:C0:A7:EF:5D:21:8C:43:9C:95:E4:20:4D
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/pZvwuybT7v_Ap-9dIYxDnJXkIE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.24.0/21
37.152.176.0/20
94.101.176.0/20
185.97.116.0/22
185.143.232.0/22
185.206.92.0/22
185.220.224.0/22
185.226.116.0/22
185.228.236.0/22
185.231.180.0/22
185.239.104.0/22
188.121.96.0/19
193.176.240.0/22
IPv6:
2a07:3900::/29
2a0c:a7c0::/46
Signature Algorithm: sha256WithRSAEncryption
26:e0:97:9d:90:f6:57:df:1a:8e:78:e8:55:cd:a9:cc:69:92:
73:c2:9a:68:eb:fe:77:4c:de:fc:6c:c5:0c:de:d1:8d:8e:4a:
dc:17:e0:53:33:e8:1b:84:c5:89:75:e1:11:b6:01:44:d6:4e:
8d:d4:84:e2:a0:8d:56:05:fc:04:06:72:13:04:8a:e7:b5:59:
37:bc:81:26:8b:20:66:38:e1:0f:03:28:d7:b7:a5:86:11:47:
92:cd:58:58:10:5d:81:e4:db:c7:c9:08:0b:fc:71:1d:02:b1:
73:fe:a7:07:a6:91:83:e5:47:62:be:ea:91:b7:c8:c1:6b:fd:
e3:34:03:37:6e:62:88:c6:fa:9f:e6:27:4c:7e:2a:37:ad:7a:
5e:d1:7e:f0:5b:1c:e1:bf:80:0f:22:e6:06:aa:05:55:a7:a4:
72:cc:13:1c:dd:5f:e1:f1:68:88:dc:57:22:9f:34:c0:c0:79:
3e:ed:92:e4:69:d8:11:dc:31:74:d1:b8:2c:76:5d:28:8b:3b:
38:85:a8:c9:51:9f:ea:30:36:c1:5d:9b:31:18:dd:24:38:78:
e6:21:a1:82:17:1b:47:29:b7:f2:24:38:e7:be:f2:ad:83:73:
2a:2d:35:a7:01:6f:23:b4:8c:38:6a:76:69:ef:b5:64:ee:53:
24:c0:c2:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:32 2023 by rpki-client on console-fra.rpki-client.org