Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/12ba2a-0cca-437a-985d-fefe857fea80/1/zbwQQJYw4Hky0svQF5c3OPSIUa4.roa
File: zbwQQJYw4Hky0svQF5c3OPSIUa4.roa (raw, json)
Hash identifier: uKzLR4jH17Hd6H5IdTQDblvWiCX/Ovak9H7VnuHrBaQ=
Subject key identifier: CD:BC:10:40:96:30:E0:79:32:D2:CB:D0:17:97:37:38:F4:88:51:AE
Certificate issuer: /CN=ac6e3e13111439147f65d337d5f0b1bc2ed79434
Certificate serial: 0C087FCB
Authority key identifier: AC:6E:3E:13:11:14:39:14:7F:65:D3:37:D5:F0:B1:BC:2E:D7:94:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rG4-ExEUORR_ZdM31fCxvC7XlDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/12ba2a-0cca-437a-985d-fefe857fea80/1/zbwQQJYw4Hky0svQF5c3OPSIUa4.roa
Signing time: Sat 01 Jan 2022 08:53:51 +0000
ROA not before: Sat 01 Jan 2022 08:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 185.93.1.0/24 maxlen: 24
185.93.2.0/24 maxlen: 24
185.93.3.0/24 maxlen: 24
185.93.0.0/24 maxlen: 24
89.187.165.0/24 maxlen: 24
89.187.160.0/23 maxlen: 23
89.187.162.0/23 maxlen: 23
89.187.164.0/24 maxlen: 24
89.187.172.0/23 maxlen: 23
89.187.166.0/23 maxlen: 23
89.187.168.0/24 maxlen: 24
89.187.169.0/24 maxlen: 24
89.187.170.0/23 maxlen: 23
89.187.174.0/24 maxlen: 24
89.187.175.0/24 maxlen: 24
89.187.176.0/22 maxlen: 22
89.187.180.0/22 maxlen: 22
89.187.184.0/22 maxlen: 22
89.187.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201883595 (0xc087fcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac6e3e13111439147f65d337d5f0b1bc2ed79434
Validity
Not Before: Jan 1 08:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdbc10409630e07932d2cbd017973738f48851ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ad:42:35:ca:fa:0a:a4:38:e8:d4:6b:ba:e8:
22:24:8c:b4:39:05:50:a9:8b:cd:31:3f:35:df:aa:
52:fd:b8:7b:a9:45:6e:78:fa:af:60:28:3c:85:76:
12:39:35:37:49:f2:21:f1:74:3a:f5:4d:42:23:13:
29:92:3b:66:70:1a:46:c3:c7:c3:87:3f:f6:23:e4:
30:36:be:cc:bc:ee:3e:27:38:4e:3a:95:26:08:dc:
76:d5:d3:95:2c:eb:f0:f8:70:fe:9e:02:b6:4e:f4:
5b:37:00:24:d0:5c:d4:87:bd:ce:99:68:a1:d1:a0:
6e:a2:02:20:74:8b:8e:32:15:bc:a1:2c:99:1e:09:
e0:9c:fd:ee:6a:26:1e:a3:78:9d:37:8d:bd:fe:bd:
a9:df:b8:0a:4c:9c:0e:ac:b4:07:04:78:d6:41:7a:
e3:8c:f1:e2:cb:e2:24:e6:e0:b3:b5:c4:22:a3:7c:
59:23:4d:50:1b:af:63:23:35:0c:86:f8:a5:b0:10:
e6:d4:f2:0b:03:93:da:a6:98:cc:b1:43:08:e4:e1:
27:bc:12:25:7a:3e:e5:00:23:e5:5c:ba:4d:d8:57:
75:7c:e6:27:91:9a:2f:97:b6:03:46:3d:39:2d:7f:
c5:1e:b7:ab:de:ad:8b:fd:bf:64:a9:f0:96:28:68:
f2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BC:10:40:96:30:E0:79:32:D2:CB:D0:17:97:37:38:F4:88:51:AE
X509v3 Authority Key Identifier:
keyid:AC:6E:3E:13:11:14:39:14:7F:65:D3:37:D5:F0:B1:BC:2E:D7:94:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rG4-ExEUORR_ZdM31fCxvC7XlDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12ba2a-0cca-437a-985d-fefe857fea80/1/zbwQQJYw4Hky0svQF5c3OPSIUa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/12ba2a-0cca-437a-985d-fefe857fea80/1/rG4-ExEUORR_ZdM31fCxvC7XlDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.160.0/19
185.93.0.0/22
Signature Algorithm: sha256WithRSAEncryption
36:ae:f4:59:3f:67:cc:10:44:45:d8:09:e2:85:c7:65:de:92:
b0:f5:a7:88:f8:2f:cb:0e:66:23:0b:1f:7b:6b:f7:f5:1a:33:
fa:95:e4:a0:79:18:d8:20:8a:7a:c9:ff:54:ec:b8:42:9a:e3:
77:bf:fc:bb:2e:96:64:4b:13:81:f9:57:c0:07:a2:59:6e:e5:
c1:77:e6:f6:47:51:db:3d:71:46:46:53:7a:ff:ba:88:54:e5:
d9:db:b8:e4:fc:78:43:f4:63:a6:4f:6f:85:4a:b5:1b:1a:0a:
9d:95:6f:24:78:0a:3d:60:78:8c:71:f9:93:cb:56:20:38:22:
a5:da:fa:42:ce:7a:33:99:70:a8:17:d3:48:95:96:b0:28:fa:
a4:ae:fd:45:51:f5:66:02:5f:f0:1a:d0:19:b4:d5:6f:d2:aa:
d4:33:e8:52:6d:5a:7e:d9:e3:53:01:5e:52:75:b1:cd:00:e5:
c4:fc:5e:3b:52:32:19:2d:50:d8:40:31:c6:93:a0:cb:18:33:
cc:e9:a8:a5:4e:a2:9e:37:a3:75:ff:de:02:ca:57:15:22:13:
c5:03:45:bb:3d:2f:bb:77:f5:f0:ff:e7:4f:d1:b1:db:67:4a:
ed:69:7c:76:64:a0:9c:1a:30:33:f0:d3:79:c5:45:8a:a9:e1:
15:98:77:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:24:31 2025 by rpki-client