Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8c3f6f-5ae9-492e-9d3a-750d62e9e53a/1/w-uHF8mWtpxFs2V1iinYK4avT74.roa
File: w-uHF8mWtpxFs2V1iinYK4avT74.roa (raw, json)
Hash identifier: CimwZu/TZ+EYq6RkI3jkIYxYmEk82Dy3eEnqNNslmVU=
Subject key identifier: C3:EB:87:17:C9:96:B6:9C:45:B3:65:75:8A:29:D8:2B:86:AF:4F:BE
Certificate issuer: /CN=3a6c606f20cecfe312cc6c814dec9904b6db7c3c
Certificate serial: 09E85DB7
Authority key identifier: 3A:6C:60:6F:20:CE:CF:E3:12:CC:6C:81:4D:EC:99:04:B6:DB:7C:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmxgbyDOz-MSzGyBTeyZBLbbfDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8c3f6f-5ae9-492e-9d3a-750d62e9e53a/1/w-uHF8mWtpxFs2V1iinYK4avT74.roa
Signing time: Mon 06 Jun 2022 17:08:21 +0000
ROA not before: Mon 06 Jun 2022 17:08:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62129
IP address blocks: 185.55.204.0/22 maxlen: 22
5.134.88.0/21 maxlen: 21
45.11.100.0/22 maxlen: 22
2a04:d5c0::/29 maxlen: 29
2a0e:8d00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166223287 (0x9e85db7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a6c606f20cecfe312cc6c814dec9904b6db7c3c
Validity
Not Before: Jun 6 17:08:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3eb8717c996b69c45b365758a29d82b86af4fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:51:87:8e:3b:1c:6c:cc:8b:5a:8b:fb:4c:97:
b3:2a:6c:f9:99:37:32:91:0a:a9:c1:82:77:ff:97:
2d:b6:1a:e3:ba:ac:22:3b:05:b7:6c:be:31:fd:46:
75:f9:50:21:b3:c7:f5:36:b6:bc:54:fb:02:5a:e1:
eb:d8:df:71:0b:98:05:50:38:ce:d9:de:83:50:dc:
a0:5b:26:69:b9:da:ed:ba:40:cb:58:b1:8c:21:90:
4a:61:85:e4:26:8a:70:66:2e:d0:57:7d:41:b4:fe:
84:55:9b:ab:66:a4:07:f9:10:27:7c:48:e7:f5:fc:
2c:52:e7:55:36:71:e6:14:e3:cc:49:5b:aa:a6:72:
ff:e5:06:1a:66:23:55:c6:d1:d5:a0:3b:04:91:92:
c4:a6:e7:58:01:1e:b4:76:69:de:34:77:54:2e:d2:
58:41:54:dd:96:cb:97:a1:a9:ad:2d:40:59:24:cc:
d8:1e:09:59:fa:12:e9:3b:b8:d8:f6:6e:6e:5c:dd:
42:42:41:78:eb:1e:e6:21:b8:e4:b9:b4:e7:2a:7c:
a3:36:7c:7c:fd:d2:67:4f:59:b8:fb:e4:6c:17:06:
89:07:03:29:3f:dd:6b:98:a3:0d:8b:69:18:ec:73:
48:ba:b6:75:23:b0:ba:c7:f3:ea:d9:11:52:b6:76:
45:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EB:87:17:C9:96:B6:9C:45:B3:65:75:8A:29:D8:2B:86:AF:4F:BE
X509v3 Authority Key Identifier:
keyid:3A:6C:60:6F:20:CE:CF:E3:12:CC:6C:81:4D:EC:99:04:B6:DB:7C:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmxgbyDOz-MSzGyBTeyZBLbbfDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8c3f6f-5ae9-492e-9d3a-750d62e9e53a/1/w-uHF8mWtpxFs2V1iinYK4avT74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8c3f6f-5ae9-492e-9d3a-750d62e9e53a/1/OmxgbyDOz-MSzGyBTeyZBLbbfDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.88.0/21
45.11.100.0/22
185.55.204.0/22
IPv6:
2a04:d5c0::/29
2a0e:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
77:0f:10:21:0f:80:4a:8e:9e:cb:16:a1:28:d2:e3:92:e9:85:
57:b1:3c:0b:9a:b8:12:d6:c8:fe:7c:d8:ff:2c:90:2b:e2:a5:
8f:29:61:54:62:10:ac:4f:de:14:bf:26:83:73:67:78:ff:95:
7c:49:ea:ba:95:74:a3:89:c7:1e:fb:ad:61:47:69:16:e5:65:
bf:26:31:e1:73:72:0a:62:49:cc:7f:39:48:f4:66:a6:67:81:
e5:d5:96:55:e7:7d:07:66:28:55:c9:c7:ec:1e:66:13:c6:2f:
a9:7f:01:ed:23:35:31:07:ba:b0:56:f4:b4:46:51:68:f5:ae:
ac:19:70:50:ac:a7:3b:16:1c:9b:bd:eb:81:9f:75:11:c1:ac:
3d:0f:a7:bc:6c:d2:71:d0:08:1d:3e:e7:be:e8:e3:17:4d:f9:
a1:8f:25:42:e5:d9:3b:ac:37:f6:62:60:0b:36:bc:93:33:89:
10:75:77:a0:06:0a:03:23:a8:a0:f6:32:38:48:41:31:1d:d7:
50:91:bb:6b:d2:bb:2a:4b:3c:fa:2a:67:20:fd:49:1d:c9:9a:
62:6c:d6:b5:a8:4d:65:75:ac:87:2f:f5:cb:66:21:a2:78:95:
14:74:fe:ca:79:14:1f:dd:3b:9d:c4:a5:7e:b0:8e:b2:27:b3:
50:80:93:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org