Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6e0ed3-eb01-44f7-8d54-39d9e0962440/1/m38WscMjQdDcWpEMEIDpp3SWwXg.roa
File: m38WscMjQdDcWpEMEIDpp3SWwXg.roa (raw, json)
Hash identifier: xAG3NSeZ9IgFFGHhtsReCqmBa34jtHs0JmQCnF8dJjc=
Subject key identifier: 9B:7F:16:B1:C3:23:41:D0:DC:5A:91:0C:10:80:E9:A7:74:96:C1:78
Certificate issuer: /CN=b9c89cfadd51f4d921bb3d0c55f9313663a71cc4
Certificate serial: 08D3E72F
Authority key identifier: B9:C8:9C:FA:DD:51:F4:D9:21:BB:3D:0C:55:F9:31:36:63:A7:1C:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ucic-t1R9Nkhuz0MVfkxNmOnHMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6e0ed3-eb01-44f7-8d54-39d9e0962440/1/m38WscMjQdDcWpEMEIDpp3SWwXg.roa
Signing time: Sat 01 Jan 2022 16:02:53 +0000
ROA not before: Sat 01 Jan 2022 16:02:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203687
IP address blocks: 185.167.140.0/22 maxlen: 22
185.167.140.0/23 maxlen: 23
185.167.142.0/23 maxlen: 23
2a0b:6e00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148105007 (0x8d3e72f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9c89cfadd51f4d921bb3d0c55f9313663a71cc4
Validity
Not Before: Jan 1 16:02:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b7f16b1c32341d0dc5a910c1080e9a77496c178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ae:31:9a:c0:3f:1c:cb:d0:5c:ff:39:19:d3:
04:45:99:8b:75:35:c5:40:43:91:54:c8:84:90:7c:
b7:f2:38:5d:c0:4c:0f:8d:44:3c:e6:7b:1c:57:9f:
d9:7e:da:13:df:6d:84:65:fc:7f:a0:e4:a6:32:a1:
49:d9:c2:f1:5a:cf:09:91:25:3f:87:18:ae:96:28:
ad:e5:a0:28:d1:e6:e8:c1:23:d2:74:3e:8b:a5:f4:
da:1c:fb:eb:5b:d6:b3:90:30:61:71:fa:ed:84:9e:
0e:95:09:b4:44:bf:26:1e:de:75:54:e0:72:46:09:
f9:68:5a:d7:d7:ca:3b:71:24:fe:9b:d8:1f:e1:9b:
e8:51:8b:b2:db:09:6d:97:e4:ab:d3:53:05:c5:b1:
ad:fa:e3:76:bf:37:46:16:39:c5:85:ce:a4:ea:af:
7c:1a:cb:12:a8:14:91:10:26:3c:c0:9c:59:a8:f6:
4a:86:42:12:7e:5c:4f:f9:58:37:fd:23:92:b1:95:
e3:6a:8b:2d:bb:9d:d1:70:df:15:92:77:79:5e:b5:
13:3e:60:2a:b8:d9:12:2c:07:43:fc:34:a1:33:40:
f5:51:cc:ee:ed:60:94:99:bc:49:51:f2:4c:41:2c:
84:e6:cb:d0:f5:80:1a:aa:de:33:e1:da:0c:69:33:
f3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7F:16:B1:C3:23:41:D0:DC:5A:91:0C:10:80:E9:A7:74:96:C1:78
X509v3 Authority Key Identifier:
keyid:B9:C8:9C:FA:DD:51:F4:D9:21:BB:3D:0C:55:F9:31:36:63:A7:1C:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ucic-t1R9Nkhuz0MVfkxNmOnHMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6e0ed3-eb01-44f7-8d54-39d9e0962440/1/m38WscMjQdDcWpEMEIDpp3SWwXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6e0ed3-eb01-44f7-8d54-39d9e0962440/1/ucic-t1R9Nkhuz0MVfkxNmOnHMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.140.0/22
IPv6:
2a0b:6e00::/32
Signature Algorithm: sha256WithRSAEncryption
37:82:a3:46:1a:bb:e9:a0:13:b9:a6:c2:ee:98:08:4d:9e:f0:
57:cd:ac:00:73:80:75:04:ef:5c:bd:c1:89:ee:e1:56:89:e2:
9b:c9:71:7d:7f:5b:09:dd:9f:87:62:c0:57:17:82:19:84:77:
fe:09:4c:aa:b2:84:8b:00:3f:95:27:80:06:d5:67:a3:74:96:
98:9e:69:ea:a2:03:87:7c:f9:dc:78:5c:f7:9b:b6:32:96:2e:
7d:e9:66:d1:4a:44:b5:4b:b9:60:97:99:d4:df:be:63:d5:a8:
f2:ef:6d:05:36:91:43:81:24:80:7b:05:9f:a3:bc:12:48:ef:
4d:50:54:82:df:58:55:93:86:04:cc:e0:6b:ac:c4:8a:30:64:
ba:1a:fb:4a:f7:60:75:3e:f8:39:47:64:bb:03:d2:88:7c:ab:
9a:3f:ec:49:49:c5:72:a3:88:2d:3c:ea:6f:90:32:65:5f:9a:
39:5c:34:de:1e:f5:20:3d:dd:b5:93:a8:8d:4c:b3:ac:2a:d6:
60:10:60:56:3f:64:15:d7:12:02:11:a9:5e:94:fd:58:7d:f6:
bd:7f:47:53:4a:2e:cb:e6:ce:0e:85:c5:83:f3:fd:48:96:1d:
61:e0:be:b1:1a:9d:d1:d8:4b:95:66:da:18:e4:1d:1f:57:83:
8c:dc:c9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:17 2024 by rpki-client on console-fra.rpki-client.org