Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/UFAICt6etRE2qa53BLFwm-L9Lik.roa
File: UFAICt6etRE2qa53BLFwm-L9Lik.roa (raw, json)
Hash identifier: ghRe0IKp3tNjzhUjOOlR1oSffjrIm94+Kn3O29A5Llw=
Subject key identifier: 50:50:08:0A:DE:9E:B5:11:36:A9:AE:77:04:B1:70:9B:E2:FD:2E:29
Certificate issuer: /CN=43015654082578c4946cd27be1e89a3dd7562fa4
Certificate serial: 09B45BFD
Authority key identifier: 43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/UFAICt6etRE2qa53BLFwm-L9Lik.roa
Signing time: Tue 08 Feb 2022 09:13:44 +0000
ROA not before: Tue 08 Feb 2022 09:13:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 217.23.0.0/20 maxlen: 20
185.132.132.0/22 maxlen: 22
185.184.192.0/22 maxlen: 22
185.183.32.0/22 maxlen: 22
185.182.192.0/22 maxlen: 22
62.112.8.0/22 maxlen: 22
185.165.240.0/22 maxlen: 22
185.21.60.0/22 maxlen: 22
45.14.132.0/22 maxlen: 22
178.218.196.0/22 maxlen: 22
80.79.4.0/22 maxlen: 22
185.185.48.0/22 maxlen: 22
91.232.105.0/24 maxlen: 24
185.132.176.0/22 maxlen: 22
89.38.96.0/22 maxlen: 22
45.82.64.0/22 maxlen: 22
193.200.164.0/24 maxlen: 24
93.190.136.0/21 maxlen: 22
93.190.140.0/22 maxlen: 22
91.229.23.0/24 maxlen: 24
185.173.160.0/22 maxlen: 22
185.2.80.0/22 maxlen: 22
185.177.124.0/22 maxlen: 22
178.132.0.0/21 maxlen: 21
185.180.220.0/22 maxlen: 22
89.39.104.0/22 maxlen: 22
185.191.0.0/22 maxlen: 22
2.59.168.0/22 maxlen: 22
194.88.104.0/22 maxlen: 22
212.8.240.0/24 maxlen: 24
212.8.242.0/23 maxlen: 23
109.236.80.0/20 maxlen: 20
212.8.252.0/23 maxlen: 23
212.8.248.0/23 maxlen: 23
212.8.250.0/24 maxlen: 24
185.172.88.0/22 maxlen: 22
2a00:7c82::/32 maxlen: 32
2a00:7c81::/32 maxlen: 32
2a00:7c83::/32 maxlen: 32
2a00:7c80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162814973 (0x9b45bfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43015654082578c4946cd27be1e89a3dd7562fa4
Validity
Not Before: Feb 8 09:13:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5050080ade9eb51136a9ae7704b1709be2fd2e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1c:9d:fe:be:75:03:81:12:a2:17:f8:d5:50:
94:ef:70:f7:0a:5f:1d:9e:9e:dd:1d:fd:fc:8a:0d:
02:cd:90:85:54:91:f9:cd:56:ff:a7:6b:92:ac:3a:
9d:52:be:ba:c9:c6:5e:c0:81:a9:89:55:fa:b8:46:
04:46:12:cc:d8:fe:61:13:fc:09:90:08:1e:6c:78:
e1:19:57:d7:b8:cf:58:33:af:6c:2f:e2:41:dc:70:
76:08:15:b0:7d:a6:b5:bb:f9:0f:18:4b:97:e4:5d:
31:da:a1:4e:4b:df:4f:25:ce:91:f1:2e:b9:5b:0f:
0d:10:62:e4:4b:33:77:de:ea:53:59:94:12:2a:fe:
38:2b:aa:d4:a9:9d:2c:72:8b:89:cf:cc:78:ae:a7:
d3:70:43:fd:d6:0e:2b:83:d6:fb:d7:ce:20:fd:58:
0e:b0:e5:9f:a0:d8:6f:eb:08:c7:aa:d3:00:c1:1a:
fb:42:2f:3e:ff:83:32:a6:1d:87:6b:f1:1a:31:cd:
70:71:c8:51:94:7d:f3:3f:40:9f:46:dc:ba:f1:f8:
f0:48:f3:13:3f:c1:c3:a1:01:9a:2e:2c:f6:e4:74:
a2:b5:15:57:81:97:80:bf:fa:ce:22:af:b2:47:ea:
db:09:0b:d0:dd:f1:eb:b3:d4:e8:fa:2c:0f:2a:bf:
04:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:50:08:0A:DE:9E:B5:11:36:A9:AE:77:04:B1:70:9B:E2:FD:2E:29
X509v3 Authority Key Identifier:
keyid:43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/UFAICt6etRE2qa53BLFwm-L9Lik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.168.0/22
45.14.132.0/22
45.82.64.0/22
62.112.8.0/22
80.79.4.0/22
89.38.96.0/22
89.39.104.0/22
91.229.23.0/24
91.232.105.0/24
93.190.136.0/21
109.236.80.0/20
178.132.0.0/21
178.218.196.0/22
185.2.80.0/22
185.21.60.0/22
185.132.132.0/22
185.132.176.0/22
185.165.240.0/22
185.172.88.0/22
185.173.160.0/22
185.177.124.0/22
185.180.220.0/22
185.182.192.0/22
185.183.32.0/22
185.184.192.0/22
185.185.48.0/22
185.191.0.0/22
193.200.164.0/24
194.88.104.0/22
212.8.240.0/24
212.8.242.0/23
212.8.248.0-212.8.250.255
212.8.252.0/23
217.23.0.0/20
IPv6:
2a00:7c80::/29
Signature Algorithm: sha256WithRSAEncryption
2c:8b:5d:a0:ab:ce:f3:58:6c:0f:11:b3:6e:f1:6d:bb:c9:76:
22:f8:70:d0:6b:3b:06:5b:f4:af:fb:41:38:26:10:b8:4e:8f:
b6:15:de:6f:cf:a3:fe:a1:a5:d1:37:f0:a2:3d:da:c0:37:f4:
27:41:0a:11:22:6d:89:59:fe:b0:46:8c:2a:cd:42:33:a6:28:
90:03:24:bb:91:cb:71:4c:78:d9:1c:70:7d:7e:bc:cc:22:b3:
a6:db:b3:0c:97:09:24:42:e8:f7:dd:09:f9:e7:b3:63:82:13:
f5:fb:e4:83:44:a9:4f:41:a4:84:ce:5d:32:ed:f6:cc:6d:59:
62:79:d0:a9:8f:3e:5e:7e:bd:63:cd:9b:60:69:6c:0d:4d:92:
70:91:a9:9d:15:44:ce:cf:fd:fb:80:7c:b0:57:bf:2b:b5:aa:
6a:f4:58:5e:2d:69:05:b5:8e:4c:66:83:58:10:02:c7:e0:ff:
a3:cd:70:bd:c5:1f:9c:3a:f9:0d:fd:aa:16:46:dc:a8:fc:ca:
d3:3b:9f:2e:1e:1d:16:4a:a5:04:64:3b:59:e4:34:67:86:d6:
ca:d2:06:c8:4d:a6:c9:cf:c6:1a:72:61:ad:b5:d1:fa:5d:c9:
d6:e9:80:1a:76:90:78:f5:83:b6:76:d6:30:3d:8c:d6:9d:10:
c1:b4:82:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:26 2024 by rpki-client on console-ams.rpki-client.org