Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/2uuAKmoVxvKgzInKDW1PRjI0GZw.roa
File: 2uuAKmoVxvKgzInKDW1PRjI0GZw.roa (raw, json)
Hash identifier: J5idRXp4/cuviTdkYLQq6YAsbcUfoOsl+KpOvwbrheM=
Subject key identifier: DA:EB:80:2A:6A:15:C6:F2:A0:CC:89:CA:0D:6D:4F:46:32:34:19:9C
Certificate issuer: /CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Certificate serial: 0B7737FD
Authority key identifier: 6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/2uuAKmoVxvKgzInKDW1PRjI0GZw.roa
Signing time: Thu 07 Apr 2022 09:25:52 +0000
ROA not before: Thu 07 Apr 2022 09:25:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64476
IP address blocks: 185.253.170.0/24 maxlen: 24
185.253.168.0/22 maxlen: 22
185.253.168.0/24 maxlen: 24
185.253.171.0/24 maxlen: 24
85.190.64.0/20 maxlen: 20
46.247.136.0/23 maxlen: 23
185.161.168.0/22 maxlen: 22
46.247.140.0/24 maxlen: 24
185.231.8.0/22 maxlen: 24
85.190.80.0/22 maxlen: 22
85.190.81.0/24 maxlen: 24
85.190.79.0/24 maxlen: 24
85.190.84.0/22 maxlen: 22
85.190.88.0/21 maxlen: 21
2a0a:e800::/32 maxlen: 32
2a0a:e806::/32 maxlen: 32
2a0a:e804::/32 maxlen: 32
2a0a:e805:300::/40 maxlen: 40
2a0a:e805:400::/40 maxlen: 40
2a0a:e805:100::/40 maxlen: 40
2a0a:e805:500::/40 maxlen: 40
2a0a:e805::/32 maxlen: 32
2a0a:e803::/32 maxlen: 32
2a0a:e807::/32 maxlen: 32
2a0a:e801::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192362493 (0xb7737fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Validity
Not Before: Apr 7 09:25:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daeb802a6a15c6f2a0cc89ca0d6d4f463234199c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:0a:f6:20:8a:c3:82:0b:d0:d1:ec:93:c9:
58:b1:9f:cf:74:1f:aa:61:04:a2:37:dd:11:b5:f9:
21:1d:f8:60:41:be:50:e0:d1:f6:e9:2e:88:33:9a:
ca:9f:b2:a5:36:a6:1a:91:ce:43:d4:c9:d0:14:05:
10:fa:07:a3:ce:1e:27:40:ee:a4:79:cd:76:32:79:
61:62:51:27:d1:cb:c9:5b:df:e0:c2:13:44:1e:cd:
46:08:ef:7c:85:33:9a:ea:f3:32:2f:46:0e:a8:74:
cb:75:68:a3:58:24:95:03:2f:56:5b:81:ba:5c:05:
87:69:18:35:1c:57:8f:87:74:8c:b3:d2:35:d7:56:
54:fe:e2:3e:ef:8c:21:f6:ef:d6:53:02:c2:3e:b7:
72:3f:7e:56:04:b3:f9:a2:fc:8e:66:89:b3:47:db:
2c:95:f6:11:3e:f5:95:0f:b2:fe:7d:77:07:d3:9b:
b2:11:c3:90:85:26:79:b0:8e:a7:23:59:36:e2:8d:
b9:a3:01:ec:b6:09:9e:65:d1:5e:b0:39:fb:d0:4c:
b9:ab:ed:01:2b:7f:14:38:e1:32:e6:72:42:4c:3d:
91:ae:a6:0f:43:36:e0:c1:29:38:a6:50:26:d0:40:
57:f4:bd:f9:22:7f:b8:87:eb:77:dc:4e:ef:f8:02:
56:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EB:80:2A:6A:15:C6:F2:A0:CC:89:CA:0D:6D:4F:46:32:34:19:9C
X509v3 Authority Key Identifier:
keyid:6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/2uuAKmoVxvKgzInKDW1PRjI0GZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.136.0/23
46.247.140.0/24
85.190.64.0/19
185.161.168.0/22
185.231.8.0/22
185.253.168.0/22
IPv6:
2a0a:e800::/31
2a0a:e803::-2a0a:e807:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:11:84:c3:73:4f:6b:9f:27:59:98:e8:5e:f6:3a:78:91:c7:
30:e7:c1:26:d4:49:5e:4f:ee:bd:cd:c8:fa:bc:9a:24:44:9e:
38:c3:53:93:3e:b1:6e:7d:7d:81:02:2a:99:f8:6a:b6:99:83:
b8:b5:cc:c4:12:ab:bd:e7:98:85:41:3b:42:72:52:26:57:9c:
96:7b:fd:c4:a4:c3:87:73:5e:5f:f7:1c:1a:23:7c:e2:11:2d:
67:73:d4:42:90:37:1f:cc:24:58:79:df:5c:df:46:7e:f1:49:
22:2c:f6:02:72:7a:ce:f0:6b:cf:35:0b:59:b4:45:ee:38:d5:
a3:2c:eb:2d:de:6b:7d:b6:ab:5d:3c:42:31:9a:79:a0:e0:c4:
ec:70:6d:7a:63:19:75:58:22:55:8d:ac:94:0e:ad:80:66:9b:
43:18:01:e5:01:38:67:b5:6d:17:66:00:44:07:5e:0b:5a:46:
19:1b:69:ae:b9:a2:d4:24:55:af:c1:7b:30:b7:3d:3c:f2:8e:
63:ab:c3:f0:3a:81:1e:d3:80:66:ed:be:5d:fa:c1:38:f5:87:
e8:1e:9f:f7:ba:51:1d:79:55:76:cc:f9:8f:12:0c:6f:eb:88:
9c:4c:09:89:b2:bc:63:ca:c3:41:a2:56:4d:49:b0:74:78:2c:
4e:a6:90:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:48 2023 by rpki-client on console-ams.rpki-client.org