Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/uWO15QXejVtgO7MkgSEgk4uoP_A.roa
File: uWO15QXejVtgO7MkgSEgk4uoP_A.roa (raw, json)
Hash identifier: nZkjQde0K74PdepaHFZxVu6GWa3Bizbbf+N4iCRQ2us=
Subject key identifier: B9:63:B5:E5:05:DE:8D:5B:60:3B:B3:24:81:21:20:93:8B:A8:3F:F0
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0182827FFBB11AABC55DA1A1515D945EE6B9
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/uWO15QXejVtgO7MkgSEgk4uoP_A.roa
Signing time: Tue 09 Aug 2022 12:06:41 +0000
ROA not before: Tue 09 Aug 2022 12:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:82:7f:fb:b1:1a:ab:c5:5d:a1:a1:51:5d:94:5e:e6:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Aug 9 12:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b963b5e505de8d5b603bb324812120938ba83ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:68:32:71:ad:14:a0:49:29:78:7c:1f:73:
54:aa:3d:98:d6:d9:7e:14:16:36:ca:0a:ad:51:8a:
c0:35:99:f9:34:33:01:18:df:eb:03:0c:4a:45:9a:
66:6a:99:0d:0c:21:98:3e:ea:77:09:d9:34:ac:2f:
92:a9:4e:69:06:bb:a7:6f:54:3d:b5:92:ba:4c:bd:
35:d4:d2:53:07:54:f0:63:a0:91:a8:06:06:cd:5f:
85:ea:71:14:6c:7e:ec:78:2a:bd:53:ea:6d:b8:dd:
cb:62:33:d0:05:f7:d3:62:fc:1e:34:fc:26:0a:63:
2c:b7:7e:52:cc:23:e2:6e:d9:78:f9:91:f7:64:c3:
63:d0:cf:77:c4:5b:ef:b5:41:6d:98:43:4a:b8:bd:
43:00:43:84:13:22:14:b3:51:35:35:96:8a:a6:a4:
cc:cd:55:be:c6:cd:b5:8c:b4:ea:ba:2b:e7:c3:04:
b0:f0:66:f8:f2:5b:03:d0:22:aa:5e:1d:07:01:f7:
9a:cd:ab:81:06:24:03:d3:73:16:48:77:77:34:a5:
74:6c:5e:3b:67:aa:79:7d:4d:09:35:a7:6f:b8:ee:
d1:a9:d8:b9:02:c4:a0:49:54:52:ba:7a:6a:a4:f2:
32:e6:30:42:d6:66:ba:10:9c:5b:12:41:aa:db:d5:
68:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:63:B5:E5:05:DE:8D:5B:60:3B:B3:24:81:21:20:93:8B:A8:3F:F0
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/uWO15QXejVtgO7MkgSEgk4uoP_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.62.0/23
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
d5:17:01:18:1c:1e:6d:ab:a6:38:b2:48:ff:d9:bb:35:43:50:
9c:6e:81:c3:c0:0c:39:af:5e:52:3f:9e:de:99:9c:93:f1:96:
c2:0a:56:3e:7d:e4:92:bb:85:02:ae:e6:d3:be:7c:d4:2f:4b:
f6:0c:a2:66:04:e7:91:8c:41:01:3e:33:22:6d:9b:97:6f:ba:
af:43:c1:8e:c0:8b:60:4e:78:32:42:b4:f7:de:02:70:16:93:
81:ef:a8:cc:fa:a7:85:ee:17:32:4d:e3:f6:e1:9f:12:d2:eb:
f2:3b:70:d4:b4:ef:49:1f:4f:63:05:ad:ae:7f:ab:e6:7f:37:
80:26:06:ce:78:50:74:d1:0d:bb:3a:0a:a3:15:f0:90:a5:47:
02:ac:68:de:f0:60:bd:8f:6f:1a:71:52:9e:93:fb:d3:1f:36:
85:c6:d4:9d:b7:4a:34:2d:a8:b4:34:64:7a:c4:e6:3b:fc:03:
e1:6d:c9:75:2d:ac:ad:d0:d0:97:d6:9d:41:57:ef:43:8c:55:
8e:fb:84:22:d0:8a:bb:4d:f0:1a:da:10:0b:69:49:54:76:6e:
c0:46:7d:0e:e5:72:4a:e8:62:62:29:db:21:2f:94:cc:68:6c:
12:5b:88:e0:cd:73:bf:26:1f:20:02:04:c6:e7:e4:63:04:6e:
47:78:be:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org