Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/8bf389-813c-49ba-850c-940c6b8b502a/1/jWLUgeh8X-sK_fELfnvHMpYkAkQ.roa
File: jWLUgeh8X-sK_fELfnvHMpYkAkQ.roa (raw, json)
Hash identifier: gQzncPalw2hnoGK4luNFs+jT7TdvGs8WZDNXXM7gG8k=
Subject key identifier: 8D:62:D4:81:E8:7C:5F:EB:0A:FD:F1:0B:7E:7B:C7:32:96:24:02:44
Certificate issuer: /CN=f3f6a57ea2a902eb4912de927df80304c355ab12
Certificate serial: 057921E6
Authority key identifier: F3:F6:A5:7E:A2:A9:02:EB:49:12:DE:92:7D:F8:03:04:C3:55:AB:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8_alfqKpAutJEt6SffgDBMNVqxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/8bf389-813c-49ba-850c-940c6b8b502a/1/jWLUgeh8X-sK_fELfnvHMpYkAkQ.roa
Signing time: Sat 01 Jan 2022 03:55:53 +0000
ROA not before: Sat 01 Jan 2022 03:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200062
IP address blocks: 188.64.56.0/21 maxlen: 21
185.9.128.0/22 maxlen: 22
80.209.244.0/22 maxlen: 22
185.127.116.0/22 maxlen: 22
185.64.112.0/22 maxlen: 22
158.181.48.0/21 maxlen: 21
2a00:6140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91824614 (0x57921e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3f6a57ea2a902eb4912de927df80304c355ab12
Validity
Not Before: Jan 1 03:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d62d481e87c5feb0afdf10b7e7bc73296240244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:89:e0:fe:e6:bc:52:7d:2d:e4:28:d6:d1:8b:
5e:0b:77:a7:1b:b5:23:7f:f2:c8:d6:44:1d:a8:4f:
bb:ad:23:0f:71:31:ec:08:52:5f:b3:1f:83:d4:86:
3f:2a:ff:89:df:0e:a0:6a:51:1f:f2:66:91:56:46:
d1:30:3b:91:8c:1f:66:94:3c:e2:35:00:80:6a:0c:
67:cf:92:e0:72:28:eb:00:1d:81:f8:e7:05:57:c5:
fc:6f:d0:ec:b7:a0:0d:9b:d4:0d:61:8a:29:d0:d0:
55:ba:f7:97:41:de:be:41:16:85:42:b4:1f:88:c6:
ed:31:a6:7a:64:38:4f:5c:97:71:3c:35:5e:c2:c4:
95:7d:03:48:fa:5b:1e:38:e0:61:d7:bf:63:0d:d1:
96:e6:9f:c8:4a:dc:95:3d:d3:e9:1d:20:01:07:16:
06:c4:fb:98:fa:fa:98:3a:d5:59:d2:54:ed:2c:35:
2a:d4:88:17:b1:77:0b:ef:1b:0e:f6:93:67:53:46:
bd:c5:ba:74:0e:65:5b:58:3b:f5:b5:e0:c9:b9:80:
dc:f1:4c:d8:82:03:22:62:61:fa:d3:1b:1b:42:3a:
2b:7a:12:95:82:62:7e:e0:98:f1:9b:67:be:e2:e3:
9c:e1:8f:e9:fe:7e:c3:23:78:45:53:96:41:06:3b:
f0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:62:D4:81:E8:7C:5F:EB:0A:FD:F1:0B:7E:7B:C7:32:96:24:02:44
X509v3 Authority Key Identifier:
keyid:F3:F6:A5:7E:A2:A9:02:EB:49:12:DE:92:7D:F8:03:04:C3:55:AB:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8_alfqKpAutJEt6SffgDBMNVqxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/8bf389-813c-49ba-850c-940c6b8b502a/1/jWLUgeh8X-sK_fELfnvHMpYkAkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/8bf389-813c-49ba-850c-940c6b8b502a/1/8_alfqKpAutJEt6SffgDBMNVqxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.209.244.0/22
158.181.48.0/21
185.9.128.0/22
185.64.112.0/22
185.127.116.0/22
188.64.56.0/21
IPv6:
2a00:6140::/32
Signature Algorithm: sha256WithRSAEncryption
68:2c:3b:41:8d:52:3c:25:52:62:93:cc:3d:b7:8a:57:4c:d9:
e6:8f:e8:27:73:76:c2:e8:56:60:1a:15:ab:03:77:28:6d:72:
1b:87:13:26:23:4d:b3:e9:68:c6:d0:89:d4:6b:b3:86:d6:c7:
3c:3f:ba:2a:8d:41:0d:90:37:7d:ab:fc:7f:fe:a4:0a:49:3a:
80:4b:a5:72:2f:37:85:c7:b7:c3:01:0d:00:60:90:6d:cd:85:
25:d0:ae:fd:18:4e:0b:ec:9f:d6:0d:0e:ec:74:bb:87:41:2f:
b1:9f:21:30:d5:dc:36:61:68:1a:7e:ab:f2:40:81:b7:08:f6:
a7:91:6a:85:7d:6f:d3:35:9f:4d:59:33:32:23:24:6f:3a:a6:
60:7b:5a:cf:4f:9c:5e:92:17:5a:f9:05:99:54:dd:70:d0:e8:
65:8d:9a:29:d7:11:9b:1d:1d:98:74:e2:f1:97:95:ce:78:36:
83:e2:83:c2:74:a3:1a:2f:2d:84:97:f6:9c:81:f5:60:96:71:
97:19:e9:04:61:01:46:bc:cf:22:20:88:d7:5f:1c:f4:2d:1d:
d9:e8:c7:23:50:de:4a:63:7d:9e:4d:43:83:38:05:65:28:31:
5a:15:41:6e:f6:77:51:01:c3:a8:7b:34:39:0e:fa:95:24:82:
f1:3f:40:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:29 2023 by rpki-client on console-ams.rpki-client.org