Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/f93da2-1457-4cd9-9073-806a315dd1fd/1/UE-7v2PfGmzLSkgE9SH98rqKjYs.roa
File: UE-7v2PfGmzLSkgE9SH98rqKjYs.roa (raw, json)
Hash identifier: Zy5D+/FPcuFIxv5qscemhJFgvMiWniePgp30CQpihQA=
Subject key identifier: 50:4F:BB:BF:63:DF:1A:6C:CB:4A:48:04:F5:21:FD:F2:BA:8A:8D:8B
Certificate issuer: /CN=84df54bdc104106cdb299e01ef08a60985ec35fb
Certificate serial: 142401C1
Authority key identifier: 84:DF:54:BD:C1:04:10:6C:DB:29:9E:01:EF:08:A6:09:85:EC:35:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hN9UvcEEEGzbKZ4B7wimCYXsNfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/f93da2-1457-4cd9-9073-806a315dd1fd/1/UE-7v2PfGmzLSkgE9SH98rqKjYs.roa
Signing time: Sat 01 Jan 2022 11:54:44 +0000
ROA not before: Sat 01 Jan 2022 11:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51918
IP address blocks: 185.117.236.0/22 maxlen: 22
2a06:94c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337904065 (0x142401c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84df54bdc104106cdb299e01ef08a60985ec35fb
Validity
Not Before: Jan 1 11:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=504fbbbf63df1a6ccb4a4804f521fdf2ba8a8d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9d:d6:98:40:3e:c7:da:ec:71:e7:86:61:e0:
b6:06:e1:3e:cc:ff:99:a6:3c:e7:32:31:92:16:62:
ec:b9:00:04:45:bf:46:5b:55:d6:7b:b2:6b:7d:54:
7d:12:64:22:c0:f6:e9:08:1c:3e:4e:1b:a6:3c:96:
a8:d2:e8:7c:4e:f5:52:b8:67:f0:f8:35:08:63:85:
c9:1c:66:06:6b:74:70:ab:59:6e:63:87:d9:6f:21:
06:f3:91:2d:fa:1a:f3:78:86:bb:d4:6d:6b:b0:9a:
37:ca:22:f4:77:f3:69:44:72:f0:4f:6e:b2:d9:9e:
c4:51:01:04:d3:a0:d2:6e:b4:b4:84:a1:df:a2:d1:
4a:56:ef:ff:9f:76:8a:46:d7:b9:ca:eb:90:86:16:
91:ef:8b:7d:aa:a2:3c:d2:af:88:bf:b9:01:d0:5d:
c0:8f:3c:38:81:1c:6e:2c:b5:d0:e1:0f:65:c1:e5:
bc:b9:52:ae:af:e3:4a:af:dd:93:01:bd:75:7d:53:
43:81:b8:17:ee:23:da:2b:47:b0:70:02:85:ab:af:
b1:d5:d8:0e:79:06:48:4f:4d:b4:8d:c1:7b:c0:de:
58:33:ac:a4:46:9b:6d:fb:4d:42:e6:af:8b:04:dc:
fe:27:6c:26:cc:17:03:ad:8e:c3:2a:f0:c5:1a:5a:
52:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4F:BB:BF:63:DF:1A:6C:CB:4A:48:04:F5:21:FD:F2:BA:8A:8D:8B
X509v3 Authority Key Identifier:
keyid:84:DF:54:BD:C1:04:10:6C:DB:29:9E:01:EF:08:A6:09:85:EC:35:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hN9UvcEEEGzbKZ4B7wimCYXsNfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/f93da2-1457-4cd9-9073-806a315dd1fd/1/UE-7v2PfGmzLSkgE9SH98rqKjYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/f93da2-1457-4cd9-9073-806a315dd1fd/1/hN9UvcEEEGzbKZ4B7wimCYXsNfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.236.0/22
IPv6:
2a06:94c0::/29
Signature Algorithm: sha256WithRSAEncryption
1e:b9:7f:48:96:7f:50:26:fd:d3:b1:56:30:b7:3b:42:47:58:
bc:52:6d:30:9a:11:03:34:9b:b1:e6:9e:7b:f1:f2:97:41:90:
73:d7:f8:25:00:bd:25:92:3b:d8:ef:0d:b8:a8:87:92:74:4a:
12:dc:26:5a:b5:61:9f:5c:bc:be:24:74:2e:93:50:77:44:65:
ea:82:db:04:e4:96:43:0a:1a:8c:a1:c5:84:49:0c:0e:08:aa:
d7:77:05:64:b6:fc:8c:a2:6e:61:6f:6a:3c:2b:3c:d7:48:5f:
1d:ea:d7:3f:a8:44:1c:63:87:18:eb:61:05:06:8d:cf:1a:e4:
de:34:ac:6e:36:e0:da:12:2b:08:0e:c0:39:fd:a5:cb:cb:dd:
de:1c:4e:d4:de:e4:a9:58:da:4c:af:5d:36:0d:4c:de:25:f0:
83:aa:c5:e3:fe:64:b5:3b:68:f3:45:9b:4d:e8:1f:9c:68:30:
db:5d:fe:5b:a0:c6:51:10:e5:25:b4:2b:2f:72:f4:e2:b3:a9:
24:31:c3:63:de:20:a5:f0:93:6f:ea:1d:4e:07:4e:f8:fa:44:
22:dc:a4:ec:2d:89:d5:33:1b:a1:cd:d2:4c:e8:fe:36:4b:bf:
fe:df:00:ec:d5:f3:ae:8a:6f:18:f6:e7:3e:3b:9e:97:e6:a4:
8c:fc:9c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:59 2023 by rpki-client on console-ams.rpki-client.org