Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/h7GMOHaaoe6kUk3ZVxPJiTWg0-8.roa
File: h7GMOHaaoe6kUk3ZVxPJiTWg0-8.roa (raw, json)
Hash identifier: OjVPdtPR0gRMHh5fbasNgHAe/n+VN1w5xeWC+AEqccY=
Subject key identifier: 87:B1:8C:38:76:9A:A1:EE:A4:52:4D:D9:57:13:C9:89:35:A0:D3:EF
Certificate issuer: /CN=662f55d377127f28ce26b78fd83becf41becad4b
Certificate serial: 03E96B36
Authority key identifier: 66:2F:55:D3:77:12:7F:28:CE:26:B7:8F:D8:3B:EC:F4:1B:EC:AD:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zi9V03cSfyjOJreP2Dvs9BvsrUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/h7GMOHaaoe6kUk3ZVxPJiTWg0-8.roa
Signing time: Sat 01 Jan 2022 07:56:19 +0000
ROA not before: Sat 01 Jan 2022 07:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49683
IP address blocks: 185.122.164.0/24 maxlen: 24
185.122.165.0/24 maxlen: 24
185.122.166.0/24 maxlen: 24
185.122.167.0/24 maxlen: 24
185.168.192.0/24 maxlen: 24
185.168.193.0/24 maxlen: 24
185.168.194.0/24 maxlen: 24
185.168.195.0/24 maxlen: 24
185.85.240.0/24 maxlen: 24
185.85.243.0/24 maxlen: 24
185.85.241.0/24 maxlen: 24
185.85.242.0/24 maxlen: 24
185.184.68.0/24 maxlen: 24
185.184.69.0/24 maxlen: 24
185.184.70.0/24 maxlen: 24
185.184.71.0/24 maxlen: 24
185.116.236.0/24 maxlen: 24
185.116.237.0/24 maxlen: 24
185.116.239.0/24 maxlen: 24
185.44.64.0/24 maxlen: 24
185.44.65.0/24 maxlen: 24
185.44.66.0/24 maxlen: 24
185.44.67.0/24 maxlen: 24
185.189.58.0/24 maxlen: 24
185.189.56.0/24 maxlen: 24
185.189.57.0/24 maxlen: 24
185.189.59.0/24 maxlen: 24
2a0a:2f00:1::/48 maxlen: 48
2a0a:2f00:3::/48 maxlen: 48
2a0a:2f00:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65628982 (0x3e96b36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=662f55d377127f28ce26b78fd83becf41becad4b
Validity
Not Before: Jan 1 07:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87b18c38769aa1eea4524dd95713c98935a0d3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:38:ac:93:6b:11:ca:c6:eb:1e:56:b1:a8:60:
49:2c:f6:58:88:42:fb:10:ef:92:d7:1b:0e:bf:48:
5e:5b:e2:3e:5f:9c:29:4c:5d:65:0a:cc:59:5e:8e:
10:75:62:d6:45:4f:1d:6d:d0:55:e7:20:ca:6b:17:
80:05:8e:8b:cd:63:60:62:e0:db:f2:24:6a:27:4b:
d4:b0:ed:87:f9:83:2b:f6:95:d3:32:3a:e2:a3:75:
e4:2e:55:64:d5:f0:fe:9a:53:b8:67:79:63:db:fa:
f5:76:e8:4c:a0:71:ad:23:5a:47:4a:b4:66:66:56:
f0:51:d5:9e:f2:cd:a5:80:61:7d:10:e8:5f:8b:4b:
34:77:0e:a0:33:30:c8:90:06:4d:dc:8c:e2:9a:25:
5b:af:f1:1d:ea:4c:67:c4:4b:c2:32:7a:0c:fb:17:
fc:5e:43:8a:cf:2f:80:28:d1:ce:69:70:65:38:d0:
90:17:ad:4d:a5:73:8a:54:ff:af:22:a5:eb:8a:3b:
1c:d1:bf:35:a9:58:ca:75:77:ab:c9:1b:40:1a:ac:
43:26:ac:eb:f3:d3:85:3f:7e:fc:b9:75:d3:94:91:
9d:e5:6f:f9:6c:51:44:c5:ff:4c:2c:b0:7b:bf:a1:
08:03:d4:d4:a4:9c:4f:d8:5d:92:d7:11:71:6d:a3:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B1:8C:38:76:9A:A1:EE:A4:52:4D:D9:57:13:C9:89:35:A0:D3:EF
X509v3 Authority Key Identifier:
keyid:66:2F:55:D3:77:12:7F:28:CE:26:B7:8F:D8:3B:EC:F4:1B:EC:AD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zi9V03cSfyjOJreP2Dvs9BvsrUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/h7GMOHaaoe6kUk3ZVxPJiTWg0-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/388c70-e4c7-420d-8188-8be146253356/1/Zi9V03cSfyjOJreP2Dvs9BvsrUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.64.0/22
185.85.240.0/22
185.116.236.0/23
185.116.239.0/24
185.122.164.0/22
185.168.192.0/22
185.184.68.0/22
185.189.56.0/22
IPv6:
2a0a:2f00:1::-2a0a:2f00:3:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4c:47:b3:38:50:ee:00:e5:6d:b0:fa:97:35:c0:01:16:25:a5:
fe:93:c5:79:7a:8c:e4:5e:f2:f6:2f:9d:cf:d3:4a:ce:ba:71:
ec:5e:52:17:a4:21:1c:26:c2:e8:19:c8:17:2c:4e:5d:88:5c:
5b:72:f8:94:d7:1d:f2:0b:a7:2d:9e:4c:5e:af:61:3e:68:c0:
c1:1f:e9:7c:32:7a:6d:f0:50:29:0f:df:a8:23:18:96:03:7d:
14:57:6c:58:f4:4a:d8:3f:9b:cf:2f:fa:e3:a9:30:e6:d2:8c:
2c:8f:3d:d5:d8:b6:b7:91:13:6f:c0:e4:37:b3:a3:5c:ae:33:
9f:8a:10:b6:7f:da:fa:e1:93:a9:6a:2d:d6:bc:5b:57:1f:9a:
c5:41:05:70:1d:72:a2:ab:db:b4:19:15:50:c0:31:d5:99:5f:
4b:a4:3a:da:1c:24:c5:95:31:62:fc:6e:ab:41:16:b6:06:6e:
83:8f:22:9b:0c:67:84:81:06:c6:51:fd:6f:02:91:b1:99:97:
ab:5a:b7:d1:93:1d:32:0a:2f:70:aa:d5:0a:48:55:33:5b:17:
a0:a8:68:c1:6b:cf:81:db:5b:88:95:f5:05:84:c2:0b:b3:9c:
4f:17:50:c3:de:a9:90:72:4e:58:ae:2c:66:df:aa:2b:88:59:
20:fe:80:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:51 2024 by rpki-client on console-ams.rpki-client.org