Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/uOW0tiXfbG5ir8KT3TDb7JVSns0.roa
File: uOW0tiXfbG5ir8KT3TDb7JVSns0.roa (raw, json)
Hash identifier: x3J6KWRncIu0+ChJ/CfheiAys/OVRd7qoJiTMtr70uY=
Subject key identifier: B8:E5:B4:B6:25:DF:6C:6E:62:AF:C2:93:DD:30:DB:EC:95:52:9E:CD
Certificate issuer: /CN=ad1d2a562c7db21151b4a0926b8d6feeacef8857
Certificate serial: 0184AF22F97D721E3C376D4A9F21A73EC9FA
Authority key identifier: AD:1D:2A:56:2C:7D:B2:11:51:B4:A0:92:6B:8D:6F:EE:AC:EF:88:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rR0qVix9shFRtKCSa41v7qzviFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/uOW0tiXfbG5ir8KT3TDb7JVSns0.roa
Signing time: Fri 25 Nov 2022 14:13:35 +0000
ROA not before: Fri 25 Nov 2022 14:13:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 185.84.140.0/22 maxlen: 22
185.63.152.0/22 maxlen: 22
185.103.172.0/22 maxlen: 22
2a05:a640::/29 maxlen: 29
2a03:7e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:af:22:f9:7d:72:1e:3c:37:6d:4a:9f:21:a7:3e:c9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad1d2a562c7db21151b4a0926b8d6feeacef8857
Validity
Not Before: Nov 25 14:13:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8e5b4b625df6c6e62afc293dd30dbec95529ecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8c:ad:19:38:9d:d9:10:fa:67:dc:05:84:9b:
d3:1f:18:bb:a4:3a:71:62:bf:83:95:90:d9:9e:e8:
14:e9:c3:e4:f2:38:5d:ed:b2:c3:60:78:77:0f:45:
c6:09:a8:43:13:54:7e:07:1d:7c:2e:ec:65:c7:b8:
24:db:79:65:fa:d5:2b:e6:76:46:3e:f4:37:0f:52:
ed:c1:af:86:75:81:8f:44:ca:55:f2:6c:1b:08:55:
24:d9:ab:d6:cb:0b:68:de:8f:18:fb:6a:26:2f:e8:
74:04:91:fa:c4:47:37:f4:55:4f:8f:30:17:64:ee:
2b:9b:26:87:93:4f:35:51:81:ed:f7:fc:58:df:4c:
b9:63:42:ff:85:2d:92:0f:74:21:fb:8e:06:e2:3f:
4a:6c:00:24:45:ee:0d:75:7e:16:02:fc:82:6b:66:
f3:3f:8c:99:42:7c:bc:75:56:00:4c:e9:5e:01:3a:
1c:8b:0b:1c:6f:b8:e2:98:1e:80:a4:ef:dc:ce:f6:
d8:66:d6:96:09:26:18:80:e5:9e:92:5f:59:da:cc:
a4:20:25:6e:92:c9:b3:74:21:41:ae:7b:85:e6:71:
75:2d:a6:da:5f:8f:8f:18:bd:83:11:84:c5:1b:72:
44:3d:43:ff:30:3d:d0:1b:06:1d:68:7a:df:15:d3:
a6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E5:B4:B6:25:DF:6C:6E:62:AF:C2:93:DD:30:DB:EC:95:52:9E:CD
X509v3 Authority Key Identifier:
keyid:AD:1D:2A:56:2C:7D:B2:11:51:B4:A0:92:6B:8D:6F:EE:AC:EF:88:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rR0qVix9shFRtKCSa41v7qzviFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/uOW0tiXfbG5ir8KT3TDb7JVSns0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/rR0qVix9shFRtKCSa41v7qzviFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.152.0/22
185.84.140.0/22
185.103.172.0/22
IPv6:
2a03:7e0::/32
2a05:a640::/29
Signature Algorithm: sha256WithRSAEncryption
84:7c:45:29:6e:a2:19:08:d7:a8:af:11:34:2e:9e:c5:1e:e1:
99:68:69:aa:49:2b:96:50:16:01:de:b8:82:6a:dd:70:27:99:
5c:6f:26:14:b7:d8:ef:8b:9f:b9:21:d8:ed:33:e6:9e:1a:c2:
4d:a7:d3:d8:00:ac:54:ed:01:b2:dc:e9:64:45:00:3d:76:9e:
6e:77:e1:5c:fd:62:c5:48:11:21:9c:31:32:bf:c4:17:75:75:
17:6c:cb:06:4b:c6:7b:fa:d0:93:9f:25:d6:a8:c1:0e:5b:f8:
f8:15:48:73:b5:33:7e:17:e9:c6:cb:a6:24:21:e6:2a:9d:6f:
6c:de:35:a6:36:13:92:12:0b:a2:0f:f0:ff:23:35:c7:b7:b6:
ff:31:01:75:48:43:4e:e1:f5:d1:10:fa:ae:d8:1f:c2:dd:49:
f4:c6:31:dc:9c:d3:dc:77:59:a4:97:4b:f9:61:77:4d:42:d5:
9e:6a:d5:ee:94:5e:0e:37:b9:3f:80:58:40:c7:d9:e3:15:85:
b1:8e:cc:87:46:af:ca:72:d7:08:9c:c5:1c:dc:b1:b9:74:3a:
41:aa:14:fb:03:d2:04:7b:42:52:9b:8b:4d:68:81:a8:e7:64:
a7:8d:3a:4b:68:ce:f6:20:12:29:94:f1:16:55:e9:3f:89:4b:
b2:fe:56:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org