Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uDaqDenDqitAw0tkb-myRIzJuPM.roa
File: uDaqDenDqitAw0tkb-myRIzJuPM.roa (raw, json)
Hash identifier: Go9QkqRbY0fXwb38pJSQ3JGNrtOUtjXWBBCxAfICwe8=
Subject key identifier: B8:36:AA:0D:E9:C3:AA:2B:40:C3:4B:64:6F:E9:B2:44:8C:C9:B8:F3
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0183A3D6CC34C013A50F33FE4E75D1B2B1F6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uDaqDenDqitAw0tkb-myRIzJuPM.roa
Signing time: Tue 04 Oct 2022 16:31:46 +0000
ROA not before: Tue 04 Oct 2022 16:31:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207046
IP address blocks: 185.247.4.0/22 maxlen: 24
194.113.28.0/22 maxlen: 24
185.247.5.0/24 maxlen: 24
185.247.6.0/23 maxlen: 24
185.209.36.0/22 maxlen: 22
194.146.220.0/22 maxlen: 22
185.224.220.0/22 maxlen: 22
185.221.16.0/23 maxlen: 23
185.227.206.0/24 maxlen: 24
45.134.84.0/22 maxlen: 24
185.221.22.0/23 maxlen: 23
185.227.207.0/24 maxlen: 24
185.249.204.0/22 maxlen: 22
185.250.182.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:d6:cc:34:c0:13:a5:0f:33:fe:4e:75:d1:b2:b1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 4 16:31:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b836aa0de9c3aa2b40c34b646fe9b2448cc9b8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:87:e7:9d:31:75:1c:a9:06:c7:d7:6b:2f:bb:
68:e1:c2:96:ad:6d:92:8b:4c:bb:3e:a6:da:bb:ad:
b9:d2:bc:71:a9:97:16:ac:bd:8d:d4:4f:f3:d1:e5:
57:5d:9a:25:35:27:85:4b:09:1e:c7:d6:1f:7d:59:
e3:4e:ea:72:c6:99:c5:47:36:8f:eb:34:ad:55:a7:
01:da:98:bd:b0:3d:fd:a2:08:56:6c:01:73:be:86:
7f:64:0c:01:c9:8d:5b:43:de:01:b3:72:05:64:05:
32:8f:65:00:cc:38:29:ca:67:0d:7f:4c:e7:f6:06:
73:e5:79:8b:96:c9:fe:33:10:7c:0e:d9:ed:b5:ef:
af:d6:ea:03:e5:a7:cf:a9:1a:a1:ef:89:4e:41:02:
ca:ce:e0:fe:d7:74:67:13:8e:46:c1:21:62:b1:e3:
53:c0:8b:24:68:25:f8:bd:2d:15:2a:44:c7:32:22:
47:8f:a9:67:fb:57:a1:90:0e:60:80:65:50:3f:73:
ad:50:0f:79:7c:d1:ab:97:83:15:66:ac:eb:55:15:
2f:77:5b:b0:14:13:08:97:f0:c7:3d:b1:ef:e0:ae:
fb:0e:2f:95:93:7f:97:a4:f2:e3:80:41:f4:06:5b:
08:a4:5b:26:03:ee:11:3c:45:65:f3:43:68:d2:51:
3d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:36:AA:0D:E9:C3:AA:2B:40:C3:4B:64:6F:E9:B2:44:8C:C9:B8:F3
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uDaqDenDqitAw0tkb-myRIzJuPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.84.0/22
185.209.36.0/22
185.221.16.0/23
185.221.22.0/23
185.224.220.0/22
185.227.206.0/23
185.247.4.0/22
185.249.204.0/22
185.250.182.0/23
194.113.28.0/22
194.146.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:2a:6e:2c:51:dc:98:cc:c3:99:3a:ef:38:bc:36:00:c4:4e:
75:0f:b6:2a:7c:89:39:fa:7e:6d:3b:c9:3b:9b:ae:b8:9f:c3:
04:ce:9c:6f:a9:cb:3f:ed:23:05:9b:cc:91:51:96:0a:fa:5e:
ca:3d:f1:b3:10:9b:b5:d9:0a:03:da:84:6c:73:33:45:f6:e4:
44:85:3b:79:86:ca:41:51:28:e8:c7:30:c8:c0:84:fb:db:34:
bf:49:ca:d3:bb:b3:e2:05:51:e3:f5:20:6e:1d:31:c9:ae:cf:
b6:04:72:8c:2d:7e:2f:89:9c:7f:d4:33:6a:e1:d6:89:2e:50:
ee:71:2b:07:e5:da:da:62:fc:99:e5:83:cd:83:33:dc:ce:2f:
57:4e:bd:89:64:f6:35:a2:ee:1f:3a:69:70:17:e2:c9:05:e5:
f4:db:98:10:02:02:32:18:e7:24:17:81:d2:69:4e:9b:4e:51:
10:f2:90:9e:05:f8:6a:7c:04:00:68:14:ff:db:a7:1f:b2:c2:
8d:93:dc:d5:b4:82:5e:32:70:e1:4e:6c:12:41:17:d9:07:1b:
78:61:5e:51:a0:8a:75:59:1b:62:53:62:c3:8a:6b:f2:ec:c1:
f7:02:9f:14:32:93:8e:c2:c1:93:5a:d0:25:bf:c0:57:58:48:
8a:c7:28:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org