Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/F7wi4B__1e8oeyoMVWBjUx-zzRM.roa
File: F7wi4B__1e8oeyoMVWBjUx-zzRM.roa (raw, json)
Hash identifier: xQc/RgT+6R+cswvjSbqcV20/8xEc90J77igSDzAUYKw=
Subject key identifier: 17:BC:22:E0:1F:FF:D5:EF:28:7B:2A:0C:55:60:63:53:1F:B3:CD:13
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1896DF68
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/F7wi4B__1e8oeyoMVWBjUx-zzRM.roa
Signing time: Thu 03 Feb 2022 19:39:08 +0000
ROA not before: Thu 03 Feb 2022 19:39:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7489
IP address blocks: 185.133.192.0/24 maxlen: 24
185.120.7.0/24 maxlen: 24
185.117.22.0/24 maxlen: 24
185.122.56.0/24 maxlen: 24
185.122.57.0/24 maxlen: 24
185.122.59.0/24 maxlen: 24
2a06:8e00::/48 maxlen: 48
2a06:8ec0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412540776 (0x1896df68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 3 19:39:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17bc22e01fffd5ef287b2a0c556063531fb3cd13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:04:09:31:a8:0f:89:68:ab:30:57:83:15:a7:
64:f3:aa:87:dc:9f:82:f5:c0:54:de:f5:09:5d:21:
9b:1d:09:81:d5:8e:e3:07:70:e8:9e:28:9d:09:16:
5b:b3:db:62:3b:6a:e3:b5:40:ae:23:6a:74:a6:de:
ca:43:2e:59:ff:56:0f:4c:bf:14:a8:e1:25:ef:5a:
b4:c7:23:1a:dd:ff:d2:5d:ed:cc:b2:45:5e:57:45:
d1:04:a3:48:b6:a7:e5:9f:10:a4:60:a7:1d:4e:d4:
52:a0:ce:85:09:61:86:f2:31:b4:b5:15:7e:e1:51:
a6:c8:0d:48:07:b4:84:de:dc:65:57:fd:db:71:c4:
39:b4:02:4c:11:b8:1b:e0:a0:ef:d3:58:b6:2e:1c:
4b:08:f5:56:a9:73:50:0c:de:59:4c:eb:4d:1e:83:
f6:b0:cc:df:29:69:03:c7:36:e3:1f:c6:89:a5:45:
63:4d:e2:2a:2b:5e:10:ae:e6:f2:98:d0:58:6c:9b:
06:f2:65:5a:90:0f:36:c7:1d:20:8b:fa:66:92:93:
e3:06:64:e4:8d:1f:70:d2:a2:84:dc:1f:b4:9d:e3:
45:79:48:12:40:88:f6:40:03:82:31:8a:a0:a8:be:
41:dd:ac:81:39:fd:ef:dc:b1:ef:b3:b3:25:77:71:
ae:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BC:22:E0:1F:FF:D5:EF:28:7B:2A:0C:55:60:63:53:1F:B3:CD:13
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/F7wi4B__1e8oeyoMVWBjUx-zzRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.120.7.0/24
185.122.56.0/23
185.122.59.0/24
185.133.192.0/24
IPv6:
2a06:8e00::/48
2a06:8ec0:3::/48
Signature Algorithm: sha256WithRSAEncryption
41:6f:d6:2a:8f:81:28:fc:29:62:63:d8:36:51:b2:66:68:77:
9d:51:3e:47:ff:89:95:62:26:82:90:a0:4b:57:3e:b7:7f:64:
46:81:40:b8:77:37:f9:1c:9b:b8:1a:ae:00:03:6f:87:e6:98:
26:82:de:ac:f8:30:44:eb:99:9d:ce:60:70:a0:e8:d8:10:45:
0b:71:4a:80:bf:e9:e8:da:2a:d5:9f:b8:1c:9d:df:fa:b1:48:
aa:3e:f1:b6:93:6e:86:9d:a5:db:04:40:09:8b:08:d3:72:47:
e5:f0:1f:e6:14:d8:c3:b0:2a:a5:f0:cb:58:56:bc:ce:6f:dc:
b1:e1:00:3c:d3:88:41:13:9b:fb:a5:9a:bc:f2:7c:3d:56:df:
fe:a2:2d:10:3d:8d:af:e1:e3:d1:85:16:bd:b2:81:ea:7a:3e:
48:06:63:20:cd:ea:2a:a3:6a:ef:9f:a1:5f:7d:b0:df:9a:34:
eb:33:31:cd:a4:c0:f1:07:ca:5c:5d:ea:f7:77:28:56:7a:5e:
db:2f:6e:0a:cf:83:a9:bc:37:0d:78:9c:ae:17:d9:2d:24:68:
22:40:52:51:a7:64:36:94:aa:4e:6a:35:a3:a3:54:85:e5:4f:
a2:52:fa:0b:24:00:2f:5b:3f:cf:79:4b:de:3a:f2:d5:9c:42:
e3:de:76:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org