Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/H2w-JrUUPMaN3IXEOtZv75B11Bk.roa
File: H2w-JrUUPMaN3IXEOtZv75B11Bk.roa (raw, json)
Hash identifier: xzr+xgsKBB5djaACtq4i4FgIhmTz+uXvUTxbOKZhPJI=
Subject key identifier: 1F:6C:3E:26:B5:14:3C:C6:8D:DC:85:C4:3A:D6:6F:EF:90:75:D4:19
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19965CA2
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/H2w-JrUUPMaN3IXEOtZv75B11Bk.roa
Signing time: Sun 10 Apr 2022 02:10:32 +0000
ROA not before: Sun 10 Apr 2022 02:10:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7489
IP address blocks: 185.133.192.0/24 maxlen: 24
185.117.22.0/24 maxlen: 24
185.122.57.0/24 maxlen: 32
185.122.58.0/24 maxlen: 32
2a06:8e00::/48 maxlen: 48
2a06:8ec0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429284514 (0x19965ca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 10 02:10:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f6c3e26b5143cc68ddc85c43ad66fef9075d419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:47:b9:45:64:fb:26:8b:45:ea:46:3a:7f:f6:
82:1d:d9:0c:c0:5d:04:a4:e5:30:d3:02:00:87:40:
6c:46:d7:7b:85:62:68:6a:ad:31:7e:3a:bf:f1:b1:
9c:87:d9:98:bd:11:b9:f6:72:61:a8:a2:8b:20:36:
bc:94:1d:f2:b0:07:12:87:6b:c7:b9:8e:21:43:02:
75:46:1b:26:32:49:e8:5b:9a:04:68:bc:ec:02:4f:
dc:cd:57:5d:27:56:e2:47:50:56:3e:14:42:de:10:
f8:6a:a5:24:54:cd:50:e8:94:9a:a3:cc:ba:e2:c6:
a7:af:35:8e:af:63:ec:f4:d9:e7:ec:c6:e6:ad:88:
af:f7:a3:3d:23:0f:96:41:56:f3:8e:49:e9:9f:ba:
bd:6b:6e:9c:ec:83:9e:bb:83:f4:14:1d:2c:9d:45:
f8:6e:18:8b:ed:93:7c:14:21:21:6c:cc:f3:b4:f9:
41:fe:35:f8:d8:97:e0:03:32:60:01:a1:5b:55:aa:
38:2e:fc:df:1d:7f:42:88:6f:be:6c:7d:5f:51:1e:
63:ae:e3:73:9e:7c:ec:3c:26:71:c9:ee:3d:19:37:
40:44:ab:39:63:66:26:c8:07:25:c6:eb:a2:75:80:
64:c3:f5:85:fb:97:2f:70:a9:f9:ee:2a:56:f5:58:
05:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6C:3E:26:B5:14:3C:C6:8D:DC:85:C4:3A:D6:6F:EF:90:75:D4:19
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/H2w-JrUUPMaN3IXEOtZv75B11Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.122.57.0-185.122.58.255
185.133.192.0/24
IPv6:
2a06:8e00::/48
2a06:8ec0:3::/48
Signature Algorithm: sha256WithRSAEncryption
10:69:fe:57:2d:5f:7a:36:a1:39:d6:0b:14:72:d6:1e:1e:3f:
2c:b9:3f:d1:7f:b0:22:c1:42:f5:0d:99:a3:0d:9d:59:73:8a:
14:ad:b5:c4:4c:5a:aa:f4:97:b1:e3:69:c1:a8:06:5f:88:9b:
e5:93:12:62:d2:be:db:47:04:d2:67:a5:e1:90:bc:39:72:ce:
a1:58:d0:c9:e1:ec:9b:e1:93:23:43:11:4d:07:08:f6:f9:11:
e4:66:32:3b:47:1c:f1:c4:b4:a8:aa:07:8c:96:95:dc:33:33:
47:e0:3e:70:04:6f:97:db:aa:1a:7d:8a:32:7e:d9:fa:27:1e:
a1:64:b0:1d:15:d4:3e:3a:b1:7c:94:8f:9f:c6:00:77:a2:d8:
f3:f9:58:6c:56:71:31:f0:d9:fe:52:2a:1f:74:2c:fd:3e:db:
18:ed:80:56:56:01:b8:9f:e3:d4:84:84:06:98:12:e4:6d:88:
cd:d3:9b:ad:25:cb:fb:ee:ba:22:90:7b:e3:75:06:7c:7e:b4:
8c:56:9f:b5:5f:b7:fa:0a:d5:37:af:60:7c:cd:ed:aa:85:89:
8e:93:a1:cb:3c:5a:18:7a:da:9f:a5:dc:64:d8:73:d8:0d:26:
f6:e8:2d:f8:c2:1f:91:f1:7e:d4:66:f2:8f:ad:36:4e:3f:e2:
80:7c:86:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org