Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/RMtYYN8S4REbU-9vMbMhX2N67gQ.roa
File: RMtYYN8S4REbU-9vMbMhX2N67gQ.roa (raw, json)
Hash identifier: 3yKEl2Oi1Oz9GNO7bATLQfERrTMA83fv3HEIoJ1Zyao=
Subject key identifier: 44:CB:58:60:DF:12:E1:11:1B:53:EF:6F:31:B3:21:5F:63:7A:EE:04
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18DA94B9
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/RMtYYN8S4REbU-9vMbMhX2N67gQ.roa
Signing time: Tue 22 Feb 2022 15:27:39 +0000
ROA not before: Tue 22 Feb 2022 15:27:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.133.192.0/24 maxlen: 24
185.120.7.0/24 maxlen: 32
185.117.22.0/24 maxlen: 24
185.122.56.0/24 maxlen: 24
185.122.57.0/24 maxlen: 24
185.122.58.0/24 maxlen: 32
185.122.56.0/22 maxlen: 32
185.122.59.0/24 maxlen: 32
2a06:82c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416978105 (0x18da94b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 22 15:27:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44cb5860df12e1111b53ef6f31b3215f637aee04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:56:08:09:46:6f:33:27:10:8c:fd:11:62:83:
1d:85:c9:0d:80:07:46:1a:45:c2:7f:9c:19:84:89:
85:fa:48:fd:22:c6:ef:0b:49:9a:20:8f:55:ae:82:
17:e0:ae:7c:c7:ed:c2:e7:1e:66:89:e4:28:63:29:
c9:49:2c:f7:87:95:f8:6c:a6:46:dd:87:33:6e:a1:
2a:66:89:95:c4:df:15:27:40:69:8d:22:28:db:db:
e6:74:b9:a1:41:1a:68:e6:9c:23:85:78:ac:ff:57:
0e:94:99:bc:83:2e:d2:fe:8d:4e:f2:ca:8c:8a:8c:
d8:a7:42:30:99:59:b9:93:b9:7f:9a:75:82:8d:1f:
fe:c3:b3:37:81:88:9e:f2:a7:95:d8:a3:2b:47:bc:
f5:37:7c:50:ff:9e:02:ed:a2:c2:d0:47:5e:f5:67:
4b:e4:2d:8d:f0:2f:6c:9e:09:4a:36:e8:41:cf:3c:
be:85:83:47:63:cc:92:47:a5:ce:0c:f8:4a:4e:a3:
83:2e:7c:02:f4:d7:d8:2c:ac:ce:ce:83:69:a1:1b:
2e:95:d9:1c:db:b4:66:ed:21:2d:90:20:65:9b:dd:
7c:ab:a0:c6:6e:ad:2d:c2:ae:1b:b2:09:e9:a1:32:
65:e7:cf:f2:b5:ea:22:a7:b8:a5:d7:48:0e:87:fa:
dc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:CB:58:60:DF:12:E1:11:1B:53:EF:6F:31:B3:21:5F:63:7A:EE:04
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/RMtYYN8S4REbU-9vMbMhX2N67gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.120.7.0/24
185.122.56.0/22
185.133.192.0/24
IPv6:
2a06:82c2::/48
Signature Algorithm: sha256WithRSAEncryption
ce:c0:29:32:43:71:59:bc:62:63:47:c0:2b:5b:84:53:e3:41:
a7:e0:77:f0:2c:3b:81:d9:4f:27:79:3b:1c:d4:f8:49:09:02:
93:91:e6:9e:7a:27:8f:6e:1e:75:2f:1d:07:c8:be:c8:6a:ae:
b7:ed:c8:31:2a:9c:fa:76:fe:06:d2:90:28:16:01:3d:f6:46:
64:89:98:4e:1f:9b:b2:0e:c0:bf:81:78:d2:2f:76:9d:14:5a:
a0:11:d2:1e:03:f1:d6:6b:23:6d:eb:f7:7b:97:e5:88:d5:70:
2f:50:9f:bd:c0:07:e5:64:ed:ca:d1:b2:ce:2d:10:04:d8:9c:
2a:ca:da:b1:65:ce:49:9e:90:1e:c7:b2:6f:42:13:67:98:48:
91:21:f9:2e:1d:6e:71:03:64:26:59:07:a4:92:a4:61:27:8f:
24:f7:3f:09:e2:e9:62:48:0f:c2:94:59:27:d6:74:d0:7d:0a:
ca:44:99:b6:c1:88:3b:57:16:82:9b:5f:3b:0e:bc:d0:5b:8c:
12:72:02:25:a9:2c:d1:c0:74:f3:00:34:c0:c8:83:09:75:4d:
f6:3e:2c:59:56:da:ba:b3:09:08:fd:b5:e7:a5:f0:22:c9:3f:
0b:f8:f2:d8:0a:36:9a:d4:bd:51:c9:3e:c9:0e:7c:f3:67:e3:
21:06:63:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org