Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/TwUdz5_TlDYAVbSGLyy7LiZifao.roa
File: TwUdz5_TlDYAVbSGLyy7LiZifao.roa (raw, json)
Hash identifier: D40Z8DcK8y2g+53Uo233tEvxnmRyTdbs2lJPdvlXtCY=
Subject key identifier: 4F:05:1D:CF:9F:D3:94:36:00:55:B4:86:2F:2C:BB:2E:26:62:7D:AA
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18D2BEA0
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/TwUdz5_TlDYAVbSGLyy7LiZifao.roa
Signing time: Sun 20 Feb 2022 14:58:08 +0000
ROA not before: Sun 20 Feb 2022 14:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.133.192.0/24 maxlen: 24
185.120.7.0/24 maxlen: 32
185.117.22.0/24 maxlen: 24
185.122.56.0/24 maxlen: 24
185.122.57.0/24 maxlen: 24
185.122.58.0/24 maxlen: 32
185.122.56.0/22 maxlen: 32
185.122.59.0/24 maxlen: 32
2a06:82c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416464544 (0x18d2bea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 20 14:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f051dcf9fd394360055b4862f2cbb2e26627daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ac:64:0e:2d:09:1d:55:5c:96:7d:dd:04:68:
78:80:02:d6:20:1d:50:07:d5:85:f8:71:a3:bb:4c:
09:57:87:16:19:1b:7b:07:a0:df:18:1a:fd:b0:79:
bc:fd:83:bb:6f:80:f6:9f:dc:ca:f2:db:cd:a2:62:
55:f3:61:11:1e:48:bb:bc:77:71:02:91:ce:65:c3:
a0:05:87:24:30:a5:64:8f:68:ed:f9:59:a8:c5:5e:
87:34:34:d5:61:a6:e7:8d:d6:b5:13:88:ce:4b:5d:
a0:e5:07:fa:11:d4:4a:76:d4:c0:6b:52:1c:cf:3f:
45:ae:ae:83:59:18:54:9e:58:65:ab:cb:39:30:38:
01:bc:27:d0:ff:18:1b:06:7c:f2:d8:13:d6:b5:3b:
c2:b7:9e:dd:2d:ba:04:21:fc:c0:d6:95:f1:18:ac:
9d:35:19:ed:10:47:08:68:78:f2:53:ed:30:f3:c1:
71:56:ba:d5:9a:e1:17:1e:a9:a2:f2:68:51:01:95:
63:51:09:1b:e2:36:02:b8:2a:2c:d1:ab:5f:58:30:
42:12:d8:42:86:0d:88:db:d6:be:84:ee:91:b2:c7:
c5:33:12:c2:db:95:c7:50:77:35:6f:9b:f0:65:db:
bc:5e:10:71:19:12:ae:24:96:d2:5d:d5:bf:3f:d8:
5c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:05:1D:CF:9F:D3:94:36:00:55:B4:86:2F:2C:BB:2E:26:62:7D:AA
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/TwUdz5_TlDYAVbSGLyy7LiZifao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.120.7.0/24
185.122.56.0/22
185.133.192.0/24
IPv6:
2a06:82c2::/48
Signature Algorithm: sha256WithRSAEncryption
40:d3:9a:d3:95:bb:84:6e:ae:c6:c4:e1:74:5a:42:e3:f9:07:
b9:8f:46:ef:e9:d2:a7:de:57:f4:b3:b6:c5:03:2f:0f:77:a1:
d7:ce:6b:93:70:b1:55:d6:42:7a:4a:29:a3:65:ce:fc:49:7c:
5a:95:13:ef:67:da:da:0a:be:7e:b6:8e:03:42:f2:52:26:42:
a9:53:cb:bd:b9:c3:8c:5d:f1:ec:70:9c:d4:db:ab:ef:41:a1:
70:12:f1:75:2c:32:56:ab:66:c7:a1:56:b8:3f:75:ae:07:2a:
5c:d4:01:16:07:92:e1:d2:21:bc:e8:2a:fd:6f:21:50:77:be:
06:0e:c7:05:ec:02:7b:fa:28:f7:c7:4f:5c:b8:96:43:80:e9:
29:d9:98:c8:96:98:45:5b:55:f6:48:49:7c:90:1f:57:92:91:
3e:2c:62:e0:74:7e:83:c0:92:ae:6b:e9:34:cd:ea:82:30:a1:
cd:0e:56:59:44:7b:37:3f:58:28:a5:59:f6:1c:28:87:07:80:
77:52:3b:ca:9d:ae:64:ce:97:ed:22:60:1f:c5:29:2e:bf:09:
9a:a3:12:19:54:2c:bd:d3:43:d7:e3:8d:2a:2b:f0:cf:80:00:
d6:11:94:bf:4f:16:0e:fc:b7:2c:09:f1:c0:fe:47:76:fc:4e:
4f:7a:3d:ee
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIEGNK+oDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDIy
MDE0NTgwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGYwNTFkY2Y5ZmQz
OTQzNjAwNTViNDg2MmYyY2JiMmUyNjYyN2RhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN6sZA4tCR1VXJZ93QRoeIAC1iAdUAfVhfhxo7tMCVeHFhkb
eweg3xga/bB5vP2Du2+A9p/cyvLbzaJiVfNhER5Iu7x3cQKRzmXDoAWHJDClZI9o
7flZqMVehzQ01WGm543WtROIzktdoOUH+hHUSnbUwGtSHM8/Ra6ug1kYVJ5YZavL
OTA4Abwn0P8YGwZ88tgT1rU7wree3S26BCH8wNaV8RisnTUZ7RBHCGh48lPtMPPB
cVa61ZrhFx6povJoUQGVY1EJG+I2ArgqLNGrX1gwQhLYQoYNiNvWvoTukbLHxTMS
wtuVx1B3NW+b8GXbvF4QcRkSriSW0l3Vvz/YXFsCAwEAAaOCAiwwggIoMB0GA1Ud
DgQWBBRPBR3Pn9OUNgBVtIYvLLsuJmJ9qjAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L1R3VWR6NV9UbERZQVZiU0dMeXk3TGlaaWZhby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBC
BggrBgEFBQcBBwEB/wQzMDEwHgQCAAEwGAMEALl1FgMEALl4BwMEArl6OAMEALmF
wDAPBAIAAjAJAwcAKgaCwgAAMA0GCSqGSIb3DQEBCwUAA4IBAQBA05rTlbuEbq7G
xOF0WkLj+Qe5j0bv6dKn3lf0s7bFAy8Pd6HXzmuTcLFV1kJ6SimjZc78SXxalRPv
Z9raCr5+to4DQvJSJkKpU8u9ucOMXfHscJzU26vvQaFwEvF1LDJWq2bHoVa4P3Wu
Bypc1AEWB5Lh0iG86Cr9byFQd74GDscF7AJ7+ij3x09cuJZDgOkp2ZjIlphFW1X2
SEl8kB9XkpE+LGLgdH6DwJKua+k0zeqCMKHNDlZZRHs3P1gopVn2HCiHB4B3UjvK
na5kzpftImAfxSkuvwmaoxIZVCy900PX440qK/DPgADWEZS/TxYO/LcsCfHA/kd2
/E5Pej3u
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org