Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UWFwl8J3OYvRpNIWrjODQ3IQLco.roa
File: UWFwl8J3OYvRpNIWrjODQ3IQLco.roa (raw, json)
Hash identifier: Tn2c3Njt0hBQ3i73LOqGz1Nq+IT/T3jRbfzBaYXtHkI=
Subject key identifier: 51:61:70:97:C2:77:39:8B:D1:A4:D2:16:AE:33:83:43:72:10:2D:CA
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18BA3D25
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UWFwl8J3OYvRpNIWrjODQ3IQLco.roa
Signing time: Tue 15 Feb 2022 13:23:47 +0000
ROA not before: Tue 15 Feb 2022 13:23:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44103
IP address blocks: 185.142.142.0/24 maxlen: 32
194.34.230.0/24 maxlen: 32
45.93.119.0/24 maxlen: 32
185.249.217.0/24 maxlen: 32
2a06:8e01::/44 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414858533 (0x18ba3d25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 15 13:23:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51617097c277398bd1a4d216ae33834372102dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:98:6d:60:9c:78:53:a3:94:04:81:6a:06:56:
09:c4:25:07:74:31:eb:e7:f6:7f:fc:c1:9d:63:56:
05:e3:d9:a1:63:fe:9e:d1:84:f2:3a:0f:d1:59:1d:
ed:35:2f:e3:eb:47:a6:50:1a:21:42:1d:74:3f:e3:
40:fe:ed:c6:35:6b:c1:f3:97:d1:10:f4:33:1b:cb:
2b:2c:34:4c:1a:ad:57:94:85:d3:eb:ef:81:f6:da:
14:c1:d9:24:82:da:b7:28:36:db:16:b0:f6:9e:c8:
0f:25:06:56:54:ff:b5:6b:31:2a:b9:d8:ed:90:69:
31:8f:da:30:2d:a2:71:06:0b:5b:a8:f3:dd:59:71:
5c:36:87:fb:db:ad:12:2b:cf:ab:1d:43:40:7a:a4:
b6:3f:69:ab:fc:b0:82:07:9e:23:7a:bb:6e:29:cc:
87:7f:4f:d4:2c:a9:88:1b:3e:e9:c9:62:d2:72:d8:
82:a2:6d:63:39:c3:31:fb:79:ef:b0:2d:d7:ca:41:
d9:7e:53:f4:1b:71:b3:79:5f:64:fb:ea:eb:61:77:
34:3c:1d:6e:a4:20:1d:00:11:27:31:e4:b8:31:bc:
b2:20:b9:3d:12:74:da:c8:9b:51:44:2c:ce:17:ab:
e2:61:a5:e5:55:58:69:04:14:b3:94:d6:1f:90:a8:
49:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:61:70:97:C2:77:39:8B:D1:A4:D2:16:AE:33:83:43:72:10:2D:CA
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UWFwl8J3OYvRpNIWrjODQ3IQLco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.119.0/24
185.142.142.0/24
185.249.217.0/24
194.34.230.0/24
IPv6:
2a06:8e01::/44
Signature Algorithm: sha256WithRSAEncryption
1a:64:f7:8a:5d:a9:1d:aa:a0:dd:c8:41:c4:ee:74:84:57:91:
96:bc:cb:60:a0:0a:46:41:fb:54:22:de:99:2d:a6:e6:54:54:
5f:d5:be:c5:ff:b6:97:b3:1d:18:7c:37:c4:c6:8e:60:c2:a4:
a3:b5:82:e7:34:56:a4:26:db:eb:26:88:64:68:9e:2b:34:d5:
88:45:66:9c:f6:ba:11:53:6c:b6:4f:ce:75:4f:6c:a0:91:58:
e9:6a:bc:8d:f1:97:81:2a:d9:23:2f:a6:66:55:d9:a5:51:b1:
c8:57:8b:1c:52:d0:ae:df:9d:84:84:6d:2d:84:d0:50:1b:5c:
c2:3c:05:07:8a:78:cc:4a:17:d0:d2:f3:71:ee:17:08:62:ef:
df:4d:8f:c1:25:d3:13:48:3d:aa:d4:67:75:32:36:42:5e:66:
a5:ff:89:f7:fc:7b:f6:e5:54:97:6e:dc:a0:c4:96:e4:b6:4a:
4e:15:00:b3:8d:ae:14:ad:1a:b8:6a:25:ac:09:8b:5b:72:50:
8f:1d:b3:24:28:2a:35:bd:17:a3:3b:82:3e:64:a3:fd:e5:10:
13:79:8e:c9:08:fe:4d:47:3c:c3:4b:72:a7:8e:d9:e8:44:60:
aa:75:b3:9c:32:ea:ee:f6:91:6a:ef:da:fb:b8:45:da:f0:66:
97:7c:db:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org