Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UhsP5euQSVUIlPZzjN20fI730Vc.roa
File: UhsP5euQSVUIlPZzjN20fI730Vc.roa (raw, json)
Hash identifier: uNKdyqQYnDeR7r6ANkSlJZuqk6XBXWeoiMWy89N2PiE=
Subject key identifier: 52:1B:0F:E5:EB:90:49:55:08:94:F6:73:8C:DD:B4:7C:8E:F7:D1:57
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18490DE1
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UhsP5euQSVUIlPZzjN20fI730Vc.roa
Signing time: Wed 19 Jan 2022 00:45:30 +0000
ROA not before: Wed 19 Jan 2022 00:45:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7489
IP address blocks: 185.133.192.0/24 maxlen: 24
185.120.7.0/24 maxlen: 24
185.117.22.0/24 maxlen: 24
185.122.56.0/24 maxlen: 24
185.122.57.0/24 maxlen: 24
185.122.58.0/24 maxlen: 24
185.122.56.0/22 maxlen: 24
185.122.59.0/24 maxlen: 24
2a06:8e00::/48 maxlen: 48
2a06:8ec0:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407440865 (0x18490de1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 19 00:45:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=521b0fe5eb9049550894f6738cddb47c8ef7d157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:78:e4:fb:d4:32:05:29:d7:74:10:66:c5:51:
66:0b:35:b8:46:0c:d5:fa:f1:18:d7:0b:9f:36:e6:
c6:be:07:40:e5:91:b6:15:4a:31:e5:32:f8:c9:78:
70:19:92:af:4e:61:32:f7:68:55:79:9f:ac:ed:64:
04:a7:de:52:aa:66:db:cc:7a:94:95:36:24:40:87:
c9:88:a5:6b:fc:66:a3:0d:9d:60:02:a4:61:66:ad:
eb:ef:c0:df:2e:f3:ab:9c:1f:d7:1c:70:16:01:8d:
94:ac:31:c0:76:b5:35:15:a5:ee:9f:03:76:67:8a:
8f:25:5a:42:e3:3c:f8:21:87:14:a5:e5:9a:28:cc:
50:68:90:c2:2d:12:b6:2d:df:3f:10:aa:8d:c1:03:
81:01:f9:aa:a6:35:6c:b1:0d:22:bf:5d:1a:96:37:
0c:14:f0:89:68:31:a6:6a:f5:49:3b:b7:9e:39:98:
de:0c:a6:53:11:cf:42:7d:f7:d9:65:0b:5e:cc:be:
88:58:eb:c3:68:85:e1:ee:b0:47:e9:10:a1:0b:3f:
98:e9:5d:0e:9a:79:bc:da:7a:05:1b:32:be:05:10:
0d:7e:50:bc:83:4b:28:bf:08:00:5c:92:f5:89:a7:
6f:07:3f:d9:ba:1d:28:84:07:42:eb:9d:ee:f3:24:
5c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1B:0F:E5:EB:90:49:55:08:94:F6:73:8C:DD:B4:7C:8E:F7:D1:57
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UhsP5euQSVUIlPZzjN20fI730Vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.120.7.0/24
185.122.56.0/22
185.133.192.0/24
IPv6:
2a06:8e00::/48
2a06:8ec0:3::/48
Signature Algorithm: sha256WithRSAEncryption
b9:a3:03:f4:df:f3:27:9b:27:a8:20:50:79:31:5a:07:d9:6d:
93:9a:37:d3:3e:d6:3c:e3:bf:d4:ed:7d:9d:d6:d3:6b:c3:95:
13:c0:61:7d:bd:bd:2b:68:db:e8:47:e6:ea:76:91:fc:bd:67:
84:0c:34:e4:e2:41:a7:6b:13:07:1b:9c:70:79:6b:8f:61:c9:
a3:fb:b3:29:1e:12:4a:55:c2:dd:57:30:66:aa:f9:9e:25:a6:
45:b5:9d:eb:c0:1c:a9:de:06:bc:02:0d:2c:45:4a:a4:95:65:
73:9c:19:81:dd:26:3c:b0:0e:87:dd:99:86:b2:c2:21:3d:6d:
ab:01:f4:24:25:de:6e:d1:b2:52:c6:41:2f:54:ab:23:a4:8e:
a8:73:02:b6:11:5c:7c:e3:c6:a5:3d:e4:80:5b:5f:3e:0f:1d:
5a:33:51:ff:d3:6c:27:0b:3f:f8:e2:21:63:77:9e:2c:05:90:
40:ff:f9:de:fc:cd:50:e6:a3:38:ef:4e:ed:4b:e5:59:50:85:
6d:e1:54:3c:ff:21:37:e7:98:ed:bb:e0:b4:64:48:41:d1:04:
03:d0:36:64:36:26:f6:da:51:56:f4:f7:4d:06:a8:5f:a4:0f:
6d:93:80:14:3a:87:e1:70:53:15:42:27:57:f7:28:d4:57:74:
31:7e:e2:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org