Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Uq_SI_PmMlzFobRfRi9t--3YmkY.roa
File: Uq_SI_PmMlzFobRfRi9t--3YmkY.roa (raw, json)
Hash identifier: TPybtJV+7CY+kcPlDyaQqQ6yH4KetqK2uOt2Tz5ARTo=
Subject key identifier: 52:AF:D2:23:F3:E6:32:5C:C5:A1:B4:5F:46:2F:6D:FB:ED:D8:9A:46
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 187BA10E
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Uq_SI_PmMlzFobRfRi9t--3YmkY.roa
Signing time: Sun 30 Jan 2022 09:30:11 +0000
ROA not before: Sun 30 Jan 2022 09:30:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.133.192.0/24 maxlen: 24
185.120.7.0/24 maxlen: 24
185.117.22.0/24 maxlen: 24
185.122.56.0/24 maxlen: 24
185.122.57.0/24 maxlen: 24
185.122.59.0/24 maxlen: 32
2a06:82c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410755342 (0x187ba10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 30 09:30:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52afd223f3e6325cc5a1b45f462f6dfbedd89a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:58:35:98:bd:ef:6b:98:61:9f:99:27:61:bd:
d6:69:a5:cb:9e:e1:a6:77:f8:d8:3a:ba:3b:c6:81:
9a:73:b6:4d:7c:17:9b:a1:4c:4c:ef:39:f8:aa:fd:
91:06:a2:54:29:83:00:ed:f3:18:4c:40:5f:c9:22:
26:64:b9:f1:da:6f:78:e0:92:0e:ea:d2:b6:59:0f:
66:73:ab:8f:6c:36:30:be:b4:15:0b:88:d7:84:16:
c1:3b:13:76:1f:13:39:d9:e1:06:0f:80:db:4a:ae:
90:06:03:ad:14:6d:e6:6d:e8:a5:71:0b:46:4e:18:
eb:3a:be:c2:24:21:46:82:ee:97:84:19:5e:62:0b:
d4:3b:05:0c:e3:3c:19:4e:5a:de:e2:ef:5e:6b:55:
93:08:c2:48:38:d8:dd:de:73:3b:ae:01:53:d8:e9:
0f:8a:92:a3:f4:5f:7f:0c:4c:4d:ed:49:2a:11:57:
f9:8c:10:4d:af:35:0e:eb:41:a7:94:33:b0:ee:70:
52:c5:b9:52:00:29:38:78:19:29:c8:5f:62:6d:8e:
b5:b5:57:9c:69:67:ac:79:cb:5e:b2:96:1a:02:46:
ee:10:c8:ea:21:69:08:f3:9f:9b:15:c4:26:67:4e:
14:98:59:30:1d:2e:cd:ed:bf:b2:73:8b:ff:3c:3d:
35:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AF:D2:23:F3:E6:32:5C:C5:A1:B4:5F:46:2F:6D:FB:ED:D8:9A:46
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Uq_SI_PmMlzFobRfRi9t--3YmkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.120.7.0/24
185.122.56.0/23
185.122.59.0/24
185.133.192.0/24
IPv6:
2a06:82c2::/48
Signature Algorithm: sha256WithRSAEncryption
23:43:55:94:a8:0d:44:db:c1:05:f7:ce:b7:d3:db:e0:c0:e1:
45:a6:e0:eb:e0:d9:91:4b:ce:52:f5:09:6d:11:80:54:ab:8e:
48:c0:f5:0f:c6:36:b0:de:fa:14:6e:ab:21:70:78:d6:fb:fd:
63:70:f0:d7:3b:44:92:63:3a:75:02:98:5f:74:af:70:9f:0d:
ec:fd:c2:9d:02:fb:f6:c3:39:6c:3f:4f:e8:75:a8:1f:36:31:
83:4f:2f:9f:28:76:a5:dc:44:ac:7f:db:69:8f:99:9a:e5:04:
af:34:91:1f:df:3c:28:05:ad:a4:3d:27:73:84:48:0c:f8:cc:
d1:34:d0:80:ce:d2:93:ec:71:e5:2b:e5:40:58:13:45:b9:09:
13:09:c9:76:03:4d:a2:9e:8e:ab:66:7d:4d:f8:4b:c5:9f:cb:
39:15:fd:e3:c9:1e:ec:95:f5:99:31:e5:57:37:92:39:78:96:
6e:f5:1f:e4:63:40:cc:7a:af:d0:64:d4:71:47:0c:cd:6b:b7:
7f:e9:b3:99:09:ed:7b:7f:f5:e0:dc:b3:53:85:46:2d:91:2f:
49:d0:e3:02:c7:54:87:73:25:fe:ca:f4:7a:f9:48:44:b4:0b:
6a:d2:a3:c5:47:f4:3e:0f:c6:03:e5:a1:0f:a3:b9:dc:08:bf:
fd:b2:62:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org