Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vsdgRWrW9p02GjTONya7EYl5GEg.roa
File: vsdgRWrW9p02GjTONya7EYl5GEg.roa (raw, json)
Hash identifier: tI/8NTamjqedJhUDiSA4FZBwAA3mIGTCfF7VmSipwPI=
Subject key identifier: BE:C7:60:45:6A:D6:F6:9D:36:1A:34:CE:37:26:BB:11:89:79:18:48
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18996A9A
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vsdgRWrW9p02GjTONya7EYl5GEg.roa
Signing time: Fri 04 Feb 2022 00:39:09 +0000
ROA not before: Fri 04 Feb 2022 00:39:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.133.192.0/24 maxlen: 24
185.120.7.0/24 maxlen: 24
185.117.22.0/24 maxlen: 24
185.122.56.0/24 maxlen: 24
185.122.57.0/24 maxlen: 24
185.122.58.0/24 maxlen: 32
185.122.56.0/22 maxlen: 32
185.122.59.0/24 maxlen: 32
2a06:82c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412707482 (0x18996a9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 4 00:39:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bec760456ad6f69d361a34ce3726bb1189791848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:37:6d:12:b8:0b:e4:e4:7f:bb:d9:89:54:d9:
d7:d0:b3:36:6d:ab:4a:29:5d:a4:9a:ca:a0:b9:bf:
17:f6:52:a4:b6:06:a2:db:f1:8a:88:0d:ce:b3:65:
00:f2:32:c6:67:c3:39:a4:2a:7a:b9:6b:c1:eb:46:
a2:ea:ba:70:6a:66:6b:61:0a:38:56:58:ca:00:44:
18:b3:ae:72:0a:6f:ab:66:56:32:18:48:7d:4d:8b:
94:d6:07:f3:2e:12:a2:dd:07:b6:bd:31:5b:d9:8f:
e9:c2:9d:6e:5c:1a:a8:42:bf:9c:fa:ad:41:24:8e:
db:cd:73:b6:8b:8a:ed:5a:33:61:85:bd:85:81:c3:
17:99:44:31:df:10:9c:22:39:cb:67:2d:f2:73:cc:
3d:1b:26:68:40:0d:13:07:96:29:58:ae:14:7d:b4:
87:0d:8b:4d:64:9f:20:d1:1e:6c:fb:83:bc:49:eb:
98:36:de:ca:0b:17:f8:69:83:5d:ab:af:ae:ff:14:
03:30:58:e8:e5:28:58:ea:bf:4e:65:ed:7e:4a:49:
84:0a:d0:bf:68:30:5e:4c:ec:b3:60:c8:11:a4:20:
13:ab:3a:bd:3a:ca:d1:a1:78:55:21:2d:74:92:f7:
56:37:3b:26:04:12:01:0c:6a:ff:85:4b:9e:36:38:
4f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C7:60:45:6A:D6:F6:9D:36:1A:34:CE:37:26:BB:11:89:79:18:48
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vsdgRWrW9p02GjTONya7EYl5GEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.120.7.0/24
185.122.56.0/22
185.133.192.0/24
IPv6:
2a06:82c2::/48
Signature Algorithm: sha256WithRSAEncryption
3c:29:59:15:3c:8c:a2:2d:10:b3:c4:8f:b5:3c:85:a7:43:6d:
e1:fe:e6:68:d5:db:b3:d4:6a:ef:77:f7:06:08:22:21:c6:e5:
de:a2:db:69:2a:af:d0:43:b7:a8:20:17:62:47:e9:d8:eb:53:
8a:a8:d8:05:e5:49:d7:3f:96:8a:de:ae:1c:b0:9c:ab:8d:b0:
fa:eb:b6:7f:41:ed:7e:09:49:37:f8:b8:fb:97:74:42:37:23:
d1:dd:8c:b5:aa:54:f7:02:e5:ae:16:2a:e7:13:97:ca:d8:fd:
c9:22:ab:c7:a5:0e:21:21:54:b5:2f:01:96:7d:ac:70:3e:2f:
d3:24:33:12:17:9b:f2:ea:37:0d:c9:ca:5b:1b:ca:53:3f:15:
42:aa:9b:ac:b6:9b:e8:86:5c:0a:36:f1:f2:42:9b:df:4b:9a:
27:83:db:46:7a:3a:cc:ba:fc:52:22:0f:20:34:db:f3:02:74:
24:d0:44:57:25:1a:b9:60:e5:7d:71:86:c1:c2:7b:e6:8f:27:
87:eb:9f:34:32:a8:a7:a1:97:c1:f8:47:6d:29:6b:f1:f1:5b:
ac:9b:aa:e6:f9:36:37:f6:38:57:73:1f:e0:15:da:4d:cc:ba:
17:c8:91:48:0e:24:03:f4:57:0d:3e:c4:0e:91:e2:af:44:29:
cf:71:32:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:33 2024 by rpki-client on console-ams.rpki-client.org