Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/uPjxBsSHqJ6Th5jnjJJg34QGIiY.roa
File: uPjxBsSHqJ6Th5jnjJJg34QGIiY.roa (raw, json)
Hash identifier: YF3H6w3yr7BFSwPTl1llJm4K4Et5aR1FEpJFJQ65BEc=
Subject key identifier: B8:F8:F1:06:C4:87:A8:9E:93:87:98:E7:8C:92:60:DF:84:06:22:26
Certificate issuer: /CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Certificate serial: 0182C4F2FF3DBC2B311FE1C64CF1C38A1DFD
Authority key identifier: 54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/uPjxBsSHqJ6Th5jnjJJg34QGIiY.roa
Signing time: Mon 22 Aug 2022 09:47:15 +0000
ROA not before: Mon 22 Aug 2022 09:47:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35394
IP address blocks: 185.143.96.0/22 maxlen: 22
185.220.44.0/22 maxlen: 22
185.196.56.0/22 maxlen: 22
185.186.28.0/22 maxlen: 22
185.172.168.0/22 maxlen: 22
185.236.168.0/22 maxlen: 22
185.240.232.0/22 maxlen: 22
130.185.88.0/21 maxlen: 21
185.93.152.0/22 maxlen: 22
193.27.246.0/23 maxlen: 23
193.27.248.0/23 maxlen: 23
193.161.220.0/22 maxlen: 22
185.245.176.0/22 maxlen: 22
80.67.44.0/22 maxlen: 22
213.217.24.0/22 maxlen: 22
185.79.36.0/22 maxlen: 22
194.61.16.0/22 maxlen: 22
45.85.136.0/22 maxlen: 22
185.93.44.0/22 maxlen: 22
185.217.204.0/22 maxlen: 22
185.72.44.0/22 maxlen: 22
2a03:3d60::/29 maxlen: 29
2a0c:8f80::/29 maxlen: 29
2a09:5000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c4:f2:ff:3d:bc:2b:31:1f:e1:c6:4c:f1:c3:8a:1d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Validity
Not Before: Aug 22 09:47:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8f8f106c487a89e938798e78c9260df84062226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ed:d5:ce:1b:98:4c:32:ce:9a:3f:26:3b:46:
d9:36:7d:2f:e1:fd:c3:c2:f9:0c:cb:22:c5:c7:d5:
6d:75:d2:6c:6b:47:84:31:41:6f:33:23:d0:32:7b:
fb:53:d4:ca:79:c0:d2:d1:79:f5:e5:b7:74:6c:8b:
62:2c:1c:c4:ea:6e:ee:35:93:c5:23:52:2f:71:37:
3a:2c:8c:9b:3c:58:52:b2:7c:19:38:19:16:1a:c8:
b2:d4:90:3b:c1:d0:bf:92:f7:7f:45:2e:57:5f:23:
1f:79:63:83:1a:58:e2:8b:1a:3a:72:86:aa:57:87:
98:76:10:b0:b9:1b:4c:d4:7c:ca:7b:8c:21:e7:5a:
1e:d6:0f:0b:32:4f:00:92:18:18:ba:93:f1:c7:ff:
ef:d0:4b:ba:f9:18:bc:24:d6:3d:43:1b:c2:5e:71:
70:c9:55:9f:c6:e1:c5:98:39:af:ba:33:f3:65:71:
45:0b:ec:1e:b3:e9:64:53:7b:6d:41:3e:e0:52:f8:
50:83:79:87:dd:a6:1c:ba:71:7c:2f:e3:ee:7f:c0:
cd:db:b2:62:08:1e:2b:59:b1:64:93:3a:3a:f8:49:
0c:a4:45:cd:80:7d:d5:48:8c:14:d2:07:5b:26:96:
85:3d:8c:81:16:90:44:06:48:e4:00:cb:73:12:f3:
7f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F8:F1:06:C4:87:A8:9E:93:87:98:E7:8C:92:60:DF:84:06:22:26
X509v3 Authority Key Identifier:
keyid:54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/uPjxBsSHqJ6Th5jnjJJg34QGIiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/VNb_E0vWVvDOFNQQsCvsVR62miw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.136.0/22
80.67.44.0/22
130.185.88.0/21
185.72.44.0/22
185.79.36.0/22
185.93.44.0/22
185.93.152.0/22
185.143.96.0/22
185.172.168.0/22
185.186.28.0/22
185.196.56.0/22
185.217.204.0/22
185.220.44.0/22
185.236.168.0/22
185.240.232.0/22
185.245.176.0/22
193.27.246.0-193.27.249.255
193.161.220.0/22
194.61.16.0/22
213.217.24.0/22
IPv6:
2a03:3d60::/29
2a09:5000::/29
2a0c:8f80::/29
Signature Algorithm: sha256WithRSAEncryption
5d:58:c9:a5:ce:65:3b:80:c7:70:53:5d:43:b9:f8:da:6c:4f:
0a:39:0e:02:25:1a:70:3d:1c:90:93:8d:70:b6:61:8b:f7:a4:
76:c5:b9:5f:17:bf:64:bd:ac:3d:20:ee:2b:ed:a9:52:57:04:
61:e7:72:15:2a:42:95:8e:6d:e9:f3:6e:f9:27:34:8e:97:0a:
d4:a4:e7:4a:12:c8:6e:2c:10:3a:cd:ba:4d:1c:6a:c9:2d:0a:
f7:65:a8:9c:5d:4e:7f:7f:ac:36:e7:3b:91:64:67:ca:1c:de:
af:67:80:07:b1:21:b9:62:c5:cf:a2:fd:de:c0:1b:ad:69:06:
61:ff:e5:49:45:54:49:e6:7e:94:7d:a7:9e:22:98:f3:98:5e:
1d:10:0f:68:46:fd:c3:2c:c9:bb:79:8d:70:87:2d:2e:fb:70:
cc:f0:86:1a:54:a3:70:d6:57:ca:ac:10:de:61:e9:90:b1:87:
8a:e2:11:f9:b0:81:5a:aa:83:59:76:71:fb:ff:6c:2a:b2:00:
9d:33:9e:49:6d:54:a1:8d:e9:ba:81:62:e8:7f:b1:1c:17:cd:
4f:ad:ce:9c:5d:bc:a9:ab:51:c8:5f:2d:f3:09:9f:ac:01:ae:
fd:82:69:98:64:4b:6b:ee:20:02:8a:7a:e0:13:23:94:e6:7d:
94:9f:f7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:32 2024 by rpki-client on console-ams.rpki-client.org