Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6E7QrNWaV3UhJbe3tdMxwi_X1S4.roa
File: 6E7QrNWaV3UhJbe3tdMxwi_X1S4.roa (raw, json)
Hash identifier: WvfY9sSL1zLCiCxDNC6KutgrB9CEuugZY+zIb5DUXQ8=
Subject key identifier: E8:4E:D0:AC:D5:9A:57:75:21:25:B7:B7:B5:D3:31:C2:2F:D7:D5:2E
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 1A76B0AF
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6E7QrNWaV3UhJbe3tdMxwi_X1S4.roa
Signing time: Sat 01 Jan 2022 05:57:28 +0000
ROA not before: Sat 01 Jan 2022 05:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 213.173.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443986095 (0x1a76b0af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Jan 1 05:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e84ed0acd59a57752125b7b7b5d331c22fd7d52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:58:c3:49:eb:24:2e:e2:c1:c5:00:c8:ce:97:
b1:ae:e0:8a:fc:a9:9c:ac:e5:9e:db:03:17:10:0e:
da:0c:c0:91:9a:7e:b3:cd:c6:b9:7a:b8:f5:c4:d0:
68:05:0b:e6:a4:53:33:93:a9:98:a6:87:91:6c:85:
ad:c3:4c:d4:07:43:45:d2:75:8e:f4:76:23:cf:9a:
21:6b:00:e4:0e:9b:f1:3a:3b:aa:57:a5:56:a0:e2:
d9:3a:de:50:28:12:5f:f1:3d:47:e6:bd:16:77:89:
31:32:a9:6b:68:2e:05:ee:37:de:ec:2d:5c:1d:87:
01:ae:99:0c:7c:2d:06:02:93:31:24:64:21:ba:4c:
3d:cd:e7:ea:e8:c2:23:8c:21:cb:74:59:e7:ac:f8:
33:2c:57:87:70:76:dd:b1:80:7a:bc:8c:0d:14:b9:
c2:31:5c:08:c6:11:ff:78:4c:9b:4d:0b:94:2c:52:
9a:a3:04:92:33:84:cf:69:c0:c8:0d:95:b7:78:90:
24:61:9e:b1:8a:27:9a:44:c6:24:80:c1:6e:88:49:
2e:92:eb:21:c6:e0:d5:9c:96:f2:d6:03:b1:7f:65:
2b:23:0d:66:15:86:f2:bc:fa:bc:f0:28:4c:cd:c2:
f4:5e:4e:ff:9a:8f:01:6c:a3:a5:72:8e:ab:ac:3b:
b5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:4E:D0:AC:D5:9A:57:75:21:25:B7:B7:B5:D3:31:C2:2F:D7:D5:2E
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/6E7QrNWaV3UhJbe3tdMxwi_X1S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.60.0/22
Signature Algorithm: sha256WithRSAEncryption
85:4e:8a:3f:8f:37:b3:c4:f9:a4:72:fc:e1:ff:0b:5c:b6:10:
10:a2:38:6c:b5:b1:50:b5:06:0b:c5:55:b9:b8:98:2d:07:e6:
e3:52:8b:1c:f6:b6:59:85:b3:ab:97:d2:7b:77:32:e3:5e:93:
eb:0f:62:68:56:d7:57:2e:73:28:90:9c:75:40:2c:c1:6c:ed:
04:fa:79:4e:27:ba:9b:17:21:9c:f4:12:84:37:82:47:ba:9c:
a6:93:c9:06:f2:12:87:48:dd:1c:0b:de:1f:22:db:be:89:59:
7f:b8:91:47:bc:1c:54:66:44:62:06:d7:3c:77:8a:c1:68:ca:
02:02:fd:25:8b:ae:3f:ef:84:ed:9b:f2:20:ff:ea:22:12:c6:
b0:52:98:84:2a:93:32:a8:e5:e1:cd:ea:3c:72:e6:5c:8c:78:
1c:bf:5c:a0:10:22:f7:ae:6f:82:c1:7e:54:a7:9a:0a:aa:f9:
fb:02:72:87:72:22:5d:96:bf:71:f5:ab:71:97:c6:98:ec:32:
29:8d:a7:93:b5:5a:91:cb:b2:e1:29:6c:a6:5e:7c:c1:eb:9d:
b8:2c:45:1f:8b:6a:b0:17:e9:96:70:90:a5:6a:aa:ad:69:c2:
f5:f6:76:41:df:3c:15:3f:ce:63:15:4f:5c:78:d5:bd:b2:b2:
6a:de:8f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:53 2024 by rpki-client on console-ams.rpki-client.org