Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/1-P9Ko3BcBlLkxUXZ_i2qJWnYsVA.roa
File: 1-P9Ko3BcBlLkxUXZ_i2qJWnYsVA.roa (raw, json)
Hash identifier: 9rcPFiPEHfGE8L7FQ8HvC5itzVvOtZNqvYsa1hwKx3Q=
Subject key identifier: F8:FF:4A:A3:70:5C:06:52:E4:C5:45:D9:FE:2D:AA:25:69:D8:B1:50
Certificate issuer: /CN=6fbbb5ec127a0632d226af07fac9c4d284bd1bac
Certificate serial: 0B21901C
Authority key identifier: 6F:BB:B5:EC:12:7A:06:32:D2:26:AF:07:FA:C9:C4:D2:84:BD:1B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b7u17BJ6BjLSJq8H-snE0oS9G6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/1-P9Ko3BcBlLkxUXZ_i2qJWnYsVA.roa
Signing time: Sat 01 Jan 2022 06:54:30 +0000
ROA not before: Sat 01 Jan 2022 06:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204281
IP address blocks: 94.26.86.0/23 maxlen: 24
94.26.96.0/24 maxlen: 24
94.26.94.0/24 maxlen: 24
94.26.100.0/24 maxlen: 24
94.26.102.0/24 maxlen: 24
94.26.108.0/24 maxlen: 24
94.26.30.0/24 maxlen: 24
94.26.26.0/24 maxlen: 24
94.26.45.0/24 maxlen: 24
94.26.66.0/24 maxlen: 24
94.26.72.0/24 maxlen: 24
94.26.75.0/24 maxlen: 24
94.26.74.0/23 maxlen: 24
94.26.4.0/22 maxlen: 24
94.26.8.0/21 maxlen: 24
185.108.140.0/22 maxlen: 24
94.26.10.0/24 maxlen: 24
94.26.16.0/21 maxlen: 24
2a01:b760::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186748956 (0xb21901c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fbbb5ec127a0632d226af07fac9c4d284bd1bac
Validity
Not Before: Jan 1 06:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8ff4aa3705c0652e4c545d9fe2daa2569d8b150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ce:3b:c6:26:38:68:50:ce:93:b4:60:0d:cd:
27:34:b6:48:4e:f4:e9:de:b0:3f:50:ca:17:09:71:
b8:be:de:f4:48:38:03:ff:2a:e4:37:12:1e:ad:69:
04:80:f4:b6:a2:6f:83:b1:c7:44:d7:10:ec:e3:ce:
cc:31:3f:dd:f0:1d:e6:62:42:95:d0:08:66:4a:f3:
53:05:c9:22:e8:35:a6:7c:1b:fb:ac:45:0d:7c:34:
56:46:6f:a7:0a:a2:cc:68:bc:55:cf:d7:85:c0:4e:
f9:eb:86:f4:5a:0d:20:18:2d:22:d2:a8:d0:b3:95:
f1:36:b4:40:84:73:d0:9a:23:94:31:96:18:93:0b:
84:36:ca:85:fe:85:97:66:6b:29:d3:3f:f5:b2:72:
2c:5a:86:66:5c:40:79:72:bd:28:d4:41:2a:f0:9d:
88:9e:b4:7e:6f:bd:f4:67:a0:c0:24:31:b2:e6:17:
27:2f:03:f7:ad:24:5d:02:6f:91:65:5f:49:f2:4f:
26:5a:d8:b6:0a:48:14:49:75:9c:4f:53:b4:25:51:
2f:f5:91:6b:bd:42:6e:a8:43:69:42:10:66:59:45:
d2:54:ae:53:e8:cf:7f:ec:f0:f4:0a:40:64:a0:6a:
18:93:66:3d:41:fe:9b:dc:a2:e9:3f:c0:45:88:e6:
f7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FF:4A:A3:70:5C:06:52:E4:C5:45:D9:FE:2D:AA:25:69:D8:B1:50
X509v3 Authority Key Identifier:
keyid:6F:BB:B5:EC:12:7A:06:32:D2:26:AF:07:FA:C9:C4:D2:84:BD:1B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7u17BJ6BjLSJq8H-snE0oS9G6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/1-P9Ko3BcBlLkxUXZ_i2qJWnYsVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/364e27-57f0-46a7-939a-654908384dd8/1/b7u17BJ6BjLSJq8H-snE0oS9G6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.26.4.0-94.26.23.255
94.26.26.0/24
94.26.30.0/24
94.26.45.0/24
94.26.66.0/24
94.26.72.0/24
94.26.74.0/23
94.26.86.0/23
94.26.94.0/24
94.26.96.0/24
94.26.100.0/24
94.26.102.0/24
94.26.108.0/24
185.108.140.0/22
IPv6:
2a01:b760::/32
Signature Algorithm: sha256WithRSAEncryption
a6:e9:44:37:f1:38:97:8d:7c:fa:ad:b6:7c:64:de:06:d4:bd:
82:0c:4a:79:1f:ff:1b:d6:3b:dd:49:8c:35:56:b2:ea:59:c5:
69:28:c6:7b:82:7b:e7:d0:8f:83:ed:a5:c3:fa:45:fb:84:70:
88:97:27:ae:a3:8d:f2:c5:0e:05:d9:c9:2a:09:85:be:d4:e2:
56:ee:1f:4f:44:5a:40:bd:ba:a2:ad:52:7d:23:7c:f7:32:ef:
17:7c:a7:4c:02:67:80:8e:d2:6d:f1:f9:b4:14:3b:49:f4:e7:
af:d0:c5:61:07:ac:af:3f:9c:ad:2c:ea:91:4e:60:47:f2:ca:
b3:0c:77:d6:e4:30:36:ec:f2:6e:25:cd:d3:c9:ba:66:62:7b:
a8:bd:12:d0:de:06:b2:8c:54:a3:05:25:af:e5:8a:f1:5f:40:
7f:f8:7c:11:70:6f:10:3d:14:c6:19:95:41:4b:66:61:84:02:
a3:c8:a6:a2:34:42:0a:9f:4f:7a:28:b5:f3:9e:fd:50:d6:87:
ad:98:56:49:6a:18:53:15:99:45:0c:e0:b0:97:32:3b:c4:05:
15:55:ad:fe:c7:b1:da:85:5b:7b:7a:1f:a5:25:d7:20:5f:7d:
36:e7:54:ce:27:c2:c6:c5:c4:eb:fc:86:20:4d:6d:d0:1c:00:
8c:76:b4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:30 2024 by rpki-client on console-fra.rpki-client.org