Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/6QP5UDhrJdAOwnmtHbvk56xvyVc.roa
File: 6QP5UDhrJdAOwnmtHbvk56xvyVc.roa (raw, json)
Hash identifier: e4P7d+QYDE9y0WD6N7mUkkWN/7/XxTEbvkjAWH7H9qw=
Subject key identifier: E9:03:F9:50:38:6B:25:D0:0E:C2:79:AD:1D:BB:E4:E7:AC:6F:C9:57
Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108
Certificate serial: 01850AB8ACE8CCEADA9A69A15C816CDA76ED
Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/6QP5UDhrJdAOwnmtHbvk56xvyVc.roa
Signing time: Tue 13 Dec 2022 09:02:33 +0000
ROA not before: Tue 13 Dec 2022 09:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44933
IP address blocks: 77.70.164.0/22 maxlen: 22
193.220.184.0/22 maxlen: 22
193.220.188.0/24 maxlen: 24
193.220.191.0/24 maxlen: 24
193.220.192.0/20 maxlen: 24
2a02:6604:3::/48 maxlen: 48
2a02:6600:2003::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:b8:ac:e8:cc:ea:da:9a:69:a1:5c:81:6c:da:76:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896a82a725ed22bb46847ae568912078de25c108
Validity
Not Before: Dec 13 09:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e903f950386b25d00ec279ad1dbbe4e7ac6fc957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:14:67:0f:c4:84:2e:fc:34:64:94:81:bf:89:
b0:93:02:b6:03:a4:4a:b8:ca:e3:46:df:71:89:b1:
7f:31:43:db:84:ca:0b:4a:8e:1a:10:37:6c:df:44:
fe:94:9e:56:f0:5a:63:de:51:ec:4d:ea:2e:fd:29:
66:7c:fd:41:b9:9a:1c:13:a6:ff:7b:71:c7:44:9f:
99:34:81:80:18:b5:d7:b2:d9:f5:0d:91:6e:f4:d9:
93:5f:d5:42:96:55:63:0a:10:13:31:43:c6:ad:9b:
04:97:7f:71:e4:10:be:99:84:f4:78:dd:be:59:87:
a1:f7:29:d7:0a:4b:49:61:1f:23:fa:23:14:d7:04:
30:02:20:42:ae:25:fb:a0:16:73:fe:87:85:f6:06:
8a:c6:8f:62:3b:cc:33:e6:ac:21:a1:ce:7f:eb:8f:
c2:cf:92:3e:b2:6b:a5:39:30:49:5c:04:74:f1:13:
89:ec:c3:65:99:c6:c0:f0:4f:93:77:c2:95:64:78:
c5:96:54:16:c5:a5:70:1d:67:ef:20:87:26:8f:c0:
43:1e:a8:27:92:1f:8d:22:01:ec:8f:b0:64:ea:ab:
7d:fe:e7:ab:1b:a4:a3:e0:5d:60:85:59:ae:a1:f4:
6b:c1:e2:d6:29:71:b0:ac:e4:28:d1:4f:88:04:b3:
2b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:03:F9:50:38:6B:25:D0:0E:C2:79:AD:1D:BB:E4:E7:AC:6F:C9:57
X509v3 Authority Key Identifier:
keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/6QP5UDhrJdAOwnmtHbvk56xvyVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.70.164.0/22
193.220.184.0-193.220.188.255
193.220.191.0-193.220.207.255
IPv6:
2a02:6600:2003::/48
2a02:6604:3::/48
Signature Algorithm: sha256WithRSAEncryption
8e:07:9f:27:d5:2f:f1:75:ff:e6:75:ff:8e:ad:03:66:e3:d9:
3d:ed:0e:71:6d:e9:24:25:e1:34:6e:c2:22:34:7a:d4:ec:9a:
8c:c3:e0:d2:91:ca:bc:41:7d:3e:96:24:c2:51:08:6e:b7:62:
21:1e:a3:16:9d:b3:c7:cc:c7:d0:a9:b2:52:b6:d6:f9:94:4d:
24:16:f8:bc:ec:9f:e9:00:fa:bf:7f:2d:dd:ba:65:9c:b5:fc:
4f:62:f2:04:9e:d4:c1:5f:7e:49:6a:fe:0a:12:97:2b:bc:c9:
2f:9e:79:bb:f9:03:cf:f8:b7:18:ed:97:4a:fe:97:1b:93:fc:
07:cb:43:90:36:86:da:68:90:7d:d9:c6:d5:77:1a:f5:5c:33:
dd:02:92:16:40:73:43:52:81:05:c4:83:f0:7c:63:39:ee:d6:
ee:3b:29:c2:20:3b:11:58:b7:49:89:fb:11:20:00:4f:3d:48:
55:d6:b4:69:bb:37:3f:ea:a6:70:d0:14:eb:98:9f:60:5a:08:
e2:71:2b:0b:5a:cd:1e:02:62:58:20:a5:fa:ce:f3:cf:68:b2:
41:73:17:ef:a5:47:a1:17:bd:34:32:3c:9f:8c:d1:d5:33:f9:
47:e6:5b:52:e2:3a:fd:23:0d:e0:d5:5d:ea:a5:59:9f:37:ef:
be:7b:d5:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:53 2024 by rpki-client on console-fra.rpki-client.org