Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/6mLMhlwgrFzLjrnJdg4m1f66SRc.roa
File: 6mLMhlwgrFzLjrnJdg4m1f66SRc.roa (raw, json)
Hash identifier: Z7bkCOfp8vpmX5xrBHDY2E3+mWoART8QHywavRnEZGM=
Subject key identifier: EA:62:CC:86:5C:20:AC:5C:CB:8E:B9:C9:76:0E:26:D5:FE:BA:49:17
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 018461D1FB27F993FF8D2E1D4B8B58EAADB3
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/6mLMhlwgrFzLjrnJdg4m1f66SRc.roa
Signing time: Thu 10 Nov 2022 13:54:21 +0000
ROA not before: Thu 10 Nov 2022 13:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43927
IP address blocks: 185.250.105.0/24 maxlen: 24
185.250.104.0/24 maxlen: 24
185.250.107.0/24 maxlen: 24
185.250.106.0/24 maxlen: 24
93.113.174.0/24 maxlen: 24
185.199.172.0/24 maxlen: 24
185.199.174.0/24 maxlen: 24
185.199.173.0/24 maxlen: 24
185.199.175.0/24 maxlen: 24
188.240.47.0/24 maxlen: 24
92.114.98.0/24 maxlen: 24
91.188.224.0/24 maxlen: 24
91.188.226.0/24 maxlen: 24
91.188.225.0/24 maxlen: 24
91.188.227.0/24 maxlen: 24
89.33.197.0/24 maxlen: 24
185.105.32.0/22 maxlen: 22
185.125.108.0/24 maxlen: 24
185.125.110.0/23 maxlen: 24
89.45.248.0/21 maxlen: 24
89.32.144.0/21 maxlen: 21
188.241.112.0/21 maxlen: 24
2a06:cd40:cafe::/48 maxlen: 48
2a06:cd40:2::/48 maxlen: 48
2a06:cd40:200::/48 maxlen: 48
2a06:cd40:100::/48 maxlen: 48
2a06:cd40:400::/48 maxlen: 48
2a06:cd40:300::/48 maxlen: 48
2a06:cd40:caff::/48 maxlen: 48
2a06:cd40:301::/48 maxlen: 48
2a06:cd40:1::/48 maxlen: 48
2a06:cd40:101::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:d1:fb:27:f9:93:ff:8d:2e:1d:4b:8b:58:ea:ad:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Nov 10 13:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea62cc865c20ac5ccb8eb9c9760e26d5feba4917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:72:f0:e7:0b:e3:b2:ff:94:c5:36:a6:87:c6:
03:f4:0f:ea:e6:75:35:94:95:e8:61:dd:a6:05:33:
3f:a7:6e:6f:fd:1a:f7:0f:4a:82:c9:25:b0:ed:25:
9f:f7:90:e4:93:0d:d8:ca:f8:96:67:1b:2c:9b:99:
11:51:ed:97:e1:87:4a:4e:f2:51:ee:8b:13:55:8a:
77:fa:bf:73:a3:8c:c1:35:70:06:40:38:ae:02:36:
f4:22:31:49:a8:8f:2d:2b:17:82:b8:0d:f1:d0:91:
eb:8a:3d:bb:4e:00:f0:27:eb:4f:b5:bf:a9:f9:89:
9a:e6:de:7b:97:fd:c1:39:39:cf:86:c3:6c:38:a7:
9d:23:94:95:84:f3:52:da:4f:b7:f2:97:f5:0d:c0:
ba:4e:3d:df:d6:2f:c1:fc:41:39:a5:13:c6:dd:28:
51:ce:bf:76:58:a0:a0:d3:6b:61:c6:d7:1c:1d:3e:
e4:7f:ed:e9:24:be:cb:3a:de:ba:80:ff:83:e6:c0:
7a:07:7e:92:96:13:17:9e:d3:b5:77:a6:fd:a7:d8:
f7:e6:8e:12:c8:1f:7d:78:0f:4e:0d:fb:64:46:c0:
f8:07:65:5d:0a:38:d5:69:d6:1c:66:89:84:b7:7b:
97:ae:e8:01:a6:0b:de:91:36:07:4c:8d:d7:b6:0e:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:62:CC:86:5C:20:AC:5C:CB:8E:B9:C9:76:0E:26:D5:FE:BA:49:17
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/6mLMhlwgrFzLjrnJdg4m1f66SRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.32.144.0/21
89.33.197.0/24
89.45.248.0/21
91.188.224.0/22
92.114.98.0/24
93.113.174.0/24
185.105.32.0/22
185.125.108.0/24
185.125.110.0/23
185.199.172.0/22
185.250.104.0/22
188.240.47.0/24
188.241.112.0/21
IPv6:
2a06:cd40:1::-2a06:cd40:2:ffff:ffff:ffff:ffff:ffff
2a06:cd40:100::/47
2a06:cd40:200::/48
2a06:cd40:300::/47
2a06:cd40:400::/48
2a06:cd40:cafe::/47
Signature Algorithm: sha256WithRSAEncryption
78:d2:b4:d5:2f:87:0a:b2:98:b5:78:5a:1a:c0:21:92:b9:be:
21:dc:9d:54:26:41:bd:d5:a7:bd:af:c0:a8:8b:f2:81:1d:b5:
5c:c8:a4:85:f0:7d:97:66:b0:f3:45:b3:5f:ad:22:f3:e5:2b:
1b:b9:ae:0e:4a:2d:54:af:0d:16:24:bd:13:d1:ef:ce:36:11:
73:15:98:2e:27:21:61:c4:71:29:37:ae:b5:9b:53:42:f7:90:
84:62:50:f4:19:d9:2f:fb:38:37:7b:5b:f6:32:7f:d3:a1:eb:
51:1a:04:1f:ed:e7:f1:b7:dd:43:64:c4:73:8d:d2:74:ab:94:
47:66:1f:b8:31:9e:02:38:75:49:66:ca:69:24:48:8a:31:9c:
d7:99:7c:72:d8:96:20:24:ff:9b:99:c1:2c:e9:64:b4:ce:83:
1d:bf:0b:57:28:3a:a4:d4:53:e5:0e:f6:f9:49:b0:f4:91:2f:
bd:aa:7d:f0:a5:f7:5a:81:d3:86:9f:fd:6d:a8:68:54:8f:04:
f5:3b:73:5a:6b:0b:f5:e8:b1:4c:d3:83:e2:dc:45:44:36:51:
98:65:85:b5:a2:31:c4:2d:3d:27:f0:ef:ed:d3:27:68:0e:1a:
93:a3:8c:59:68:38:32:ce:bd:e4:21:32:7f:f5:5e:ff:25:7b:
11:c2:32:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:50 2023 by rpki-client on console-fra.rpki-client.org