Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/6K9V2Wlm15pbVcRw2-Gm5tzWBm0.roa
File: 6K9V2Wlm15pbVcRw2-Gm5tzWBm0.roa (raw, json)
Hash identifier: ShnrORTbsUmSe/l3JseCs2WgYsg0E1PTP8xbseKroXk=
Subject key identifier: E8:AF:55:D9:69:66:D7:9A:5B:55:C4:70:DB:E1:A6:E6:DC:D6:06:6D
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 03B900DE
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/6K9V2Wlm15pbVcRw2-Gm5tzWBm0.roa
Signing time: Tue 18 Jan 2022 05:37:30 +0000
ROA not before: Tue 18 Jan 2022 05:37:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.166.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62456030 (0x3b900de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jan 18 05:37:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8af55d96966d79a5b55c470dbe1a6e6dcd6066d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d4:2e:1b:bd:5a:a1:98:dc:fb:46:86:93:e8:
66:e4:d7:35:13:7d:20:cd:bf:4e:35:28:3d:28:0c:
5f:20:62:19:f0:0f:3f:cb:05:89:24:ef:de:1a:e3:
45:74:37:bb:61:21:cf:ec:b4:1f:f3:42:96:9e:77:
30:e7:8e:72:b1:8c:f4:78:3e:0b:2e:3d:29:b1:94:
c2:5f:c8:f7:37:ba:34:d5:16:23:d7:0f:9e:86:83:
1b:95:5a:1d:3c:a2:55:71:1b:80:99:7e:7f:b1:05:
7b:71:d0:17:93:ae:c3:d0:31:44:45:d4:83:e8:45:
01:e0:75:6d:3a:95:64:35:24:7f:d3:33:d6:b0:82:
9b:6e:73:d1:a1:ed:d0:5e:c2:0c:ef:21:27:ad:d1:
e5:4e:6f:aa:66:9c:fc:d1:4b:ca:e6:9f:9e:40:cf:
c6:10:3f:6e:f1:1f:65:f7:9f:01:47:08:e8:d3:84:
6b:77:8d:9f:36:77:90:8d:bb:02:6a:c1:7f:2c:64:
3a:b7:72:d2:d8:4a:bb:0d:12:30:2d:34:dc:91:44:
a6:65:e7:63:a7:44:8a:52:ba:28:af:8b:7c:4a:d8:
83:38:fe:c7:8f:d5:53:db:bf:07:41:00:3d:cc:40:
a8:67:a1:c8:8c:4a:77:30:ef:e4:b8:8d:28:fb:fb:
22:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AF:55:D9:69:66:D7:9A:5B:55:C4:70:DB:E1:A6:E6:DC:D6:06:6D
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/6K9V2Wlm15pbVcRw2-Gm5tzWBm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.222.0/24
Signature Algorithm: sha256WithRSAEncryption
57:f7:e9:26:fd:ee:e2:5c:7f:3d:fd:b0:03:2f:5e:34:7b:38:
8b:59:ac:74:49:e2:b1:18:73:f2:e4:4e:24:14:eb:a2:1a:f0:
00:e7:ab:e6:35:38:5d:38:b7:21:71:8d:fa:1c:39:95:eb:69:
0c:57:4f:99:79:c9:ec:d2:d1:90:f3:d3:44:ed:40:a0:2e:df:
3d:37:53:4a:b0:cd:77:0c:d0:26:49:7f:41:4f:3e:7d:71:ac:
fc:13:5d:aa:e5:88:63:54:e6:8e:16:7c:1b:37:8d:fd:b2:fb:
cc:b6:6a:6f:6d:a1:18:5c:9d:f5:b2:8c:fa:ae:c9:ff:f7:17:
a5:a7:60:78:4d:4f:6c:18:21:b6:4d:22:dd:26:c5:b7:c2:b5:
22:9f:1a:36:c5:0a:25:b5:27:d6:7e:56:b5:1c:8e:a1:cb:e3:
9c:9d:cf:9c:e6:0d:75:dc:68:db:36:27:33:d5:6c:ee:dc:ca:
ea:4a:93:b8:7d:24:48:35:ae:ca:36:e6:2a:b5:50:1f:70:55:
05:86:00:55:91:50:d0:13:97:1c:02:48:fa:30:60:e3:12:a3:
c2:fd:37:d5:cf:60:68:2c:cf:ce:27:cc:ff:08:cb:a1:5b:1d:
d5:1d:6d:c8:ac:26:2d:1c:65:52:e0:7c:81:15:a3:52:ed:a8:
dd:c0:c4:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:48 2024 by rpki-client on console-fra.rpki-client.org