Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/6I2laTL1rRLjmIh4osf8v1nwk1M.roa
File: 6I2laTL1rRLjmIh4osf8v1nwk1M.roa (raw, json)
Hash identifier: fo9EREozrFGRoc627IHZppjSUSfCJOXdPAB5kW3IAZ8=
Subject key identifier: E8:8D:A5:69:32:F5:AD:12:E3:98:88:78:A2:C7:FC:BF:59:F0:93:53
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 198FD461
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/6I2laTL1rRLjmIh4osf8v1nwk1M.roa
Signing time: Fri 03 Jun 2022 15:28:23 +0000
ROA not before: Fri 03 Jun 2022 15:28:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43561
IP address blocks: 185.60.66.0/24 maxlen: 24
185.60.67.0/24 maxlen: 24
95.43.250.0/24 maxlen: 24
2a02:1338::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428856417 (0x198fd461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jun 3 15:28:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e88da56932f5ad12e3988878a2c7fcbf59f09353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d5:bd:3d:43:c2:43:7b:6a:36:c5:e2:0f:c5:
88:a4:e8:45:3c:19:de:95:a2:d8:ce:13:c9:de:89:
6d:cc:8a:e6:7d:64:47:07:b9:fe:39:a2:4f:60:3e:
82:b5:7a:54:6b:b6:4b:4b:9a:14:8c:13:18:57:11:
3a:e0:97:07:7f:c3:5d:86:f3:ec:a2:a6:ba:bd:1e:
21:06:8e:00:c4:c4:ec:18:42:97:54:a1:0b:ab:e1:
e8:b8:92:7d:3c:23:f9:9f:95:ce:27:30:ad:cf:4d:
b9:3c:5b:cc:ae:c7:05:01:18:31:92:24:83:73:00:
58:33:72:c6:e2:3a:74:70:6c:e9:53:13:a8:67:3c:
bf:32:e6:13:85:4b:8b:10:43:9f:d2:38:cf:93:0e:
a0:e4:63:ae:37:4d:11:a1:ed:a7:8c:93:a0:27:12:
e1:29:99:13:5a:46:17:ae:56:c8:d0:f1:21:73:ac:
69:10:0d:2f:b2:65:26:65:73:4d:50:6c:39:cb:16:
4f:82:d8:71:d1:c9:89:40:c8:a8:07:8a:d7:df:ff:
9f:ad:fc:eb:36:d4:c2:df:92:f7:df:24:ed:1d:de:
f3:da:12:ca:55:2c:72:44:26:ac:fa:21:9c:0c:9c:
44:dc:1c:a1:0f:6d:69:e1:e9:d6:59:e5:04:b9:76:
42:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:8D:A5:69:32:F5:AD:12:E3:98:88:78:A2:C7:FC:BF:59:F0:93:53
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/6I2laTL1rRLjmIh4osf8v1nwk1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.250.0/24
185.60.66.0/23
IPv6:
2a02:1338::/32
Signature Algorithm: sha256WithRSAEncryption
08:b6:57:1a:4b:65:f0:e5:1e:50:ba:74:cd:4e:35:f1:e7:7b:
74:62:ad:a2:30:4d:be:ea:58:51:51:4e:27:ae:3b:28:e4:d1:
67:b7:11:15:79:94:b1:15:65:b9:2c:f1:eb:64:cf:51:0b:b8:
f0:be:0d:f9:de:1e:db:56:3d:b4:43:ff:29:2a:cc:d0:62:2f:
8e:4d:bb:33:d4:9d:7c:03:6a:57:10:83:c3:17:a0:dd:24:aa:
02:8a:c4:d9:6f:5a:3e:84:cd:f2:36:b9:9f:ce:80:39:28:cb:
6f:c0:72:1e:e8:3b:c9:2d:b0:a6:46:c2:73:54:2d:82:26:ad:
2c:54:fc:81:d4:d1:dd:9b:3a:d0:44:16:34:1f:dd:b0:d6:1a:
85:10:69:ab:94:22:b7:6b:cb:f1:cd:b6:88:cf:f1:12:e5:fc:
64:84:a2:92:32:1d:e6:a2:e9:1b:4b:7c:17:91:dd:91:cb:4e:
8e:f9:58:bc:ea:96:e1:67:cf:0e:64:9e:a0:9e:8a:50:52:0f:
cc:f1:d4:02:74:e8:ce:8a:c5:19:d4:6c:37:bc:b5:f4:bd:52:
91:ce:a9:f3:27:ba:8d:ee:a4:a9:3d:24:4c:8e:ae:41:79:bd:
f8:d0:54:ff:4d:24:c0:0f:69:1c:88:0c:a8:67:25:3c:d0:09:
d4:b0:4a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org