Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/b6g-nbmOo8eiCmUQjLSDiHOmPHk.roa
File: b6g-nbmOo8eiCmUQjLSDiHOmPHk.roa (raw, json)
Hash identifier: ADL0CfKuhjSV4h1DLIX4c16S3ZdYIOw0bbWrvOfFTiQ=
Subject key identifier: 6F:A8:3E:9D:B9:8E:A3:C7:A2:0A:65:10:8C:B4:83:88:73:A6:3C:79
Certificate issuer: /CN=e1c838891b51e067ea2ebf9a44d9680148562e96
Certificate serial: B3F835
Authority key identifier: E1:C8:38:89:1B:51:E0:67:EA:2E:BF:9A:44:D9:68:01:48:56:2E:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4cg4iRtR4GfqLr-aRNloAUhWLpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/b6g-nbmOo8eiCmUQjLSDiHOmPHk.roa
Signing time: Sat 01 Jan 2022 05:56:42 +0000
ROA not before: Sat 01 Jan 2022 05:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31087
IP address blocks: 185.97.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11794485 (0xb3f835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1c838891b51e067ea2ebf9a44d9680148562e96
Validity
Not Before: Jan 1 05:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fa83e9db98ea3c7a20a65108cb4838873a63c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d4:c2:75:70:07:c5:f8:95:0a:9c:63:72:90:
bc:d4:ff:5b:05:f7:44:af:f0:a3:fd:72:de:5a:f8:
73:58:1e:96:9a:61:77:fd:bd:65:b4:0a:3d:cf:a8:
d5:a4:f7:1a:b0:0b:59:4b:4a:3d:ce:c1:fa:dd:fb:
ab:b1:c6:cf:a7:58:a0:ac:62:e1:57:30:fc:db:27:
4f:fc:e9:3b:38:d5:bd:cb:63:96:05:d0:72:2c:18:
28:4f:11:a4:b3:c8:10:01:ea:1d:8d:bc:f0:72:bc:
f1:de:06:e0:1e:d6:47:60:e7:62:c0:00:ef:5d:37:
23:85:c4:e0:b8:ec:db:a8:1e:81:a0:ef:4a:92:27:
b4:26:b8:7b:5a:00:d3:99:67:3a:5f:2e:13:8a:b1:
c0:1b:0b:30:08:1f:fb:98:8d:d9:74:af:36:13:e1:
2b:53:1a:ea:82:22:a5:50:55:f1:a6:d5:3e:c2:8f:
7f:00:ca:18:42:47:2c:28:93:4f:cc:f4:c5:61:62:
43:0c:0e:71:27:86:c3:20:d4:2e:0a:a5:9d:3a:b8:
fb:2f:d8:a9:de:f7:45:b5:db:5c:9d:42:0f:f1:ab:
d8:ab:02:bc:41:5a:6a:57:fc:54:0c:aa:88:d0:1d:
cd:35:ba:01:2a:bc:1e:89:0c:a0:a1:2a:fa:2a:19:
0c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A8:3E:9D:B9:8E:A3:C7:A2:0A:65:10:8C:B4:83:88:73:A6:3C:79
X509v3 Authority Key Identifier:
keyid:E1:C8:38:89:1B:51:E0:67:EA:2E:BF:9A:44:D9:68:01:48:56:2E:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4cg4iRtR4GfqLr-aRNloAUhWLpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/b6g-nbmOo8eiCmUQjLSDiHOmPHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/4cg4iRtR4GfqLr-aRNloAUhWLpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.220.0/22
Signature Algorithm: sha256WithRSAEncryption
51:8a:41:93:62:f6:fa:40:20:a2:4a:b6:a8:1a:a3:a3:24:e5:
75:3c:80:14:a2:04:78:0f:ba:9c:ad:29:c4:10:56:c8:62:de:
d4:57:ca:44:77:76:9e:eb:de:28:a5:5d:d0:2e:c6:52:94:15:
ae:31:ad:ad:0e:7e:77:da:2d:6b:5a:bc:22:01:ff:f8:52:fa:
9f:f2:7a:c2:56:2b:a8:eb:71:f1:4d:b1:b4:27:14:38:8c:de:
b8:78:b7:e2:f4:c2:b2:9d:56:4a:8e:e5:c1:f1:c4:b6:ea:b1:
40:71:a5:52:22:63:df:f4:ae:77:36:5e:00:93:5b:bc:5a:53:
50:2c:f0:be:b5:75:1f:6b:79:63:e5:87:c4:f7:35:b3:89:11:
e7:ec:97:58:71:ba:db:3e:66:03:da:69:b4:ae:5b:f2:32:1d:
1c:95:e9:5f:c9:9f:66:ec:74:61:8c:2b:53:c4:e6:16:c2:87:
1e:2f:4d:3b:b8:56:29:6d:02:3f:e2:9c:6d:52:95:dd:66:cc:
ea:cc:10:9e:65:57:17:10:45:bf:cd:62:62:a3:9a:ca:55:64:
89:05:ab:bf:65:48:23:fe:51:e0:16:d7:0f:4c:64:7c:d8:04:
b0:c8:58:d5:c6:db:0b:46:49:80:39:fa:ba:aa:31:c9:88:f2:
cf:06:af:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org