Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/6T8A8gb3wMgIPgMiLh-YoeY-Vfk.roa
File: 6T8A8gb3wMgIPgMiLh-YoeY-Vfk.roa (raw, json)
Hash identifier: X2FdagmT/XEvjTNHa9Un0h93O5qLSUaOqnTeJaWbFUk=
Subject key identifier: E9:3F:00:F2:06:F7:C0:C8:08:3E:03:22:2E:1F:98:A1:E6:3E:55:F9
Certificate issuer: /CN=0b5a5390b8d68021803e7be9fcf5e8e1393ac043
Certificate serial: 140B2E62
Authority key identifier: 0B:5A:53:90:B8:D6:80:21:80:3E:7B:E9:FC:F5:E8:E1:39:3A:C0:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/6T8A8gb3wMgIPgMiLh-YoeY-Vfk.roa
Signing time: Sat 01 Jan 2022 10:58:48 +0000
ROA not before: Sat 01 Jan 2022 10:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43066
IP address blocks: 93.184.130.0/24 maxlen: 24
93.184.131.0/24 maxlen: 24
93.184.128.0/24 maxlen: 24
93.184.129.0/24 maxlen: 24
93.184.132.0/23 maxlen: 23
93.184.132.0/24 maxlen: 24
93.184.137.0/24 maxlen: 24
93.184.138.0/24 maxlen: 24
93.184.135.0/24 maxlen: 24
93.184.136.0/24 maxlen: 24
93.184.134.0/24 maxlen: 24
93.184.139.0/24 maxlen: 24
93.184.133.0/24 maxlen: 24
93.184.142.0/24 maxlen: 24
93.184.143.0/24 maxlen: 24
93.184.141.0/24 maxlen: 24
93.184.140.0/24 maxlen: 24
2a05:d880::/48 maxlen: 48
2a05:d880::/30 maxlen: 30
2a05:d880:4::/48 maxlen: 48
2a05:d880:2::/48 maxlen: 48
2a05:d880:3::/48 maxlen: 48
2a05:d880:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336277090 (0x140b2e62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5a5390b8d68021803e7be9fcf5e8e1393ac043
Validity
Not Before: Jan 1 10:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e93f00f206f7c0c8083e03222e1f98a1e63e55f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:f9:fe:a1:f8:d0:68:8e:40:f8:0f:85:2d:
99:48:cf:2f:fb:93:49:a7:83:10:06:b3:06:67:13:
07:f0:07:38:97:b0:4a:e7:8c:38:39:32:5e:4c:67:
23:5f:48:e0:f1:8b:44:97:24:3b:b0:2a:6c:79:35:
87:f6:ce:49:59:78:d3:51:b5:95:68:33:60:6c:d1:
1e:7c:2b:f0:41:39:04:2d:54:40:4e:30:9b:f6:df:
15:29:2f:a4:b6:30:2c:0e:91:24:33:b9:cd:6d:d7:
1e:17:44:a6:7f:c3:b6:58:4c:c7:2d:f6:ee:66:5b:
ac:15:d5:e9:cf:0e:f1:f1:b5:98:fe:b6:4f:61:83:
57:e4:fe:7e:8c:18:1f:35:79:c4:ed:b1:71:b5:3a:
f3:5f:e0:01:33:e1:b9:19:95:46:4f:59:ee:78:d1:
2c:66:96:27:15:13:3b:04:e6:08:69:ce:e2:72:0c:
36:7b:41:71:45:8e:1e:0a:8a:b3:e9:fa:6e:fc:d8:
1c:46:f3:5b:7c:4f:00:dc:c9:da:8f:e7:84:ec:04:
88:ed:5a:22:11:a3:7e:9b:04:66:5d:6d:8b:94:51:
a3:87:de:fa:d9:ec:7b:1a:8a:e6:f6:6c:7c:c6:84:
39:c4:21:99:02:b2:b0:c4:13:8b:67:fe:78:49:8a:
f9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3F:00:F2:06:F7:C0:C8:08:3E:03:22:2E:1F:98:A1:E6:3E:55:F9
X509v3 Authority Key Identifier:
keyid:0B:5A:53:90:B8:D6:80:21:80:3E:7B:E9:FC:F5:E8:E1:39:3A:C0:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/6T8A8gb3wMgIPgMiLh-YoeY-Vfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.128.0/20
IPv6:
2a05:d880::/30
Signature Algorithm: sha256WithRSAEncryption
3b:28:4c:25:53:53:88:05:f0:31:a1:3a:ab:b5:43:55:b8:00:
e8:c0:f3:bd:88:54:79:75:9c:fc:5d:2b:41:ce:4e:97:ce:1e:
0d:78:55:b2:46:c8:79:bd:9b:0c:aa:e0:34:1a:64:9b:53:85:
60:1c:c6:72:d3:ba:83:21:1d:04:04:c5:63:03:2f:b5:07:cc:
52:86:bd:73:bf:4c:83:48:1d:91:01:d3:a8:0b:f2:78:92:2f:
d8:10:69:a1:3b:88:2b:ee:43:ee:7d:d7:29:b8:a9:01:15:09:
53:87:1d:f9:18:80:54:b7:40:da:e3:e1:9f:6d:60:0b:07:19:
eb:b2:ff:ef:56:27:52:0d:11:a2:46:3c:dd:36:26:d4:b9:6b:
db:c9:d4:8b:ce:f9:cd:51:9a:67:94:8f:ee:6b:74:03:0b:a3:
6b:ce:87:24:8e:7a:c5:c3:7a:98:0a:84:f4:fb:c5:ac:98:fd:
34:dc:51:f1:f8:2b:61:45:1c:d5:c1:07:65:3d:aa:ad:4a:30:
f5:41:27:16:94:fd:b0:2b:5d:5e:dd:f7:23:65:cd:b6:a0:78:
3a:18:9a:01:f6:cc:0a:d1:2b:f8:ce:eb:c7:b8:7d:65:7b:68:
f7:4c:0a:1b:9f:df:78:ad:9b:70:9f:7d:1c:2d:a3:e9:2a:90:
bb:e9:60:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:09 2024 by rpki-client on console-ams.rpki-client.org