Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e7cc6b-52a0-4b7a-8fc2-71c46c199636/1/6672t3_DJf7ey4liv4MzS3MDZDY.roa
File: 6672t3_DJf7ey4liv4MzS3MDZDY.roa (raw, json)
Hash identifier: fdAxAZPaD3luEnfDflVlwsZeKnEHk1sfz/FWgmWF1a0=
Subject key identifier: EB:AE:F6:B7:7F:C3:25:FE:DE:CB:89:62:BF:83:33:4B:73:03:64:36
Certificate issuer: /CN=bfb548d85725104527f3be47976b674739ae2f13
Certificate serial: 091758EA
Authority key identifier: BF:B5:48:D8:57:25:10:45:27:F3:BE:47:97:6B:67:47:39:AE:2F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7VI2FclEEUn875Hl2tnRzmuLxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e7cc6b-52a0-4b7a-8fc2-71c46c199636/1/6672t3_DJf7ey4liv4MzS3MDZDY.roa
Signing time: Sat 01 Jan 2022 08:00:40 +0000
ROA not before: Sat 01 Jan 2022 08:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204403
IP address blocks: 185.250.16.0/22 maxlen: 24
2a0b:c700::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152525034 (0x91758ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb548d85725104527f3be47976b674739ae2f13
Validity
Not Before: Jan 1 08:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebaef6b77fc325fedecb8962bf83334b73036436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:8d:27:6c:78:6f:c6:01:7b:2d:83:88:e5:
ef:a3:db:eb:ac:82:9b:f8:ee:d2:f3:93:6b:c8:f5:
b4:db:42:94:2a:35:46:ef:c3:40:bc:4e:51:48:1a:
bc:74:31:07:1a:5e:78:6d:49:f4:bb:18:0d:e5:76:
22:a6:d6:5a:df:d8:d0:92:12:0a:f7:11:bc:08:0f:
61:7e:e9:d4:16:a2:34:9b:bb:e5:50:5d:91:09:6a:
cb:06:5e:78:36:16:98:30:d2:97:31:55:94:58:30:
9c:fe:fd:17:5c:2b:f8:8b:3a:d4:20:aa:63:93:cb:
47:c2:ae:7d:62:4d:c3:59:5b:a6:f7:16:74:75:2e:
15:1b:5b:34:d9:65:cc:04:6b:61:09:28:fe:3f:34:
29:85:76:eb:05:fd:70:70:49:a6:63:03:7a:7d:a9:
52:13:53:22:a8:54:d7:61:18:3c:5b:fc:26:30:61:
5c:ff:9c:d0:5a:d9:b5:d9:3c:08:27:d5:4a:a8:4c:
0c:ec:65:21:a2:80:ee:05:cd:6f:78:9b:9a:38:2a:
71:5d:62:2f:ec:5b:d4:e0:48:81:0d:a3:47:af:83:
ca:71:d2:c6:f9:1f:6f:4d:24:46:fc:86:7d:f2:ae:
cc:99:ee:72:1a:c5:a4:a2:0e:1b:42:ef:32:74:92:
66:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AE:F6:B7:7F:C3:25:FE:DE:CB:89:62:BF:83:33:4B:73:03:64:36
X509v3 Authority Key Identifier:
keyid:BF:B5:48:D8:57:25:10:45:27:F3:BE:47:97:6B:67:47:39:AE:2F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7VI2FclEEUn875Hl2tnRzmuLxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e7cc6b-52a0-4b7a-8fc2-71c46c199636/1/6672t3_DJf7ey4liv4MzS3MDZDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e7cc6b-52a0-4b7a-8fc2-71c46c199636/1/v7VI2FclEEUn875Hl2tnRzmuLxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.16.0/22
IPv6:
2a0b:c700::/29
Signature Algorithm: sha256WithRSAEncryption
43:22:63:fa:25:9b:f5:a2:0e:01:87:99:7f:49:d2:07:5b:83:
fe:d0:11:09:58:94:97:46:83:12:bf:59:59:be:40:57:08:b8:
b9:7c:4d:33:7c:7f:0d:d1:90:32:fb:37:bc:b3:60:75:36:ac:
d9:a2:b7:a1:13:ef:5c:f8:0c:77:69:8c:79:d0:18:07:34:2b:
e0:cb:e1:a5:31:12:bb:fa:cf:dc:d3:52:f4:d9:86:63:36:ad:
43:61:b9:1b:75:fc:32:42:4a:28:43:48:28:e6:4b:3f:7b:89:
5e:c4:6e:d8:3c:93:53:b8:ac:06:c2:76:4c:6a:7a:b0:4b:b0:
ae:78:96:cf:fc:83:cb:b3:1a:de:9f:87:80:ce:86:15:01:7c:
53:37:29:c4:49:2f:a5:0e:d6:1a:57:2b:a3:7f:20:dc:81:f1:
e4:28:67:88:91:d0:5f:62:51:07:b5:3e:a9:aa:0b:a3:f0:21:
ff:8a:84:8f:12:5d:59:3d:51:e0:0d:89:d1:5e:19:ea:e7:14:
98:d9:82:06:2a:cd:61:c8:7d:cb:98:9a:26:a9:74:29:8d:6e:
b1:93:aa:3e:8e:b1:76:76:21:34:82:d6:40:54:71:e5:35:45:
51:5d:8b:b7:cf:c1:3f:cd:5f:30:ad:b8:e2:2b:b6:cf:fb:6c:
90:cc:75:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:00 2024 by rpki-client on console-ams.rpki-client.org