Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/841f3a-ab83-4dd9-b183-6b06c176bd5a/1/b0J_syjYOsDNQyC8DjBTN9jqbMs.roa
File: b0J_syjYOsDNQyC8DjBTN9jqbMs.roa (raw, json)
Hash identifier: U0uE2QzlQgT601Mh9kD9EqJTcO2OAx+x2awrIVqw3A0=
Subject key identifier: 6F:42:7F:B3:28:D8:3A:C0:CD:43:20:BC:0E:30:53:37:D8:EA:6C:CB
Certificate issuer: /CN=d43c92474fed383c95fa2ccd83d614f57e563d82
Certificate serial: 1B44F1CF
Authority key identifier: D4:3C:92:47:4F:ED:38:3C:95:FA:2C:CD:83:D6:14:F5:7E:56:3D:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DySR0_tODyV-izNg9YU9X5WPYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/841f3a-ab83-4dd9-b183-6b06c176bd5a/1/b0J_syjYOsDNQyC8DjBTN9jqbMs.roa
Signing time: Sat 01 Jan 2022 09:55:36 +0000
ROA not before: Sat 01 Jan 2022 09:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29605
IP address blocks: 193.110.140.0/24 maxlen: 24
178.255.128.0/21 maxlen: 24
185.87.88.0/22 maxlen: 24
2a01:6940::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457503183 (0x1b44f1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43c92474fed383c95fa2ccd83d614f57e563d82
Validity
Not Before: Jan 1 09:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f427fb328d83ac0cd4320bc0e305337d8ea6ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:78:8d:ec:50:c6:f9:9a:a1:32:87:04:9e:3e:
69:2e:ff:dc:55:c9:bb:82:78:67:9b:9e:17:10:14:
56:7e:d9:92:0f:7c:cd:a6:49:50:2e:23:39:24:ea:
aa:f5:1e:6e:1c:bd:2b:04:0b:3e:fc:57:89:bf:18:
58:63:e3:97:f4:d7:60:5f:67:00:82:b2:af:0b:84:
85:b3:61:f7:7c:71:60:64:3e:57:ac:c6:2f:2f:ff:
60:96:3f:40:02:65:bb:79:dc:9e:48:42:e0:12:d5:
d9:5b:4d:27:aa:8d:03:ef:65:06:4b:1c:ae:8d:e2:
c6:01:5b:5f:db:f9:b3:c9:76:d8:5b:64:94:95:16:
e6:f9:54:02:f0:32:67:31:df:c6:38:1f:0e:b4:ca:
aa:a3:b5:33:7b:76:04:80:2b:6a:eb:6f:e8:d3:b6:
95:cc:1b:6e:ca:7b:a0:e6:cf:2d:fe:a6:6f:11:ae:
b8:59:0c:ab:31:ce:ae:b4:bc:9f:fe:77:e0:8d:1d:
54:8c:2d:18:43:04:32:51:7f:e0:9d:49:20:d9:5a:
1d:df:36:66:62:b2:cd:06:fa:b2:2a:c9:ed:c3:4c:
42:c9:2c:ee:de:b2:7c:66:51:6a:c1:b3:a9:cc:19:
20:b9:ce:d2:ea:b9:6f:a3:08:40:17:51:a4:8a:33:
55:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:42:7F:B3:28:D8:3A:C0:CD:43:20:BC:0E:30:53:37:D8:EA:6C:CB
X509v3 Authority Key Identifier:
keyid:D4:3C:92:47:4F:ED:38:3C:95:FA:2C:CD:83:D6:14:F5:7E:56:3D:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DySR0_tODyV-izNg9YU9X5WPYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/841f3a-ab83-4dd9-b183-6b06c176bd5a/1/b0J_syjYOsDNQyC8DjBTN9jqbMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/841f3a-ab83-4dd9-b183-6b06c176bd5a/1/1DySR0_tODyV-izNg9YU9X5WPYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.128.0/21
185.87.88.0/22
193.110.140.0/24
IPv6:
2a01:6940::/32
Signature Algorithm: sha256WithRSAEncryption
a6:44:b7:42:b4:65:81:b6:52:e3:55:57:94:7a:da:79:86:9b:
39:e2:88:65:9e:1d:3d:ee:1a:e2:e4:ff:9d:d5:be:e3:c1:1f:
72:e4:66:ca:39:b1:5d:c1:08:a2:db:8c:0f:37:54:3f:1b:f6:
e2:1f:e7:82:39:63:9b:0e:a9:41:8d:00:d3:bd:17:3e:ea:f6:
aa:a8:92:05:d8:98:05:64:88:72:28:97:c8:83:39:4b:d0:09:
64:ed:f6:da:a1:89:d1:f7:19:c8:6d:ab:e2:3b:36:a6:f5:96:
6e:bf:fc:2b:78:d3:4a:05:21:54:5a:9c:dd:34:83:3e:82:fb:
44:93:8c:a8:bd:8c:e3:98:31:d2:6f:91:84:d4:31:ef:60:a8:
72:3f:e7:0d:fa:f5:6b:93:94:a2:fc:7b:86:ab:50:4e:69:11:
3c:62:5c:2e:89:45:b2:21:1b:e8:ae:c8:fa:d6:c3:ee:c3:3a:
3f:35:28:14:57:25:ce:7f:d0:e9:3a:65:88:39:51:e9:2f:f6:
79:af:d1:f0:84:48:1e:5f:48:45:cb:c2:41:c5:db:a0:79:52:
33:b9:77:4e:3a:f4:7f:82:2c:9e:28:a3:b9:bd:48:f4:4d:c4:
5e:89:3b:c5:25:fc:69:47:66:f2:75:8a:4a:60:8a:ac:04:40:
ae:34:14:d3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:36 2024 by rpki-client on console-fra.rpki-client.org