Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/6esPC9NeytsVcVzovirR-yLaJHk.roa
File: 6esPC9NeytsVcVzovirR-yLaJHk.roa (raw, json)
Hash identifier: Jo5hcqMwETC4rfvub6ONqXx1vk45PXUPEwQq53HFNV4=
Subject key identifier: E9:EB:0F:0B:D3:5E:CA:DB:15:71:5C:E8:BE:2A:D1:FB:22:DA:24:79
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 0A64E52E
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/6esPC9NeytsVcVzovirR-yLaJHk.roa
Signing time: Sat 01 Jan 2022 09:03:33 +0000
ROA not before: Sat 01 Jan 2022 09:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25376
IP address blocks: 82.148.224.0/19 maxlen: 24
185.12.232.0/22 maxlen: 24
2a02:f0a0::/30 maxlen: 32
2a00:1b98::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174384430 (0xa64e52e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: Jan 1 09:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9eb0f0bd35ecadb15715ce8be2ad1fb22da2479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:71:68:80:71:5e:39:b3:08:70:e8:83:5d:42:
2e:14:9c:9b:5d:90:95:75:21:c0:80:02:48:af:bd:
2b:18:43:67:35:6e:7c:8a:1f:48:f9:90:c4:72:62:
d7:d2:62:7e:73:68:38:12:98:18:31:3f:21:ed:69:
e8:93:3e:ee:95:e5:f7:8f:fc:be:5b:1e:f2:a0:1e:
c3:7f:8c:b9:e0:eb:21:91:e5:70:16:24:39:1c:2b:
a3:1d:1f:09:9d:df:57:fa:1c:4e:e0:5e:3d:4f:0c:
2a:27:cd:81:dc:f3:0e:ab:c1:f0:dd:34:48:2f:87:
09:7d:1a:21:96:60:93:00:bb:c2:16:78:d8:18:07:
8b:b4:5a:27:8d:38:2c:69:f8:2e:1b:ab:89:78:ca:
70:ec:db:0c:de:7c:1f:40:21:d9:9c:f7:77:59:33:
a5:26:61:60:3d:8b:91:0d:51:54:b5:3f:ee:a9:ca:
1e:a6:3e:e3:41:e5:53:f4:f9:1a:b3:c8:fc:4d:83:
9c:1d:50:f2:9f:bd:70:83:41:b8:24:98:e7:63:8a:
c5:0f:26:9f:c1:3e:a9:ef:dc:da:db:ee:29:c5:b8:
1d:72:45:e3:67:0e:39:bd:be:87:8b:5a:e5:7f:94:
45:df:87:de:d7:89:ad:6e:02:46:11:55:2a:93:99:
c3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:EB:0F:0B:D3:5E:CA:DB:15:71:5C:E8:BE:2A:D1:FB:22:DA:24:79
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/6esPC9NeytsVcVzovirR-yLaJHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.148.224.0/19
185.12.232.0/22
IPv6:
2a00:1b98::/32
2a02:f0a0::/30
Signature Algorithm: sha256WithRSAEncryption
2b:ff:1d:36:af:0e:19:12:30:61:3d:c7:0d:45:52:80:02:c6:
06:7a:e8:68:ce:07:a2:9b:d1:77:e2:c4:1b:5f:e1:e8:42:b5:
74:1e:4b:86:0d:b6:8e:aa:dd:3c:33:13:b8:a6:74:a4:04:6f:
a3:e7:be:dd:94:20:f5:e2:2b:46:88:53:ae:e4:9f:61:c8:d1:
a1:41:3e:9d:58:e0:e3:cd:22:28:9f:f7:8f:3a:57:77:06:1a:
ee:30:5d:f9:3a:ff:5b:f2:00:ad:5a:16:e1:12:77:03:0b:ae:
b6:3f:78:e5:36:60:72:91:21:7c:41:8a:24:2b:02:ce:37:d3:
88:53:26:e8:f6:61:4a:6b:c6:68:cf:0f:a4:41:ee:d5:ad:35:
1e:72:78:bf:fd:44:df:1c:ec:3d:9a:80:31:2c:be:e1:66:ce:
50:a5:76:20:98:47:00:6b:51:a5:4a:02:76:32:a0:0f:1a:26:
f5:29:a6:22:c2:86:cf:2c:7b:55:d3:a0:82:f6:b6:d7:72:f7:
1b:db:06:42:cd:ea:1a:07:cd:e3:54:6c:a7:ac:ee:db:dd:2b:
09:99:7a:46:04:69:6c:f2:94:53:d7:11:71:d8:41:0f:32:95:
c6:92:7d:80:68:ae:90:0c:a3:01:27:bb:1b:af:e1:b0:31:94:
64:04:2a:7a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:20 2024 by rpki-client on console-ams.rpki-client.org