Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/W6jqb8CPhc3YBppzdB98yk6nMXA.roa
File: W6jqb8CPhc3YBppzdB98yk6nMXA.roa (raw, json)
Hash identifier: vKk4KBMk6p6NDN8wmVpzuAZqpiyjgD15emHWnbWwEIM=
Subject key identifier: 5B:A8:EA:6F:C0:8F:85:CD:D8:06:9A:73:74:1F:7C:CA:4E:A7:31:70
Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Certificate serial: 0B40F2FD
Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/W6jqb8CPhc3YBppzdB98yk6nMXA.roa
Signing time: Sat 01 Jan 2022 12:04:10 +0000
ROA not before: Sat 01 Jan 2022 12:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 160.61.208.0/24 maxlen: 24
86.117.18.0/23 maxlen: 23
86.117.18.0/24 maxlen: 24
86.117.19.0/24 maxlen: 24
86.117.47.0/24 maxlen: 24
160.61.170.0/23 maxlen: 23
160.61.171.0/24 maxlen: 24
160.61.168.0/23 maxlen: 23
160.61.168.0/24 maxlen: 24
160.61.169.0/24 maxlen: 24
160.61.170.0/24 maxlen: 24
86.117.140.0/24 maxlen: 24
86.117.141.0/24 maxlen: 24
86.117.140.0/23 maxlen: 23
160.62.1.0/24 maxlen: 24
160.62.2.0/24 maxlen: 24
160.62.3.0/24 maxlen: 24
160.62.4.0/24 maxlen: 24
160.62.0.0/24 maxlen: 24
160.62.0.0/23 maxlen: 23
160.62.5.0/24 maxlen: 24
160.62.6.0/24 maxlen: 24
160.62.7.0/24 maxlen: 24
160.62.12.0/24 maxlen: 24
160.62.13.0/24 maxlen: 24
160.62.14.0/24 maxlen: 24
160.62.15.0/24 maxlen: 24
160.62.21.0/24 maxlen: 24
160.62.22.0/24 maxlen: 24
160.62.141.0/24 maxlen: 24
160.62.140.0/24 maxlen: 24
160.62.140.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188805885 (0xb40f2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Validity
Not Before: Jan 1 12:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ba8ea6fc08f85cdd8069a73741f7cca4ea73170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:24:3a:05:b8:4a:3e:3d:d2:89:a7:01:9b:2a:
2e:c5:ea:f2:b4:bf:9c:2e:e2:01:3e:9f:b3:17:8d:
65:13:b8:9a:d7:59:89:7b:e0:32:a5:b4:52:cf:cd:
89:5b:1d:ec:c6:23:7c:f4:d0:1e:27:ba:c7:5c:69:
3d:be:bb:fc:9a:7e:3e:02:11:30:57:1b:58:4d:32:
bf:fa:85:aa:df:b6:c4:ac:40:f8:38:df:ce:11:b9:
bd:06:44:7b:4f:06:da:73:fb:0d:12:4d:33:db:5f:
ae:8f:8c:77:1f:ee:7a:8c:10:c0:ae:39:11:79:9b:
3c:1e:1b:c6:18:e5:63:cb:e4:a5:26:12:78:2e:3a:
ec:7e:81:d7:97:57:52:4e:23:51:55:b5:e1:48:76:
be:dc:e9:70:6b:51:d7:48:08:1d:62:4b:7d:39:03:
da:1f:52:cc:c8:ff:ec:b9:f8:73:d5:e1:88:50:90:
22:03:db:60:61:93:12:80:1e:09:97:ae:f4:3b:b7:
71:63:75:67:25:93:dd:97:e5:c0:27:f7:bd:6e:1b:
de:f9:ad:21:b1:ff:6b:bb:86:d4:10:4f:b4:e1:51:
85:55:19:46:40:02:ef:43:88:20:6a:95:e1:ef:05:
62:88:62:bd:6d:8b:a7:22:72:66:5b:4f:5e:83:2f:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A8:EA:6F:C0:8F:85:CD:D8:06:9A:73:74:1F:7C:CA:4E:A7:31:70
X509v3 Authority Key Identifier:
keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/W6jqb8CPhc3YBppzdB98yk6nMXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.117.18.0/23
86.117.47.0/24
86.117.140.0/23
160.61.168.0/22
160.61.208.0/24
160.62.0.0/21
160.62.12.0/22
160.62.21.0-160.62.22.255
160.62.140.0/23
Signature Algorithm: sha256WithRSAEncryption
89:ea:ab:fb:04:03:24:92:38:47:2a:15:e2:9d:d6:49:53:d9:
09:db:62:2e:7c:d4:28:e1:97:35:45:b9:5b:02:71:e4:2e:ea:
64:99:05:47:a9:f0:75:43:83:8f:f6:5d:31:e5:df:4d:be:5d:
cb:fa:64:d9:15:fd:70:2e:5b:18:93:21:b9:78:41:a6:c0:db:
c5:64:8c:8b:78:0a:d2:23:3b:17:2f:18:9a:1d:21:4f:e5:6c:
4d:5e:66:74:1e:d7:5a:60:1c:ff:fd:87:2d:7b:20:fe:d5:80:
4a:a1:c5:14:f9:b6:bb:e4:42:20:86:ee:d3:e6:59:e1:06:32:
86:0c:4f:ae:46:31:29:b5:a9:77:d1:0d:01:d1:34:60:b6:51:
a5:1f:b6:1c:a9:24:93:37:7d:e8:71:5c:f1:72:11:d0:24:d4:
d8:29:43:5a:d7:4f:1a:a1:6a:37:c2:44:0f:9e:01:45:14:1c:
3d:fe:96:36:28:44:1a:c0:48:98:8a:fe:16:f6:e4:b7:71:97:
eb:0d:2c:0b:89:40:3a:ea:3e:76:66:ef:83:bf:57:09:53:d9:
8b:b6:52:1d:d8:09:d0:bc:42:f7:2e:4d:60:a1:22:ba:fe:e3:
3a:7a:dd:e0:f4:9e:d1:c8:f3:8d:1a:0f:f4:b6:ef:0a:ec:c9:
bf:ae:49:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org