Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/6BnvdyQMREvymRfHL8k8LsJuiac.roa
File: 6BnvdyQMREvymRfHL8k8LsJuiac.roa (raw, json)
Hash identifier: qtmSZaYDUsmG8862Le3cymT0KNxQNNevD9TlVTJRZRw=
Subject key identifier: E8:19:EF:77:24:0C:44:4B:F2:99:17:C7:2F:C9:3C:2E:C2:6E:89:A7
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CA8EDA5
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/6BnvdyQMREvymRfHL8k8LsJuiac.roa
Signing time: Sat 01 Jan 2022 04:59:38 +0000
ROA not before: Sat 01 Jan 2022 04:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57367
IP address blocks: 206.252.232.0/24 maxlen: 24
206.252.251.0/24 maxlen: 24
195.167.159.0/24 maxlen: 24
195.167.157.0/24 maxlen: 24
195.167.156.0/24 maxlen: 24
212.91.27.0/24 maxlen: 24
212.91.26.0/24 maxlen: 24
77.79.227.0/24 maxlen: 24
77.79.248.0/24 maxlen: 24
77.79.250.0/24 maxlen: 24
85.232.241.0/24 maxlen: 24
213.189.52.0/24 maxlen: 24
213.189.54.0/24 maxlen: 24
213.189.53.0/24 maxlen: 24
213.189.55.0/24 maxlen: 24
213.189.56.0/24 maxlen: 24
213.189.58.0/24 maxlen: 24
2001:1a68:1a::/48 maxlen: 48
2001:1a68:ec00::/40 maxlen: 40
2001:1a68:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 749268389 (0x2ca8eda5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e819ef77240c444bf29917c72fc93c2ec26e89a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5e:3d:0e:3a:b5:24:a7:87:7a:e3:8c:25:4f:
5a:6a:76:bf:ad:c3:f5:3a:6f:29:5b:f9:ca:7d:4b:
1e:d0:a2:4a:2a:e9:c2:77:52:88:ed:73:a1:db:92:
66:d8:be:18:c6:ed:ec:65:2e:2b:c2:ad:7e:2a:3c:
a9:6d:e5:21:f3:ec:da:6d:1d:69:18:74:ca:f3:2e:
fc:ec:07:6e:c8:80:3c:fa:e5:09:ad:0f:b5:23:da:
4b:67:35:e2:d5:a9:c8:2e:31:b9:04:5e:08:88:59:
d2:14:ca:23:6b:93:81:7d:a8:77:49:80:1e:13:72:
af:79:36:31:52:67:a0:28:99:73:a2:f2:02:03:7d:
32:c6:67:1b:b7:ee:a2:c3:54:b8:0f:2c:3b:7c:4e:
46:64:47:25:76:31:a1:3a:eb:19:7d:06:fa:e9:19:
96:48:1e:eb:af:82:21:c5:a0:f9:35:93:28:d5:66:
2c:f7:f6:17:0d:ae:09:3d:90:86:cc:ef:78:07:41:
69:08:dc:96:ae:a5:ac:cc:0c:93:7f:0b:f4:46:e6:
a1:5b:1b:5d:c2:65:fb:d2:e3:8a:c0:67:ee:14:2e:
24:f9:de:2f:e2:b5:61:80:ef:d3:19:7e:8e:d3:2e:
9e:a6:87:84:7c:5e:d5:82:02:ef:29:80:f9:61:7a:
08:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:19:EF:77:24:0C:44:4B:F2:99:17:C7:2F:C9:3C:2E:C2:6E:89:A7
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/6BnvdyQMREvymRfHL8k8LsJuiac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.227.0/24
77.79.248.0/24
77.79.250.0/24
85.232.241.0/24
195.167.156.0/23
195.167.159.0/24
206.252.232.0/24
206.252.251.0/24
212.91.26.0/23
213.189.52.0-213.189.56.255
213.189.58.0/24
IPv6:
2001:1a68:19::-2001:1a68:1a:ffff:ffff:ffff:ffff:ffff
2001:1a68:ec00::/40
Signature Algorithm: sha256WithRSAEncryption
15:61:23:71:72:ca:90:65:69:22:2a:63:04:50:a6:15:6f:a2:
08:ea:1e:7a:e4:08:f6:7a:b7:0b:98:f7:95:1c:6e:a8:2d:2b:
01:89:c7:a5:e4:70:51:9d:3c:4f:57:dc:17:66:c2:b4:e0:f3:
31:b8:67:d4:62:ff:e6:b5:ac:df:ae:41:75:10:6d:52:17:70:
09:c4:e1:3d:76:89:31:ce:a4:3d:ed:fe:7b:cd:42:df:a8:8a:
5b:61:bc:09:41:c5:73:3b:09:71:4f:f6:b0:76:3f:8b:e0:09:
29:f6:d5:89:4f:2c:d2:77:ae:1b:a7:56:23:a1:17:03:40:e8:
ee:df:3f:c0:54:db:5a:bc:08:88:9b:04:e8:01:65:73:79:b4:
9d:06:46:a5:1b:4e:67:49:be:10:54:a4:19:5d:17:d6:01:48:
14:ca:5d:a2:90:7d:f5:f5:d9:70:10:d5:16:fd:aa:1e:c5:ca:
74:7d:79:68:8a:62:65:a2:c1:79:5d:e7:ee:ec:fe:4c:a2:fa:
29:a5:3d:c7:66:17:37:a6:af:4c:63:af:f3:11:73:69:8c:28:
b2:a0:68:36:fd:eb:27:7b:17:ef:93:05:39:45:bb:87:d1:61:
ac:e8:c9:b1:41:4d:d4:f9:40:d6:2e:f3:78:56:a7:f4:72:08:
8f:88:71:7d
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgIELKjtpTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OGM1MTBmYzliODY1ZDk2ZTNhZmM3YzU2MDU2ZWZhZDlhMzMwYzViMB4XDTIyMDEw
MTA0NTkzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTgxOWVmNzcyNDBj
NDQ0YmYyOTkxN2M3MmZjOTNjMmVjMjZlODlhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJlePQ46tSSnh3rjjCVPWmp2v63D9TpvKVv5yn1LHtCiSirp
wndSiO1zoduSZti+GMbt7GUuK8Ktfio8qW3lIfPs2m0daRh0yvMu/OwHbsiAPPrl
Ca0PtSPaS2c14tWpyC4xuQReCIhZ0hTKI2uTgX2od0mAHhNyr3k2MVJnoCiZc6Ly
AgN9MsZnG7fuosNUuA8sO3xORmRHJXYxoTrrGX0G+ukZlkge66+CIcWg+TWTKNVm
LPf2Fw2uCT2QhszveAdBaQjclq6lrMwMk38L9EbmoVsbXcJl+9LjisBn7hQuJPne
L+K1YYDv0xl+jtMunqaHhHxe1YIC7ymA+WF6CHcCAwEAAaOCAnIwggJuMB0GA1Ud
DgQWBBToGe93JAxES/KZF8cvyTwuwm6JpzAfBgNVHSMEGDAWgBRoxRD8m4ZdluOv
x8VgVu+tmjMMWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FNVVFfSnVHWFpianI4ZkZZRmJ2clpvekRGcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvZTBmMmY2LTNhOGEtNGRhYS04MjcxLTVkNjY1ZTk5OGY2YS8x
LzZCbnZkeVFNUkV2eW1SZkhMOGs4THNKdWlhYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
ZTBmMmY2LTNhOGEtNGRhYS04MjcxLTVkNjY1ZTk5OGY2YS8xL2FNVVFfSnVHWFpi
anI4ZkZZRmJ2clpvekRGcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
hwYIKwYBBQUHAQcBAf8EeDB2MFAEAgABMEoDBABNT+MDBABNT/gDBABNT/oDBABV
6PEDBAHDp5wDBADDp58DBADO/OgDBADO/PsDBAHUWxowDAMEAtW9NAMEANW9OAME
ANW9OjAiBAIAAjAcMBIDBwAgARpoABkDBwAgARpoABoDBgAgARpo7DANBgkqhkiG
9w0BAQsFAAOCAQEAFWEjcXLKkGVpIipjBFCmFW+iCOoeeuQI9nq3C5j3lRxuqC0r
AYnHpeRwUZ08T1fcF2bCtODzMbhn1GL/5rWs365BdRBtUhdwCcThPXaJMc6kPe3+
e81C36iKW2G8CUHFczsJcU/2sHY/i+AJKfbViU8s0neuG6dWI6EXA0Do7t8/wFTb
WrwIiJsE6AFlc3m0nQZGpRtOZ0m+EFSkGV0X1gFIFMpdopB99fXZcBDVFv2qHsXK
dH15aIpiZaLBeV3n7uz+TKL6KaU9x2YXN6avTGOv8xFzaYwosqBoNv3rJ3sX75MF
OUW7h9FhrOjJsUFN1PlA1i7zeFan9HIIj4hxfQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org