Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/xvVhfDIIVI-ueyHZcP8lQ8qdBbA.roa
File: xvVhfDIIVI-ueyHZcP8lQ8qdBbA.roa (raw, json)
Hash identifier: kGiL8iaTl/sfIL0+cnKuUvQ2i/zVPCX4REG4V3xxp4M=
Subject key identifier: C6:F5:61:7C:32:08:54:8F:AE:7B:21:D9:70:FF:25:43:CA:9D:05:B0
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2E1D6B31
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/xvVhfDIIVI-ueyHZcP8lQ8qdBbA.roa
Signing time: Wed 01 Jun 2022 07:53:21 +0000
ROA not before: Wed 01 Jun 2022 07:53:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34342
IP address blocks: 185.2.112.0/22 maxlen: 22
195.167.156.0/24 maxlen: 24
195.167.157.0/24 maxlen: 24
85.232.248.0/24 maxlen: 24
2001:1a68:19:400::/54 maxlen: 54
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 773679921 (0x2e1d6b31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jun 1 07:53:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6f5617c3208548fae7b21d970ff2543ca9d05b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:31:29:e6:63:0b:b4:4d:e5:d6:74:71:af:87:
42:d4:5a:f6:ae:09:14:60:39:05:9c:b9:65:db:74:
a8:01:3b:68:af:3a:36:04:33:3c:23:32:92:87:01:
73:66:fc:fb:1a:8b:1a:b0:e1:79:b5:4b:60:7c:ba:
20:24:e9:e7:53:17:fb:7d:c9:31:e0:4a:8b:f6:be:
f8:70:55:79:8a:a7:94:60:74:57:a6:24:88:6c:b7:
7e:39:be:4f:56:04:13:ad:a2:13:fb:97:fc:05:2d:
18:1c:9b:b1:2b:2d:0a:04:e4:93:58:ea:94:ad:f8:
30:d6:84:dc:2e:09:b4:21:02:5a:66:83:e5:5b:a6:
00:cb:8f:d7:d0:ea:99:af:48:38:68:19:55:80:8d:
a0:60:4e:fc:bd:66:20:47:16:ac:5e:b6:29:c9:25:
ef:af:b4:40:7c:0a:c8:a8:ad:a9:4a:1c:a0:51:e1:
47:7d:65:9d:f0:19:ea:47:74:64:d8:e1:5a:df:c1:
40:14:4d:a5:fc:35:89:0f:10:7d:84:7b:f7:0d:10:
87:bd:1c:d3:2c:f3:f1:5c:90:72:ad:87:09:4d:d8:
74:9c:39:1f:09:bc:80:bf:df:89:90:f4:9a:95:c0:
e3:9a:c8:17:0b:a0:6b:0d:27:79:9b:df:92:13:3c:
ee:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F5:61:7C:32:08:54:8F:AE:7B:21:D9:70:FF:25:43:CA:9D:05:B0
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/xvVhfDIIVI-ueyHZcP8lQ8qdBbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.248.0/24
185.2.112.0/22
195.167.156.0/23
IPv6:
2001:1a68:19:400::/54
Signature Algorithm: sha256WithRSAEncryption
6f:24:f4:54:01:d2:7d:92:86:17:4d:78:b7:80:5f:19:6e:22:
a0:ca:90:f2:76:60:e4:3a:78:1c:2c:f4:be:37:aa:6e:e2:3a:
ff:1c:3d:1b:4a:d9:84:ed:bc:f7:2c:1c:dd:ba:e0:97:74:8d:
dc:d4:61:e7:ab:5b:cd:d8:70:9f:20:aa:02:c0:53:68:5e:ab:
8a:e6:5d:5e:85:56:3d:e4:fb:88:f3:01:8f:07:be:4a:f2:a8:
28:20:28:c4:3a:59:ec:b3:cf:98:79:26:8d:25:b6:60:db:6b:
86:62:ad:a0:40:55:20:12:61:24:51:14:43:c3:0c:4d:6c:aa:
f3:1a:50:5b:59:03:ca:fe:c8:38:13:ac:a1:3c:5e:19:b2:43:
c6:46:76:c3:bc:8e:4a:61:87:1d:f9:e4:a5:62:15:83:26:45:
a1:18:fb:d5:15:f9:78:46:25:2e:f7:a6:3a:10:81:4b:2c:2b:
3b:0d:d6:b3:df:f2:2b:05:6a:5b:06:cd:5c:29:30:36:c1:de:
9b:8e:c4:85:ab:b5:8f:2d:06:85:20:58:6a:2f:5a:05:28:0a:
26:51:33:94:7b:da:3a:6d:2d:96:7d:0b:97:ba:72:4f:52:81:
61:e3:ee:a0:cd:32:d6:3f:40:54:07:62:63:d5:55:43:17:be:
9f:0a:e2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:43 2023 by rpki-client on console-fra.rpki-client.org