Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/arr2E4YQI0Ifur3aMZyBrngyGGQ.roa
File: arr2E4YQI0Ifur3aMZyBrngyGGQ.roa (raw, json)
Hash identifier: EldXY3U/7DCbACmIZ08ypfMGUT4WAncca+mIIOoMxXE=
Subject key identifier: 6A:BA:F6:13:86:10:23:42:1F:BA:BD:DA:31:9C:81:AE:78:32:18:64
Certificate issuer: /CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Certificate serial: 132B035C
Authority key identifier: C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/arr2E4YQI0Ifur3aMZyBrngyGGQ.roa
Signing time: Sat 01 Jan 2022 01:51:16 +0000
ROA not before: Sat 01 Jan 2022 01:51:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201188
IP address blocks: 185.63.92.0/24 maxlen: 24
185.63.93.0/24 maxlen: 24
185.63.94.0/24 maxlen: 24
185.16.110.0/24 maxlen: 24
2a03:ba6::/64 maxlen: 64
2a03:ba0::/29 maxlen: 29
2a03:ba2::/64 maxlen: 64
2a03:ba3::/64 maxlen: 64
2a03:ba7::/64 maxlen: 64
2a03:ba4::/64 maxlen: 64
2a03:ba0::/64 maxlen: 64
2a03:ba0::/32 maxlen: 32
2a03:ba5::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321586012 (0x132b035c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Validity
Not Before: Jan 1 01:51:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6abaf613861023421fbabdda319c81ae78321864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:17:d6:57:23:75:90:38:d6:f6:b2:61:d2:c5:
40:65:b2:c3:8d:79:92:92:03:11:a0:03:6f:60:2a:
86:7e:4c:fc:0a:30:8a:38:07:ef:50:75:69:d1:6f:
ea:bc:68:bd:40:73:36:e7:0b:bd:88:fc:3d:16:c6:
8a:84:79:47:c2:76:56:7d:35:ab:4a:4b:ce:2e:da:
e6:cd:55:c7:06:bf:26:ef:45:6b:73:8b:22:1e:b6:
83:47:9e:e4:67:d9:af:25:9e:48:79:f5:b8:3c:2d:
ef:dc:b8:da:84:ca:3f:88:b7:e6:88:40:af:ee:44:
70:ad:e0:fd:98:2f:15:45:24:99:1d:0a:2e:11:1c:
d7:b0:71:39:73:37:9e:f6:a1:ea:3c:38:7f:8d:40:
62:2e:4c:dd:b4:2f:c8:20:10:af:22:df:f9:3c:76:
92:70:d3:e0:5d:d2:bd:35:4a:e7:94:e8:48:31:1a:
d8:ea:36:d2:a0:1a:3a:bc:05:db:02:2a:1e:fb:7f:
5f:f6:82:08:d1:b3:76:a5:60:75:9d:34:c2:12:f7:
26:00:93:2f:da:d3:02:c5:99:75:1f:1e:c2:07:bc:
60:21:c6:80:c3:e1:02:01:2a:32:36:00:88:91:f0:
ae:33:5b:f2:e1:fd:18:60:ce:26:f1:87:01:ee:a4:
b7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:BA:F6:13:86:10:23:42:1F:BA:BD:DA:31:9C:81:AE:78:32:18:64
X509v3 Authority Key Identifier:
keyid:C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/arr2E4YQI0Ifur3aMZyBrngyGGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/xr--8nm_ne1uNlHgYo05unkpT3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.110.0/24
185.63.92.0-185.63.94.255
IPv6:
2a03:ba0::/29
Signature Algorithm: sha256WithRSAEncryption
cc:92:1a:fa:0b:50:ac:0f:f9:ce:35:41:9f:f8:06:58:de:ca:
d4:54:37:40:da:58:44:e4:51:17:07:ba:7b:7d:29:6a:a2:93:
17:31:13:48:6a:9b:15:c8:ce:c9:fc:59:3b:83:76:2a:ce:80:
1b:c4:e9:da:b9:79:90:fc:10:d2:27:15:2c:25:05:7f:ed:4c:
4e:a2:f4:a9:b0:05:54:1a:61:0b:af:e1:ed:62:5f:e3:dd:31:
72:44:f5:f5:1b:a5:30:24:f9:a0:ee:f3:b1:83:fb:83:8f:44:
4a:fa:96:2e:cd:2b:42:a6:3f:00:02:ab:8d:9b:0c:8d:6b:ee:
b2:60:b7:c5:69:23:ab:6d:77:c6:00:2e:55:1d:f9:20:e2:8e:
a5:4f:a7:ed:c5:62:55:36:a6:0c:e1:95:e0:26:71:9b:fb:27:
bc:6c:3c:b1:29:15:4d:99:4e:14:38:38:62:a3:a8:64:cd:4c:
12:17:c0:61:10:ad:1c:30:03:15:eb:f2:15:45:68:7c:c5:be:
4d:af:d6:ed:ec:12:e5:d9:62:2e:fa:2f:3d:c7:28:3e:61:e6:
e4:b5:b4:b4:42:f5:c3:88:ad:23:d1:fc:32:79:f9:2a:30:50:
32:a3:0c:74:ef:10:94:7b:04:7b:84:5f:30:a9:50:dc:11:36:
ff:96:3a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:02 2024 by rpki-client on console-fra.rpki-client.org