Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2f5ec7-ac2b-4c66-9364-9a61831869ae/1/d9jc6OS8tHX9zdmYotwvJgQSZO8.roa
File: d9jc6OS8tHX9zdmYotwvJgQSZO8.roa (raw, json)
Hash identifier: WXakNg9tKk+wySC4II4CH/y21FxLt5bcUQoijXWYiQQ=
Subject key identifier: 77:D8:DC:E8:E4:BC:B4:75:FD:CD:D9:98:A2:DC:2F:26:04:12:64:EF
Certificate issuer: /CN=6c05cf9c327b2fc877be8b561822b065e09690c2
Certificate serial: 088B88A1
Authority key identifier: 6C:05:CF:9C:32:7B:2F:C8:77:BE:8B:56:18:22:B0:65:E0:96:90:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAXPnDJ7L8h3votWGCKwZeCWkMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2f5ec7-ac2b-4c66-9364-9a61831869ae/1/d9jc6OS8tHX9zdmYotwvJgQSZO8.roa
Signing time: Sat 01 Jan 2022 09:03:00 +0000
ROA not before: Sat 01 Jan 2022 09:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209014
IP address blocks: 194.93.68.0/22 maxlen: 24
185.245.56.0/23 maxlen: 24
2a0d:140::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143362209 (0x88b88a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c05cf9c327b2fc877be8b561822b065e09690c2
Validity
Not Before: Jan 1 09:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77d8dce8e4bcb475fdcdd998a2dc2f26041264ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:60:d6:ac:82:b1:17:09:63:76:32:df:81:ee:
f1:da:2b:a4:e2:42:c7:ee:44:76:2a:ad:c3:b9:18:
f6:12:46:3a:be:ed:43:e5:c4:4a:d2:70:46:59:7c:
19:e3:28:60:2a:7f:df:1f:5c:77:aa:8d:53:63:f8:
9d:13:6c:c3:ea:f4:77:cf:fe:02:d2:1f:c6:c5:a7:
9f:ad:3a:b8:46:4c:fe:5a:ec:4d:06:e7:32:76:c6:
e8:ae:59:75:29:1b:13:93:9a:af:02:f5:85:71:87:
b6:07:b6:c4:07:10:3a:2e:75:dc:b7:9c:7f:41:5c:
0a:d0:f0:ba:8e:25:b0:7d:82:af:4e:0a:e3:d0:9d:
0d:30:1b:8a:9b:96:b0:88:69:8d:d1:8c:f5:fc:65:
f4:92:8d:5f:97:6e:a9:20:ac:a3:1f:c7:38:da:a5:
4a:1e:0d:22:37:55:d9:13:61:cd:81:2d:a0:31:94:
b8:0e:2c:e4:6c:67:d4:44:59:e0:56:73:12:49:97:
49:85:7e:8a:81:df:12:2a:74:e9:f6:47:03:5e:17:
5c:6e:e7:34:c0:c7:83:0d:04:e2:a6:90:ba:9f:ef:
71:88:bc:44:d4:58:0c:f9:c5:f6:66:79:fe:c8:c1:
7a:50:99:08:75:f7:98:8e:c2:8a:ba:7b:5e:d0:ac:
7f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D8:DC:E8:E4:BC:B4:75:FD:CD:D9:98:A2:DC:2F:26:04:12:64:EF
X509v3 Authority Key Identifier:
keyid:6C:05:CF:9C:32:7B:2F:C8:77:BE:8B:56:18:22:B0:65:E0:96:90:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAXPnDJ7L8h3votWGCKwZeCWkMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2f5ec7-ac2b-4c66-9364-9a61831869ae/1/d9jc6OS8tHX9zdmYotwvJgQSZO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2f5ec7-ac2b-4c66-9364-9a61831869ae/1/bAXPnDJ7L8h3votWGCKwZeCWkMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.56.0/23
194.93.68.0/22
IPv6:
2a0d:140::/29
Signature Algorithm: sha256WithRSAEncryption
37:e4:e9:86:35:23:fc:38:dd:81:09:0e:03:ab:62:42:4b:aa:
99:cb:d7:8c:b3:20:ef:ad:05:a1:b1:77:44:26:c0:8d:28:73:
24:3f:1f:3e:36:86:de:fd:71:fd:10:46:d9:e1:fa:8e:31:98:
80:45:b3:0e:fe:e5:f6:08:d8:ca:c9:a3:03:7a:b6:32:33:4f:
a1:a5:a7:92:be:d4:18:d9:b3:65:45:65:6b:c6:ae:ca:3b:3a:
fe:9b:a3:05:d7:6e:74:a0:6e:e4:15:8b:26:df:e9:88:b3:c2:
b9:f1:e0:c3:3f:59:90:ea:db:75:11:58:4e:e3:93:60:aa:9d:
23:dd:f2:b4:66:62:14:af:04:08:2a:83:3b:dd:01:eb:dc:35:
37:9f:39:97:63:6f:a3:d3:83:a2:6f:3f:68:e6:d0:14:ca:b5:
11:7a:18:35:39:e3:8c:32:aa:54:4a:cc:5c:e5:41:72:b2:bd:
63:c7:9a:ed:48:e1:f2:ec:bd:3b:88:b2:c8:ab:e9:2f:03:26:
5d:18:09:18:30:a3:6a:ae:e3:bc:9b:a5:5d:af:a0:e3:c8:87:
e4:32:ef:a7:e3:ef:90:c1:18:e1:26:a4:d9:6b:8f:cf:37:58:
b4:cd:57:d6:83:f8:3d:af:48:5d:28:b0:77:94:9b:bd:bf:86:
4d:dd:2e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:31 2024 by rpki-client on console-ams.rpki-client.org