Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8d9ac1-d35d-4e32-b83f-c10cc953bd1b/1/6SLOXnla20FCVVT0wpPx8wS5jYw.roa
File: 6SLOXnla20FCVVT0wpPx8wS5jYw.roa (raw, json)
Hash identifier: wfpYaSi73BOMjHbDDOs6evwu4rLfkqDHZrAw6KFcp84=
Subject key identifier: E9:22:CE:5E:79:5A:DB:41:42:55:54:F4:C2:93:F1:F3:04:B9:8D:8C
Certificate issuer: /CN=916f80c35f202eb02766419bfb7d282125ffe158
Certificate serial: 0CAE8EE3
Authority key identifier: 91:6F:80:C3:5F:20:2E:B0:27:66:41:9B:FB:7D:28:21:25:FF:E1:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kW-Aw18gLrAnZkGb-30oISX_4Vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8d9ac1-d35d-4e32-b83f-c10cc953bd1b/1/6SLOXnla20FCVVT0wpPx8wS5jYw.roa
Signing time: Sat 01 Jan 2022 11:57:14 +0000
ROA not before: Sat 01 Jan 2022 11:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58273
IP address blocks: 148.252.16.0/20 maxlen: 24
185.201.32.0/22 maxlen: 24
185.89.32.0/22 maxlen: 24
5.83.8.0/21 maxlen: 24
2a01:6240::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212766435 (0xcae8ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=916f80c35f202eb02766419bfb7d282125ffe158
Validity
Not Before: Jan 1 11:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e922ce5e795adb41425554f4c293f1f304b98d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:84:89:d1:db:3a:f5:dd:1b:d2:98:2b:87:17:
aa:cd:04:25:15:3b:ce:1b:82:d8:9b:e0:fe:7b:6b:
aa:70:a1:e9:e3:5b:d4:4c:3c:f0:ca:04:3e:6b:e2:
7c:9e:82:aa:95:84:15:7f:ef:04:fa:8e:d8:30:d3:
53:24:1b:fc:ac:98:33:14:8c:01:a5:a5:6f:ca:ff:
28:a4:5a:cc:46:7e:bb:ae:9e:05:1c:a2:e5:88:c9:
91:cc:70:0f:cb:ac:00:3c:9b:2e:00:e6:b5:1a:f0:
cd:b0:47:f0:75:e5:ca:1e:cb:51:29:d9:a2:4e:bc:
20:91:8c:cc:14:2d:83:45:c3:33:75:3e:1d:5b:a2:
0b:10:d5:6e:e3:d7:57:11:1c:9d:b1:21:da:49:c8:
bd:70:df:f6:93:1f:68:36:55:9d:3f:7f:92:8f:f4:
ec:4e:66:2e:60:32:55:94:f9:0a:e8:6a:d7:55:a5:
12:28:c4:01:5f:41:cc:ff:39:21:f1:37:2b:71:3d:
a1:b5:3c:59:c2:f3:00:a7:80:99:d9:90:33:0a:19:
2e:aa:45:bb:4e:99:24:78:58:c3:0b:d3:5a:9b:45:
5a:14:d4:07:e4:1a:b8:10:71:e9:60:41:9f:44:dd:
4b:da:0d:49:66:15:c8:db:3c:4e:5a:44:08:32:2f:
29:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:22:CE:5E:79:5A:DB:41:42:55:54:F4:C2:93:F1:F3:04:B9:8D:8C
X509v3 Authority Key Identifier:
keyid:91:6F:80:C3:5F:20:2E:B0:27:66:41:9B:FB:7D:28:21:25:FF:E1:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kW-Aw18gLrAnZkGb-30oISX_4Vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8d9ac1-d35d-4e32-b83f-c10cc953bd1b/1/6SLOXnla20FCVVT0wpPx8wS5jYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8d9ac1-d35d-4e32-b83f-c10cc953bd1b/1/kW-Aw18gLrAnZkGb-30oISX_4Vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.8.0/21
148.252.16.0/20
185.89.32.0/22
185.201.32.0/22
IPv6:
2a01:6240::/29
Signature Algorithm: sha256WithRSAEncryption
97:3c:90:c0:da:ab:b9:8f:e2:46:df:3d:86:51:45:f2:f8:2c:
54:0d:c7:59:38:23:c8:af:7a:07:04:07:b4:d1:33:bb:ea:38:
2d:81:14:74:6e:62:01:75:de:b0:be:0c:a1:28:1e:9a:4b:e2:
d2:cc:c9:f7:8f:ed:10:11:96:e5:cc:41:5c:f2:9c:d1:76:9b:
f8:6f:6a:ba:61:89:17:90:7a:a0:ce:ef:ed:bd:d3:6e:33:12:
df:f3:bd:53:d6:a1:7b:ff:7a:cc:4f:c9:23:5a:72:d4:a1:28:
ce:a9:d2:2f:6a:df:bc:c2:2f:60:6b:a7:11:7d:b9:d0:42:5c:
88:51:c3:45:89:97:bd:75:7a:c3:58:e9:64:38:7b:b7:81:87:
69:8b:30:1a:d6:f3:17:00:85:dd:b3:b8:06:73:7a:4c:a6:89:
6c:9e:fb:4a:31:ff:57:42:c1:66:fe:19:ea:2a:6b:76:ce:58:
4c:b4:56:fd:e5:57:af:99:49:2f:6f:ad:17:49:fd:09:7e:28:
0c:95:2f:5c:dd:d0:04:5b:4e:44:61:09:2f:8e:57:3f:48:c8:
a5:ce:6d:66:97:50:43:64:c5:41:b2:1c:1f:97:71:e0:75:6c:
67:f3:88:d2:f9:e9:3e:63:21:cf:d0:de:ed:84:3d:b5:38:3e:
f9:ec:58:f6
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIEDK6O4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MTZmODBjMzVmMjAyZWIwMjc2NjQxOWJmYjdkMjgyMTI1ZmZlMTU4MB4XDTIyMDEw
MTExNTcxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTkyMmNlNWU3OTVh
ZGI0MTQyNTU1NGY0YzI5M2YxZjMwNGI5OGQ4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIWEidHbOvXdG9KYK4cXqs0EJRU7zhuC2Jvg/ntrqnCh6eNb
1Ew88MoEPmvifJ6CqpWEFX/vBPqO2DDTUyQb/KyYMxSMAaWlb8r/KKRazEZ+u66e
BRyi5YjJkcxwD8usADybLgDmtRrwzbBH8HXlyh7LUSnZok68IJGMzBQtg0XDM3U+
HVuiCxDVbuPXVxEcnbEh2knIvXDf9pMfaDZVnT9/ko/07E5mLmAyVZT5Cuhq11Wl
EijEAV9BzP85IfE3K3E9obU8WcLzAKeAmdmQMwoZLqpFu06ZJHhYwwvTWptFWhTU
B+QauBBx6WBBn0TdS9oNSWYVyNs8TlpECDIvKZ8CAwEAAaOCAiowggImMB0GA1Ud
DgQWBBTpIs5eeVrbQUJVVPTCk/HzBLmNjDAfBgNVHSMEGDAWgBSRb4DDXyAusCdm
QZv7fSghJf/hWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tXLUF3MThnTHJBblprR2ItMzBvSVNYXzRWZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjYvOGQ5YWMxLWQzNWQtNGUzMi1iODNmLWMxMGNjOTUzYmQxYi8x
LzZTTE9YbmxhMjBGQ1ZWVDB3cFB4OHdTNWpZdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYv
OGQ5YWMxLWQzNWQtNGUzMi1iODNmLWMxMGNjOTUzYmQxYi8xL2tXLUF3MThnTHJB
blprR2ItMzBvSVNYXzRWZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBA
BggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEAwVTCAMEBJT8EAMEArlZIAMEArnJ
IDANBAIAAjAHAwUDKgFiQDANBgkqhkiG9w0BAQsFAAOCAQEAlzyQwNqruY/iRt89
hlFF8vgsVA3HWTgjyK96BwQHtNEzu+o4LYEUdG5iAXXesL4MoSgemkvi0szJ94/t
EBGW5cxBXPKc0Xab+G9qumGJF5B6oM7v7b3TbjMS3/O9U9ahe/96zE/JI1py1KEo
zqnSL2rfvMIvYGunEX250EJciFHDRYmXvXV6w1jpZDh7t4GHaYswGtbzFwCF3bO4
BnN6TKaJbJ77SjH/V0LBZv4Z6iprds5YTLRW/eVXr5lJL2+tF0n9CX4oDJUvXN3Q
BFtORGEJL45XP0jIpc5tZpdQQ2TFQbIcH5dx4HVsZ/OI0vnpPmMhz9De7YQ9tTg+
+exY9g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:28 2023 by rpki-client on console-fra.rpki-client.org