Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/6uiDvgKdS3nY08Nq8oAMx5lz6T8.roa
File: 6uiDvgKdS3nY08Nq8oAMx5lz6T8.roa (raw, json)
Hash identifier: DDJElMTk1na2+4JlEpZEmpqpv+B8qt+zQVKS3Xq6MsA=
Subject key identifier: EA:E8:83:BE:02:9D:4B:79:D8:D3:C3:6A:F2:80:0C:C7:99:73:E9:3F
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: D74258
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/6uiDvgKdS3nY08Nq8oAMx5lz6T8.roa
Signing time: Thu 24 Feb 2022 14:16:25 +0000
ROA not before: Thu 24 Feb 2022 14:16:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206618
IP address blocks: 194.114.80.0/23 maxlen: 23
194.114.85.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.96.0/24 maxlen: 24
194.114.96.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.94.0/23 maxlen: 23
194.114.98.0/23 maxlen: 23
194.114.97.0/24 maxlen: 24
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
143.163.67.0/24 maxlen: 24
194.114.112.0/22 maxlen: 22
143.163.66.0/24 maxlen: 24
143.163.66.0/23 maxlen: 23
194.114.116.0/22 maxlen: 22
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
143.163.1.0/24 maxlen: 24
194.114.44.0/22 maxlen: 22
194.114.48.0/21 maxlen: 21
143.163.12.0/22 maxlen: 22
194.114.56.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
194.114.63.0/24 maxlen: 24
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.74.0/24 maxlen: 24
194.114.78.0/23 maxlen: 23
194.114.77.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14107224 (0xd74258)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Feb 24 14:16:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eae883be029d4b79d8d3c36af2800cc79973e93f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:78:06:12:02:74:02:38:c8:d9:0e:b8:7e:
b3:9a:3d:58:53:a4:99:cf:51:55:b6:8b:a9:02:6e:
ff:ab:eb:87:10:1c:29:f4:4f:86:26:f1:8c:52:ff:
0f:9c:06:28:20:2c:48:a0:76:f8:aa:aa:26:1e:77:
06:5d:2f:c6:63:3d:32:d4:29:dd:85:34:e0:6f:e1:
7f:e7:a1:c8:c8:91:78:9d:7b:ad:8d:bc:b2:ac:9b:
57:44:3c:b8:ba:99:5f:80:fd:46:0b:46:75:13:ca:
47:55:5a:df:d6:63:74:de:ac:6b:97:0b:46:d8:24:
e3:74:43:0f:4e:cd:3f:dc:4b:a3:66:cc:89:19:c9:
16:11:ea:b6:57:4c:0d:29:3d:63:90:8e:9d:78:de:
be:16:15:c2:36:05:69:fd:27:9e:17:68:e4:1f:ac:
b5:78:6a:89:5c:c0:0a:af:37:8f:a2:7b:c9:b2:e2:
b4:3b:cf:84:7f:50:5c:82:4b:da:2e:f4:26:32:6d:
a0:01:e3:8a:a5:df:e1:0c:50:8d:6f:e4:08:92:46:
67:af:ce:bb:8d:e4:49:15:53:6e:28:3a:02:0a:6a:
2c:3f:c2:40:0e:49:05:dd:cf:e8:02:b4:0b:b4:09:
05:c8:c8:40:ee:68:bb:9a:f3:cc:56:4f:9b:fc:e2:
52:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E8:83:BE:02:9D:4B:79:D8:D3:C3:6A:F2:80:0C:C7:99:73:E9:3F
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/6uiDvgKdS3nY08Nq8oAMx5lz6T8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.12.0-143.163.17.255
143.163.66.0/23
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.44.0-194.114.59.255
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.74.0/24
194.114.77.0-194.114.81.255
194.114.85.0/24
194.114.94.0-194.114.119.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
56:01:08:92:08:17:98:e6:42:0e:d3:31:3e:b1:78:d1:f1:e3:
95:dd:d8:7a:91:80:5a:85:82:42:03:50:26:6b:18:da:97:7f:
27:8a:c1:0f:d1:9d:1b:6d:a0:f2:73:b5:75:7d:b7:9d:aa:23:
25:8c:4d:93:98:d5:53:f0:eb:50:b5:fa:e4:69:95:e6:de:01:
88:b3:a7:b0:19:60:90:e8:f7:55:5c:a1:3f:f8:26:61:0d:88:
80:28:11:5f:ba:f4:2a:33:f9:d8:17:0c:e3:28:02:86:5c:b3:
3c:e2:19:40:4d:3d:e8:23:77:d6:9f:ff:48:3c:b8:48:cc:af:
ae:d3:87:f5:e1:08:b8:2c:4e:7c:3a:1f:92:54:f7:a5:5e:63:
fc:e9:42:3d:76:15:0f:fc:3e:6b:52:0f:2b:8f:9c:41:47:83:
c3:0b:59:28:60:f3:15:9d:71:4d:d5:7d:28:90:be:85:15:77:
c8:3c:76:91:4a:54:87:61:64:ad:c5:2c:26:7a:65:e3:0c:8e:
90:ff:b3:83:da:59:26:64:fc:00:3c:10:4f:13:c3:3b:95:e6:
40:90:66:60:7b:a5:7b:35:41:96:b1:8f:d6:99:53:24:7e:aa:
a6:ff:c1:09:a0:6d:9c:61:c1:c4:6e:b7:db:15:1e:2b:2a:e5:
0c:cd:61:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:44 2025 by rpki-client