Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/6jX_aov8bnDvJF9ciOefml9kISM.roa
File: 6jX_aov8bnDvJF9ciOefml9kISM.roa (raw, json)
Hash identifier: 4i+sb37QL2/KcYpPwyMJ6ZJI45ov/XMGf3BPeJA8Pe8=
Subject key identifier: EA:35:FF:6A:8B:FC:6E:70:EF:24:5F:5C:88:E7:9F:9A:5F:64:21:23
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0182DC21A771307E69D39D2FEF0723DFF896
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/6jX_aov8bnDvJF9ciOefml9kISM.roa
Signing time: Fri 26 Aug 2022 21:49:29 +0000
ROA not before: Fri 26 Aug 2022 21:49:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 94.131.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dc:21:a7:71:30:7e:69:d3:9d:2f:ef:07:23:df:f8:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Aug 26 21:49:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea35ff6a8bfc6e70ef245f5c88e79f9a5f642123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ad:eb:ee:6b:ad:b5:6c:1a:a4:7d:e5:5b:a6:
f6:97:3b:f2:77:39:03:77:77:04:18:7a:6c:48:f2:
bf:56:dd:19:d7:93:0c:30:8b:82:f5:e9:7d:a1:77:
6e:c0:5a:6c:65:76:fc:31:e4:86:04:13:9e:16:97:
84:df:04:18:22:f1:87:64:5b:40:c6:b2:a8:81:64:
21:23:d4:76:b9:06:f5:7f:4e:a8:ea:ef:a1:d7:2b:
54:dc:ba:42:2a:83:68:7b:eb:24:88:f6:8a:e2:ce:
82:a8:a1:4e:3f:3b:f7:00:ee:d7:36:30:3b:8a:2a:
6a:3e:07:0d:ba:46:d6:9a:16:ff:60:d2:8a:73:66:
57:88:d1:38:a2:34:a8:da:e3:7f:f5:d2:00:90:31:
b7:19:61:f4:9b:91:de:3c:9f:e9:96:3a:36:63:91:
52:d1:17:fd:ee:87:b0:49:fc:f2:a0:3a:75:28:2f:
ab:9d:8a:b4:31:5a:1a:10:10:38:ba:79:82:dc:5b:
ae:03:ec:85:a8:34:21:a5:a1:c8:e6:05:11:dd:6e:
53:91:e1:11:ef:f3:56:35:e3:c9:3e:13:01:72:fe:
61:15:14:26:e5:4e:8d:10:d8:04:ab:96:b4:99:b8:
a9:31:4e:a0:7c:ec:02:55:5e:a3:fd:54:14:6a:8e:
36:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:35:FF:6A:8B:FC:6E:70:EF:24:5F:5C:88:E7:9F:9A:5F:64:21:23
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/6jX_aov8bnDvJF9ciOefml9kISM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.98.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:6a:93:44:8b:cd:a0:3f:27:4b:3e:35:5f:f5:2e:f8:cc:00:
f8:2d:55:0b:28:ff:91:7c:8d:6c:25:45:8f:ab:b2:5c:d4:e6:
3f:8f:63:a2:41:ab:66:9e:66:24:05:3f:e2:34:30:72:0f:53:
07:d2:7c:33:c4:6c:69:af:51:47:cd:3a:36:bb:01:ee:e5:c1:
c9:3f:f7:b2:59:78:99:c9:9f:3b:40:ea:be:ae:07:94:20:2e:
9f:aa:16:c4:33:94:cf:23:65:bc:ea:86:ed:07:44:c0:d6:af:
bd:91:c2:8c:65:e7:a5:c9:5e:01:9e:b4:69:e5:50:56:a0:da:
03:9c:8f:73:2e:16:36:d9:96:1a:cc:ee:a9:6e:e4:32:e8:a8:
92:2f:7a:c6:f5:ee:1e:ee:52:cf:44:e4:25:b1:d4:98:b3:2e:
0a:1a:3f:a5:37:d9:09:54:0d:d0:bd:69:a2:50:ff:91:ad:de:
3d:b6:a3:a9:95:86:67:4d:4f:c7:c0:82:a9:1a:f2:dd:01:17:
98:0d:40:0c:84:a3:60:d1:7f:0c:4e:c5:4e:5a:ed:39:f4:3b:
c8:76:26:2e:74:a9:bc:08:e6:b7:7f:65:85:79:d3:7b:21:81:
16:12:e3:5b:8b:bb:82:f1:e6:a1:2a:b9:42:ef:f9:c4:23:be:
eb:2d:00:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org