Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/99dd6e-0856-4a27-aecd-d8928f5e1b40/1/6Cn9RVdTL_wV_tOEGgVETw4XHwE.roa
File: 6Cn9RVdTL_wV_tOEGgVETw4XHwE.roa (raw, json)
Hash identifier: 68U9gG2i/+9WiPnnGjCaPlHWq1qbEmtsYj73qYKemc4=
Subject key identifier: E8:29:FD:45:57:53:2F:FC:15:FE:D3:84:1A:05:44:4F:0E:17:1F:01
Certificate issuer: /CN=6a9d6d26e56c132ddbbc005ac424fb536acba020
Certificate serial: 06D84503
Authority key identifier: 6A:9D:6D:26:E5:6C:13:2D:DB:BC:00:5A:C4:24:FB:53:6A:CB:A0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap1tJuVsEy3bvABaxCT7U2rLoCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/99dd6e-0856-4a27-aecd-d8928f5e1b40/1/6Cn9RVdTL_wV_tOEGgVETw4XHwE.roa
Signing time: Sat 01 Jan 2022 00:58:51 +0000
ROA not before: Sat 01 Jan 2022 00:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 193.5.152.0/22 maxlen: 22
193.247.182.0/24 maxlen: 24
193.246.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114836739 (0x6d84503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9d6d26e56c132ddbbc005ac424fb536acba020
Validity
Not Before: Jan 1 00:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e829fd4557532ffc15fed3841a05444f0e171f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fa:44:9c:ab:0c:c2:94:cf:f9:4d:86:54:1f:
55:f1:70:57:e3:c2:0b:54:ff:87:81:f9:15:bd:51:
89:6c:f5:1c:62:d7:50:a8:06:cf:be:a5:c9:a9:32:
b9:e3:b2:15:26:3b:38:20:53:2e:ea:4d:7a:35:5a:
5f:71:32:9c:b4:59:f4:d1:7e:8e:20:40:11:59:5b:
96:fe:0d:32:35:8f:04:c8:21:4f:a7:f0:99:0d:fd:
44:fa:b4:65:a9:26:11:15:5e:c6:2b:89:d9:af:44:
48:ec:f5:36:b9:2c:fe:b4:91:52:3e:71:57:ff:bc:
4b:fb:b6:66:fb:98:3e:2b:01:fc:7b:b4:0a:05:5a:
61:43:0c:69:6f:df:b4:85:aa:b9:8c:d3:12:28:3b:
99:69:53:64:06:41:2c:83:53:ca:d7:1e:f1:7c:e3:
b9:2a:d4:b4:0b:7a:45:0c:bb:b6:39:c2:aa:85:9a:
39:2b:0d:06:80:b8:ef:ce:73:24:90:70:cf:24:bc:
5f:5d:b6:99:89:db:9c:13:c3:8c:95:48:63:f7:94:
a4:23:3b:f0:70:63:82:7e:c5:8b:a3:b0:86:34:57:
77:8c:17:42:0c:73:9c:a3:3d:26:76:b1:0e:b1:15:
d0:08:55:c4:e1:14:54:0a:71:9e:5e:a0:45:e6:f7:
ce:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:29:FD:45:57:53:2F:FC:15:FE:D3:84:1A:05:44:4F:0E:17:1F:01
X509v3 Authority Key Identifier:
keyid:6A:9D:6D:26:E5:6C:13:2D:DB:BC:00:5A:C4:24:FB:53:6A:CB:A0:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap1tJuVsEy3bvABaxCT7U2rLoCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/99dd6e-0856-4a27-aecd-d8928f5e1b40/1/6Cn9RVdTL_wV_tOEGgVETw4XHwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/99dd6e-0856-4a27-aecd-d8928f5e1b40/1/ap1tJuVsEy3bvABaxCT7U2rLoCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.152.0/22
193.246.121.0/24
193.247.182.0/24
Signature Algorithm: sha256WithRSAEncryption
36:10:6e:5e:ac:1b:e0:c9:91:06:b3:b5:3f:21:06:40:f0:6c:
30:8e:db:4a:aa:c5:83:75:21:9c:84:9e:42:50:e4:26:67:32:
bc:87:b2:fa:2f:41:f2:73:d2:e4:59:94:7f:ec:bb:ff:58:93:
af:d3:5f:d9:ee:1f:81:de:e8:2d:ec:12:79:68:89:a1:66:8d:
c0:10:c7:12:a4:dd:98:29:c4:73:44:42:e1:90:08:5d:b9:dc:
b1:d5:f6:0e:8e:01:50:22:62:8c:a4:d7:a1:05:4c:07:66:ec:
c7:5f:a8:d2:b9:41:f7:78:93:18:f2:71:12:ff:91:38:c9:a7:
b4:dd:05:a9:11:76:ef:ce:75:e6:1f:1b:dd:5c:2a:7a:b0:01:
f7:20:45:8a:2d:df:c4:15:3a:1a:4c:19:2f:74:d4:f5:aa:3f:
38:25:44:77:f7:0a:8b:db:37:df:fc:f4:2b:f5:b7:78:34:82:
81:01:fe:8c:fa:c9:86:72:5f:82:2a:12:52:c3:40:b2:5b:9d:
4c:28:03:9c:66:0d:70:8d:fa:db:3b:60:30:a3:32:d7:4e:d2:
01:c6:b0:ec:b1:48:cd:e8:c8:79:5f:09:d9:c3:30:c4:87:e2:
f4:a9:9c:44:26:71:93:0b:9e:6b:47:d7:c9:fd:a5:95:d4:b1:
d5:61:61:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org