Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/6RYBYFjqHaYxsbC7oxVXADG0jyY.roa
File: 6RYBYFjqHaYxsbC7oxVXADG0jyY.roa (raw, json)
Hash identifier: dF5y2NUTZx2GU6yhN+TRf82kZ2YtVrgexgyGObqitjM=
Subject key identifier: E9:16:01:60:58:EA:1D:A6:31:B1:B0:BB:A3:15:57:00:31:B4:8F:26
Certificate issuer: /CN=11c971ff0d25f2034c05ab2958a86f732bc67734
Certificate serial: 17A6F4B9
Authority key identifier: 11:C9:71:FF:0D:25:F2:03:4C:05:AB:29:58:A8:6F:73:2B:C6:77:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eclx_w0l8gNMBaspWKhvcyvGdzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/6RYBYFjqHaYxsbC7oxVXADG0jyY.roa
Signing time: Sat 01 Jan 2022 06:04:42 +0000
ROA not before: Sat 01 Jan 2022 06:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202040
IP address blocks: 185.54.76.0/22 maxlen: 22
193.141.27.0/24 maxlen: 24
2a04:d140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396817593 (0x17a6f4b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11c971ff0d25f2034c05ab2958a86f732bc67734
Validity
Not Before: Jan 1 06:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e916016058ea1da631b1b0bba315570031b48f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e0:65:cd:66:2c:bf:76:08:43:e5:d8:4e:79:
a4:73:b7:33:02:ee:9d:06:38:b6:cb:d9:2a:32:c2:
81:b0:be:f4:22:c1:58:d1:f4:5b:6c:87:c1:1d:69:
d5:f2:d0:11:b6:bc:cf:4f:77:d8:7f:45:97:06:c8:
01:60:79:a6:b3:24:fe:5d:7f:91:c2:5a:bf:92:c6:
1d:40:06:d8:4a:3b:b9:cd:94:02:37:28:aa:cf:a7:
84:d6:7d:c4:3e:b0:b3:5a:a1:50:d4:bd:81:37:ee:
35:72:0c:2f:51:2e:54:35:c5:38:d8:8f:cb:a4:4c:
00:04:9e:49:6c:76:0a:ec:4d:d7:64:e0:18:de:cb:
cd:4a:cc:87:a7:6c:48:af:93:b3:23:76:f6:f1:e7:
3d:4d:0e:a9:cb:9a:16:4e:de:36:6a:3b:4e:d0:69:
2a:9a:98:16:af:dc:13:fe:9b:72:8d:ae:d8:f9:6e:
a5:27:b8:0d:0a:f8:04:fc:6b:f5:e0:ca:f9:bf:95:
54:7e:66:11:45:a2:52:67:76:b4:2d:d4:19:50:64:
91:01:a8:00:31:d1:31:8d:d5:76:25:f3:e4:12:6e:
b4:05:09:43:45:17:f2:74:96:e8:93:3a:52:1a:31:
f2:38:37:a8:3f:70:27:fa:e7:6a:37:cd:52:eb:1a:
2f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:16:01:60:58:EA:1D:A6:31:B1:B0:BB:A3:15:57:00:31:B4:8F:26
X509v3 Authority Key Identifier:
keyid:11:C9:71:FF:0D:25:F2:03:4C:05:AB:29:58:A8:6F:73:2B:C6:77:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eclx_w0l8gNMBaspWKhvcyvGdzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/6RYBYFjqHaYxsbC7oxVXADG0jyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/Eclx_w0l8gNMBaspWKhvcyvGdzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.76.0/22
193.141.27.0/24
IPv6:
2a04:d140::/29
Signature Algorithm: sha256WithRSAEncryption
10:b5:3e:5e:52:e5:28:52:47:c9:97:8a:e1:91:bf:fd:f9:3e:
70:ff:37:88:c3:dd:6d:3d:5e:27:02:c9:ed:59:63:99:2b:03:
1a:62:fd:26:0a:56:75:e4:b1:5b:bc:af:6c:56:61:ff:7b:21:
a2:95:13:57:00:88:1e:87:75:c6:5e:44:1a:c9:17:75:ca:63:
ce:c4:91:6a:3d:f3:54:a8:99:84:3c:ac:76:33:22:bf:52:dd:
a6:98:f9:07:cd:0b:c5:a4:f8:6c:ea:31:87:06:06:49:dc:7a:
87:d0:4e:dc:e8:23:8c:53:9a:0c:a0:97:db:9a:2f:03:58:7b:
42:c7:67:23:58:0d:b6:20:b1:77:d8:3b:ef:c8:4c:34:c2:bd:
2d:56:95:46:41:08:27:d1:1e:08:83:e0:bd:7e:50:9f:f6:71:
60:b6:4e:83:c3:9d:bd:0c:51:17:99:1c:85:5d:81:e9:36:f6:
01:05:fb:f2:9f:9c:9f:48:46:ce:d6:e9:95:af:23:44:ff:b2:
ad:15:af:dd:73:ce:fa:d0:86:70:ab:2a:f1:86:9c:0a:d3:a7:
24:42:3c:22:37:de:aa:7d:2f:b4:7a:a8:94:58:1f:16:0b:ec:
22:5f:f3:7a:70:c2:19:28:de:d9:a8:18:61:ed:23:6d:29:1b:
4c:c3:48:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org