Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/6p1Xgce0ZhnzB5iXLRmLIJx4dII.roa
File: 6p1Xgce0ZhnzB5iXLRmLIJx4dII.roa (raw, json)
Hash identifier: 8gHBRW958zhwpOuna6iB6m6TmRsistdnbCrw9GEoifc=
Subject key identifier: EA:9D:57:81:C7:B4:66:19:F3:07:98:97:2D:19:8B:20:9C:78:74:82
Certificate issuer: /CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Certificate serial: 369F1C72
Authority key identifier: 8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/6p1Xgce0ZhnzB5iXLRmLIJx4dII.roa
Signing time: Sat 01 Jan 2022 07:03:15 +0000
ROA not before: Sat 01 Jan 2022 07:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51531
IP address blocks: 45.140.112.0/22 maxlen: 24
195.211.56.0/22 maxlen: 24
185.176.192.0/22 maxlen: 24
46.31.120.0/21 maxlen: 24
45.129.80.0/22 maxlen: 24
81.89.88.0/21 maxlen: 24
185.70.20.0/22 maxlen: 24
2a02:c50::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916397170 (0x369f1c72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Validity
Not Before: Jan 1 07:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea9d5781c7b46619f30798972d198b209c787482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f8:ef:8a:31:52:ce:b7:9f:b1:d8:65:b7:6e:
f5:33:4a:b7:69:17:d4:77:e2:31:fe:fe:3c:d6:f4:
81:0f:f0:36:89:ad:8b:c2:07:7b:f9:10:3c:b2:86:
a9:0c:33:2c:41:73:8b:f8:ed:82:1b:de:21:a4:62:
cc:a2:24:32:85:8e:b6:45:fb:45:ba:76:d7:3c:86:
cb:d2:a2:e9:34:6f:28:d4:87:31:26:00:4d:57:90:
a2:d9:b5:87:bd:70:29:bf:e1:b7:7e:ac:e0:d5:fa:
b6:9a:cb:89:66:7c:8d:e1:a3:67:ee:ee:bb:d3:0c:
3c:a7:67:f1:c6:38:1f:12:20:aa:74:cd:50:c5:7e:
f5:29:fd:cf:29:13:b0:e8:40:26:7d:ce:d5:6c:4a:
6e:35:77:98:52:c9:e3:40:81:15:04:58:8e:8d:f2:
e8:89:1f:ad:3a:bd:e8:54:e8:11:4d:07:25:0d:73:
6d:9d:d9:c0:53:e8:f1:c8:a3:2d:03:28:20:8c:48:
24:c3:03:d2:44:e7:68:c8:e1:cb:54:3d:3a:43:39:
40:7b:49:38:7b:18:76:1a:00:cd:5f:4c:e8:a7:b6:
6f:8f:b9:db:9a:ae:5a:d7:72:4d:c7:13:8f:ca:86:
1c:15:7b:f3:2f:6a:06:fd:85:c7:8a:82:e1:07:be:
9c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:9D:57:81:C7:B4:66:19:F3:07:98:97:2D:19:8B:20:9C:78:74:82
X509v3 Authority Key Identifier:
keyid:8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/6p1Xgce0ZhnzB5iXLRmLIJx4dII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.80.0/22
45.140.112.0/22
46.31.120.0/21
81.89.88.0/21
185.70.20.0/22
185.176.192.0/22
195.211.56.0/22
IPv6:
2a02:c50::/32
Signature Algorithm: sha256WithRSAEncryption
6f:86:a1:96:04:8b:11:23:37:1e:56:26:10:a4:c8:d3:81:73:
b4:ee:bb:e1:d2:a2:95:4c:85:80:8b:19:19:06:8b:1e:02:1d:
32:8c:0c:4e:cf:b4:ef:f3:85:47:72:c4:2a:26:e3:15:35:fe:
d5:64:85:a6:d4:79:ca:68:8b:9d:b6:ae:ff:8b:01:ba:a5:c9:
45:af:f7:22:5f:03:59:46:cb:03:2a:f1:ee:73:15:11:4d:d9:
48:a8:3f:40:37:15:8a:10:70:cd:7c:ef:ff:ac:90:28:9c:e9:
a4:e6:32:28:ed:25:6a:68:df:a3:af:d7:fd:da:6f:d5:a4:39:
78:d4:0d:72:d9:46:66:47:12:61:31:27:fd:a0:ae:ed:70:99:
32:e7:a5:c7:6e:28:3e:6f:d3:55:d3:e4:ac:8d:e7:0a:cd:98:
3a:97:9c:56:87:97:5a:a2:96:af:09:92:06:c5:4d:6a:5e:52:
66:de:53:f8:d9:b8:f2:a7:a1:7c:25:a3:77:ea:41:1d:63:45:
42:bc:ea:a0:98:6d:13:ee:74:4b:d2:21:04:88:8b:0f:be:42:
b0:5a:c1:e9:c6:bd:cc:e1:94:18:9b:a6:ff:81:c5:87:8a:31:
e3:81:4a:93:dc:6f:2f:38:bf:0a:5a:a3:91:be:cd:bf:40:40:
05:ea:96:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:44 2023 by rpki-client on console-ams.rpki-client.org