Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/6fdlXUthqRQzeMmj6HaNXcIbkSI.roa
File: 6fdlXUthqRQzeMmj6HaNXcIbkSI.roa (raw, json)
Hash identifier: zSMzI/sIBbzd9uyesyZUORNV3ADMZqHvQCFohl9Khdg=
Subject key identifier: E9:F7:65:5D:4B:61:A9:14:33:78:C9:A3:E8:76:8D:5D:C2:1B:91:22
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018C826A7EDF775FE7DFC0B4ECBB04717C4F
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/6fdlXUthqRQzeMmj6HaNXcIbkSI.roa
Signing time: Tue 19 Dec 2023 14:11:06 +0000
ROA not before: Tue 19 Dec 2023 14:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400909
IP address blocks: 176.221.30.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:6a:7e:df:77:5f:e7:df:c0:b4:ec:bb:04:71:7c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Dec 19 14:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9f7655d4b61a9143378c9a3e8768d5dc21b9122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:13:39:6e:0e:e9:bf:6a:3d:0f:15:55:3f:26:
01:4d:33:67:e1:36:d2:0b:bc:70:38:04:d3:2b:b0:
6c:52:df:c1:6b:77:c2:26:99:d1:97:48:92:63:da:
b8:db:08:8b:5f:a9:a1:4c:3f:02:bc:aa:37:b6:1c:
69:6c:fb:34:f2:88:74:bb:81:8b:f4:58:31:99:c3:
6a:17:db:1b:cb:2c:c0:20:3d:f0:79:1d:12:68:f1:
5a:bc:e5:f0:c5:1a:30:1c:5f:d3:05:37:42:05:b9:
d2:cd:9f:8c:b9:79:dd:44:e2:c3:e5:87:54:2e:13:
ce:db:38:95:5a:bd:db:0a:a3:2f:7c:22:51:b3:a8:
60:c6:5c:2c:a7:3e:30:68:b3:01:a4:ce:60:a2:92:
fa:7e:13:c6:75:f1:3d:ec:e3:13:f4:ef:7d:bd:e7:
77:f6:87:85:ed:f3:01:0b:87:fe:d4:6b:50:6e:32:
f1:e2:70:d4:9c:84:df:6e:0a:3c:ea:7a:45:f1:ac:
1e:92:0c:c7:eb:f6:aa:c3:44:99:fa:cd:a3:40:22:
49:82:35:67:a3:20:91:d0:e1:37:b3:60:b2:c8:ac:
70:92:b5:33:b0:f1:cd:15:9c:bf:2d:9f:77:87:81:
52:7a:a8:f4:35:58:ac:33:df:ec:e4:91:e8:6f:d2:
6e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F7:65:5D:4B:61:A9:14:33:78:C9:A3:E8:76:8D:5D:C2:1B:91:22
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/6fdlXUthqRQzeMmj6HaNXcIbkSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.30.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:64:da:6a:de:61:3f:15:d9:f0:71:43:cc:eb:7f:f7:01:77:
a2:26:c2:3e:30:f7:da:b7:52:f8:27:29:4a:e8:3e:92:f7:57:
f5:63:1e:e5:1a:f3:d2:19:f4:7e:f1:a8:f7:5e:b9:97:1f:03:
f1:81:e4:3f:54:8d:07:e2:cc:49:61:6c:73:69:af:60:f7:38:
39:45:88:44:b7:07:bd:92:d8:7f:7b:9f:b8:8f:7a:cf:93:5e:
12:e7:13:ba:5e:f0:e0:7d:df:9c:da:69:cf:d0:2b:b1:63:d5:
34:70:05:af:09:06:a6:38:16:c5:f5:c0:c2:1c:0a:8f:e7:80:
af:eb:5b:c9:5b:56:e7:5e:14:7a:d3:d1:b1:e3:9b:c0:a1:a3:
96:01:c7:3c:27:88:09:d5:42:eb:df:4b:a5:65:18:b4:09:b7:
a2:41:9c:87:cd:ec:a6:ca:46:a4:0f:d1:cf:d6:6e:4a:16:1f:
12:5d:53:6c:bb:92:63:6f:2f:89:45:09:7c:05:ed:c0:14:d3:
bb:1c:8a:76:89:fc:d5:88:9d:8f:f2:13:e5:c8:73:0c:0b:53:
44:31:89:d9:27:2d:8f:03:d6:14:3a:ef:c3:2c:ba:8b:46:9e:
c8:f6:97:ed:2f:d4:af:51:47:56:f0:4f:cb:7a:9a:47:1e:37:
5b:a6:e0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:27:14 2025 by rpki-client