Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/6KzfeXd4xJg-gVoVbD9QwHkZPRA.roa
File: 6KzfeXd4xJg-gVoVbD9QwHkZPRA.roa (raw, json)
Hash identifier: 4VnaUUARYDNr2pcdKpuwPzb873uAnl34meAi3OHiZQs=
Subject key identifier: E8:AC:DF:79:77:78:C4:98:3E:81:5A:15:6C:3F:50:C0:79:19:3D:10
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: A856E5
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/6KzfeXd4xJg-gVoVbD9QwHkZPRA.roa
Signing time: Mon 30 May 2022 22:41:13 +0000
ROA not before: Mon 30 May 2022 22:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 66.22.244.0/24 maxlen: 24
66.22.242.0/24 maxlen: 24
66.22.241.0/24 maxlen: 24
66.22.192.0/21 maxlen: 21
66.22.204.0/22 maxlen: 22
66.22.200.0/22 maxlen: 22
66.22.208.0/22 maxlen: 22
66.22.212.0/22 maxlen: 22
66.22.216.0/23 maxlen: 23
66.22.218.0/23 maxlen: 23
66.22.220.0/23 maxlen: 23
66.22.222.0/23 maxlen: 23
66.22.224.0/23 maxlen: 23
66.22.226.0/23 maxlen: 23
66.22.231.0/24 maxlen: 24
66.22.230.0/24 maxlen: 24
66.22.233.0/24 maxlen: 24
66.22.232.0/24 maxlen: 24
66.22.235.0/24 maxlen: 24
66.22.234.0/24 maxlen: 24
66.22.236.0/24 maxlen: 24
66.22.238.0/24 maxlen: 24
66.22.237.0/24 maxlen: 24
66.22.240.0/24 maxlen: 24
66.22.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11032293 (0xa856e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: May 30 22:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8acdf797778c4983e815a156c3f50c079193d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:df:c9:cf:9c:fb:c5:e1:2a:5e:bf:d9:b2:36:
46:f8:66:75:51:46:3f:ba:5c:ae:14:0d:81:a9:ef:
a1:d4:fb:97:1a:46:8e:39:3b:9f:d1:57:85:d5:d5:
3e:bb:8d:7c:f1:95:5c:0e:48:28:10:10:d5:f0:fe:
ce:d3:fe:2a:b7:d3:66:18:70:5e:77:97:c0:ca:3e:
14:ce:4b:d3:81:e7:54:3c:2b:d9:67:7d:dc:aa:e7:
44:a1:cc:43:d5:52:33:d3:b3:4a:4a:31:03:cf:26:
e4:bd:d6:94:7a:2d:de:cb:0a:27:4e:85:56:90:a2:
92:50:f7:06:e6:92:f4:c3:a0:6b:d4:16:f8:fd:fa:
1c:50:38:52:c8:c4:dd:a4:3b:a5:8b:d0:7f:bd:83:
c0:34:d2:3a:52:03:e6:a7:24:eb:9c:50:c4:13:c4:
51:c7:68:64:eb:0a:22:a3:c5:fc:9a:f2:2b:bd:5f:
f2:ce:c7:fb:b3:7a:cc:dd:69:fe:6b:7f:5b:03:f2:
a9:dc:a2:db:be:be:b9:d1:a2:26:ee:bf:7b:fd:4d:
a8:1f:28:5c:d0:c5:b2:8d:af:77:1a:02:0e:7c:ba:
f1:90:53:2c:b0:de:17:82:4b:30:e7:48:0f:23:5e:
ff:81:8e:df:85:12:af:45:c1:06:c3:05:3b:5a:88:
76:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AC:DF:79:77:78:C4:98:3E:81:5A:15:6C:3F:50:C0:79:19:3D:10
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/6KzfeXd4xJg-gVoVbD9QwHkZPRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.192.0-66.22.227.255
66.22.230.0-66.22.242.255
66.22.244.0/24
Signature Algorithm: sha256WithRSAEncryption
75:4f:bc:0c:bc:04:78:71:2a:1c:69:b1:37:56:a0:42:ec:c7:
12:6a:28:64:c3:88:a6:99:2b:4a:58:76:de:75:3a:e9:c1:06:
9e:5d:31:d4:ad:da:0b:ec:fe:ee:4a:85:70:10:cf:4e:50:37:
de:83:ad:ca:16:85:7d:83:e0:13:88:01:e4:68:b8:39:0d:56:
22:4c:27:5b:f3:cb:34:57:2b:c1:96:ef:ea:42:1a:4e:21:f5:
7a:10:a0:06:25:ec:b0:6f:f5:d3:7a:2d:b8:60:96:89:20:25:
03:9c:6e:fb:d7:80:bb:30:ff:0a:c9:95:9d:65:0c:5e:98:bf:
f7:c2:76:47:eb:5a:a4:0b:a5:f5:28:26:d6:43:95:d5:a7:bc:
87:a5:3b:89:37:67:6f:4c:e7:71:de:c9:31:d7:82:91:dd:0c:
c9:05:ef:7e:92:b0:e3:7f:59:d6:cd:b2:53:e0:2a:1f:95:16:
94:e5:86:34:c4:dd:84:62:03:3e:79:61:3c:e5:e5:00:9a:12:
50:35:3c:1c:49:4a:2e:a9:5d:5f:15:b2:59:ed:b5:2b:1b:27:
63:dd:eb:36:71:dc:97:4c:4e:40:1e:ae:20:2b:b6:06:56:a6:
01:f1:b2:a0:10:8b:55:51:f2:56:6b:70:87:de:f6:71:c5:ed:
36:77:25:47
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org