Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/d6HFZ6WMtwycrdQ6XmEfvUQDrC8.roa
File: d6HFZ6WMtwycrdQ6XmEfvUQDrC8.roa (raw, json)
Hash identifier: 89UPmJN9S/6J10UWJa1JX/xj1Yo8GgymTdcwthtIw/c=
Subject key identifier: 77:A1:C5:67:A5:8C:B7:0C:9C:AD:D4:3A:5E:61:1F:BD:44:03:AC:2F
Certificate issuer: /CN=8e0c54b3aae251915ffc98bd34a550181ffab49a
Certificate serial: 18869B51
Authority key identifier: 8E:0C:54:B3:AA:E2:51:91:5F:FC:98:BD:34:A5:50:18:1F:FA:B4:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgxUs6riUZFf_Ji9NKVQGB_6tJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/d6HFZ6WMtwycrdQ6XmEfvUQDrC8.roa
Signing time: Sat 01 Jan 2022 04:55:24 +0000
ROA not before: Sat 01 Jan 2022 04:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8272
IP address blocks: 193.221.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411474769 (0x18869b51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0c54b3aae251915ffc98bd34a550181ffab49a
Validity
Not Before: Jan 1 04:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77a1c567a58cb70c9cadd43a5e611fbd4403ac2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e6:32:88:14:3a:46:5d:3e:40:be:a2:be:6c:
d6:05:82:16:f9:27:fc:e1:67:29:62:57:88:f7:85:
0a:0e:fc:c4:66:3b:96:eb:9a:f6:5b:3b:c9:2f:9f:
1a:42:11:3d:82:2b:f2:ea:85:20:7c:f6:d5:0e:d7:
24:1e:77:cd:b8:30:4f:2f:0f:aa:bb:76:3b:20:10:
a2:65:41:33:2c:87:b2:7e:19:5e:7a:98:3f:1d:52:
ad:a3:c9:54:f1:89:fb:fc:81:b5:1e:0d:d6:06:80:
cf:e2:cd:71:ec:89:25:51:ea:fe:77:fb:55:1f:e8:
2f:93:86:ce:0a:d1:51:28:fb:0f:93:47:d1:00:c0:
90:c5:13:5f:09:e6:3a:ea:de:6d:b2:f7:06:af:ec:
f2:11:c7:16:93:4f:39:d4:99:45:c1:c9:88:6f:ea:
c7:8f:3d:36:19:04:59:d0:b5:b3:9a:10:c7:33:25:
34:96:22:1e:9f:40:74:60:40:5b:b4:ae:0f:c0:eb:
f8:37:ba:56:11:a5:d5:99:b2:09:a8:58:c7:25:67:
65:65:b8:42:97:5c:d1:9b:4c:68:fd:09:19:96:6b:
06:98:07:63:20:30:0d:26:6b:79:df:05:43:e1:e0:
b8:c1:7d:77:b5:d4:77:5c:95:6b:66:43:5a:99:71:
a4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A1:C5:67:A5:8C:B7:0C:9C:AD:D4:3A:5E:61:1F:BD:44:03:AC:2F
X509v3 Authority Key Identifier:
keyid:8E:0C:54:B3:AA:E2:51:91:5F:FC:98:BD:34:A5:50:18:1F:FA:B4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgxUs6riUZFf_Ji9NKVQGB_6tJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/d6HFZ6WMtwycrdQ6XmEfvUQDrC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/jgxUs6riUZFf_Ji9NKVQGB_6tJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.118.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e7:86:61:01:d0:d6:82:11:ec:14:f5:04:e7:62:d2:95:56:
18:bf:f2:18:96:5c:c9:fd:88:a3:e5:6c:54:b0:51:cb:1a:e0:
c1:a5:c2:fc:4c:5f:1f:34:aa:40:0a:1a:67:80:57:5a:ba:f6:
c6:1d:0f:14:02:d2:da:0b:9f:dd:07:92:13:bb:a5:34:da:3e:
2d:52:e8:b6:4b:11:88:84:05:7a:90:5d:1c:73:72:4f:23:b4:
2f:b8:8f:ef:29:20:60:2c:28:2a:91:db:80:b6:9b:4f:a5:65:
a0:46:a0:6a:27:59:9f:1e:4f:67:27:9a:06:34:04:b4:25:13:
fc:11:7a:aa:68:2d:e8:6b:4b:c5:39:48:e3:e7:18:e4:a7:9f:
02:67:88:3f:f9:ad:c2:e6:e9:a0:24:dd:33:2a:40:47:13:0a:
1f:f6:d6:38:65:fb:3b:c8:f5:a3:1b:5d:f6:fe:46:1d:14:48:
f6:1c:36:ad:d4:48:b5:da:37:1b:63:77:ea:f0:ce:be:bd:62:
5a:4c:5b:d8:bc:70:6a:fa:c8:62:ed:7c:e9:b1:ae:69:c7:8e:
37:e9:55:56:0b:fd:9b:2b:29:f4:d4:43:9a:cb:c1:c7:8c:31:
1c:bb:1d:2d:12:cd:b7:e9:2b:48:e6:5c:f3:71:44:1f:79:87:
a7:c9:73:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:49 2025 by rpki-client