Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6y_xkiwS69zhK7LIlR2_HhXj-mc.roa
File: 6y_xkiwS69zhK7LIlR2_HhXj-mc.roa (raw, json)
Hash identifier: khktfIDqrlyI1BGZDWbact6wk1YD11pCUPEmrjGix5s=
Subject key identifier: EB:2F:F1:92:2C:12:EB:DC:E1:2B:B2:C8:95:1D:BF:1E:15:E3:FA:67
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018387D296C21F5B70421D7DE9C54BF0D79F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6y_xkiwS69zhK7LIlR2_HhXj-mc.roa
Signing time: Thu 29 Sep 2022 05:57:48 +0000
ROA not before: Thu 29 Sep 2022 05:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 84.32.60.0/24 maxlen: 24
84.32.63.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
84.32.86.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.7.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.42.0/24 maxlen: 24
84.32.49.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:87:d2:96:c2:1f:5b:70:42:1d:7d:e9:c5:4b:f0:d7:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 29 05:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb2ff1922c12ebdce12bb2c8951dbf1e15e3fa67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:69:77:50:93:e6:f0:07:55:3f:3d:c0:ca:dd:
b0:17:b9:16:11:2e:00:df:9c:87:28:c8:5d:2c:7d:
ce:de:73:58:9c:82:72:1a:2a:80:21:9c:37:59:4d:
5a:b6:a8:a2:7b:27:a3:20:5b:b3:20:31:b2:17:4c:
83:04:e9:07:dc:4e:f4:69:4c:14:44:12:cc:66:8c:
3e:79:d7:1d:a7:b7:35:bc:bd:56:f8:9e:e2:1a:a7:
09:f4:05:83:9a:9c:3a:80:2b:ff:81:49:2a:ed:33:
ca:1b:6f:9d:58:6b:bb:d8:98:73:e3:db:6d:3d:a9:
5e:80:14:3f:1e:be:3f:97:b0:43:55:42:8d:2a:95:
d2:88:5d:da:72:fc:bf:7a:29:e2:a6:84:8c:44:1a:
dd:a5:c8:b3:89:11:66:f0:97:3f:5d:03:fc:e1:85:
34:dc:ec:92:54:b3:70:0c:20:18:b9:95:b4:c8:54:
ec:67:f9:1f:85:f2:b4:ee:5c:c5:c1:49:24:38:c8:
54:7f:4e:d9:07:82:d9:ab:9e:69:94:a5:5b:0b:f3:
c4:c1:74:23:5c:2a:60:13:fc:c0:fd:9d:44:f6:f4:
67:b5:22:f8:6b:97:2f:70:4b:e9:1f:1a:33:76:ee:
22:91:af:0c:90:6e:3a:af:33:4e:61:0c:52:d0:48:
fb:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2F:F1:92:2C:12:EB:DC:E1:2B:B2:C8:95:1D:BF:1E:15:E3:FA:67
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6y_xkiwS69zhK7LIlR2_HhXj-mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0/24
84.32.15.0/24
84.32.42.0/24
84.32.49.0/24
84.32.60.0/24
84.32.63.0/24
84.32.65.0/24
84.32.77.0/24
84.32.86.0/24
84.32.92.0/24
84.32.94.0/24
88.216.40.0/24
88.216.102.0/24
88.216.188.0/24
88.216.190.0/24
88.216.198.0/24
Signature Algorithm: sha256WithRSAEncryption
91:cf:d2:6e:51:d5:6f:94:c3:27:df:43:42:49:ff:75:7c:d8:
fe:fb:3c:be:b3:c7:06:3e:68:a8:5b:32:de:d1:34:a5:bf:c9:
64:18:fa:48:e2:b7:e5:0d:f1:70:dc:4b:aa:af:f7:39:79:7a:
5d:1f:ed:19:01:9c:d0:f8:26:cf:76:aa:fc:93:2f:22:2e:3b:
3d:8b:08:a3:7d:cb:55:06:ff:c9:58:35:f8:5a:77:1a:b4:2e:
83:65:b4:15:d8:67:89:29:6b:70:0e:cf:13:45:fb:31:52:f6:
4a:18:d7:94:c6:54:c2:af:2f:ed:78:59:22:f5:64:97:81:7d:
5b:0d:0d:a8:2e:95:80:8e:f8:1f:c9:5f:1d:c5:3b:9d:89:8e:
48:57:c6:a0:20:b4:f9:bb:2e:c8:d8:d4:39:f3:f5:42:2a:29:
2e:38:c0:d7:12:8a:fd:14:f1:22:1a:80:32:63:56:6f:b4:47:
54:31:44:e1:ec:7d:5b:2e:c6:79:7a:1b:e6:3b:2d:68:ed:4e:
7f:26:54:5f:23:6a:31:e1:54:14:6c:04:30:95:b2:7c:f3:4e:
5c:89:15:42:51:4e:73:90:8e:08:99:fc:2d:de:04:78:6c:1d:
15:c5:4a:08:aa:07:92:fc:4a:eb:ed:b2:42:93:6c:0a:79:93:
93:98:b8:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org