Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/6d2TS-snh-sGcDshQEA9uYhrhJY.roa
File: 6d2TS-snh-sGcDshQEA9uYhrhJY.roa (raw, json)
Hash identifier: y87gJ4pMQkIko/dnj3Ttu++wB0i55reqn3T1GttWcfE=
Subject key identifier: E9:DD:93:4B:EB:27:87:EB:06:70:3B:21:40:40:3D:B9:88:6B:84:96
Certificate issuer: /CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Certificate serial: 010FFF70
Authority key identifier: 32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/6d2TS-snh-sGcDshQEA9uYhrhJY.roa
Signing time: Sat 01 Jan 2022 12:07:10 +0000
ROA not before: Sat 01 Jan 2022 12:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211413
IP address blocks: 185.253.78.0/24 maxlen: 24
185.253.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17825648 (0x10fff70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=322639b35e5d9d0fb3696fe2fd61cb6f4c3fa504
Validity
Not Before: Jan 1 12:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9dd934beb2787eb06703b2140403db9886b8496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b5:a4:de:70:5f:bf:9d:8d:b6:78:4b:db:1b:
fd:fa:79:24:71:0a:db:c0:b5:f5:3e:2f:3d:c6:dd:
f6:01:50:e2:09:85:57:d9:93:a0:21:79:7b:62:80:
2e:89:af:2d:96:40:fc:84:6d:50:97:4f:2b:fa:6f:
4f:46:92:95:24:e3:61:0c:24:86:87:43:f0:be:5a:
3e:35:3b:27:7e:5f:b9:76:49:9d:6e:07:fc:b0:0b:
ac:9f:4d:9d:a0:cd:ce:dc:10:0d:ea:48:f5:00:be:
a3:25:83:e3:00:ad:95:27:ce:ad:9f:e9:a6:a3:6a:
a8:f1:b0:8c:f7:d7:52:20:f2:4d:eb:fd:1d:f6:12:
68:75:b9:7c:33:7e:b1:4b:69:0d:57:dc:04:ae:5b:
af:94:a1:fe:24:ed:6a:2a:a6:56:ed:ea:ea:74:48:
1a:33:f3:78:56:4f:dd:c8:15:86:42:98:85:ba:ae:
b4:a1:77:ac:49:b9:f5:df:87:3a:be:ff:4a:3b:12:
e2:3c:bf:33:76:4e:d9:f4:85:80:a7:a8:88:4f:61:
9e:f4:b9:d6:f0:1b:64:d9:04:6c:82:9e:ad:6a:c5:
a7:6b:b3:a4:6f:23:42:f6:db:ac:8a:95:bd:65:75:
2a:fd:a6:2d:c0:2e:b8:4c:8f:7e:3d:1c:31:63:3b:
f5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DD:93:4B:EB:27:87:EB:06:70:3B:21:40:40:3D:B9:88:6B:84:96
X509v3 Authority Key Identifier:
keyid:32:26:39:B3:5E:5D:9D:0F:B3:69:6F:E2:FD:61:CB:6F:4C:3F:A5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/6d2TS-snh-sGcDshQEA9uYhrhJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/662fbf-5576-4595-892b-b5b3aeae98ea/1/MiY5s15dnQ-zaW_i_WHLb0w_pQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.77.0-185.253.78.255
Signature Algorithm: sha256WithRSAEncryption
96:5d:01:86:dd:02:0c:ac:98:b7:62:2a:f9:f6:6b:b1:03:c5:
e1:76:3b:b8:5d:7b:c1:5d:82:5b:d9:fe:8f:37:74:f8:4e:3f:
6f:f4:15:99:d4:46:40:96:51:82:83:38:0f:d4:d0:58:8b:f6:
98:17:e7:82:ec:2a:97:e6:31:c9:df:d2:21:bd:b8:62:dc:16:
1e:54:3e:9c:71:1f:c5:52:ff:76:58:8c:6a:a2:76:f6:b6:a8:
2d:48:d2:fb:0d:f9:0c:5d:e5:2e:fb:9a:52:45:e4:48:6c:63:
0f:35:2f:26:cb:37:f2:48:f9:62:b7:76:0d:cf:89:c7:90:b0:
2d:f2:d3:68:db:d7:11:56:16:e4:95:77:1a:62:5e:5b:20:60:
2f:83:44:d2:42:98:16:69:a8:42:d5:f3:32:37:7d:24:61:1c:
39:b1:71:96:0e:72:12:3f:26:c2:f8:5b:2f:69:61:7b:9b:14:
af:bf:36:7d:b1:0d:a0:fa:89:8c:ce:0a:91:3e:f2:c0:61:90:
3b:c8:3f:c7:3d:51:a2:0b:0f:bc:2b:ca:5b:8a:5c:ae:5a:6c:
bb:8e:08:c5:1f:f6:73:50:3c:ef:21:af:85:f0:3e:08:e9:e5:
e1:df:5e:e3:d2:be:33:01:13:7c:d5:ce:00:18:16:8a:21:ff:
77:90:67:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:38 2024 by rpki-client on console-fra.rpki-client.org