Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/e7725d-4c16-4867-8c4d-fc5590cb8f6b/1/6nxtoKCmopOSJTKbgK3tLa1F7Dw.roa
File: 6nxtoKCmopOSJTKbgK3tLa1F7Dw.roa (raw, json)
Hash identifier: qnF2cvcj7avs6ddE9pATc4/Lg6AdNKuTMIETQFJYDeA=
Subject key identifier: EA:7C:6D:A0:A0:A6:A2:93:92:25:32:9B:80:AD:ED:2D:AD:45:EC:3C
Certificate issuer: /CN=b9f40ef7f13ec9a156efb0db396090bc75da9d43
Certificate serial: 0CCBA34C
Authority key identifier: B9:F4:0E:F7:F1:3E:C9:A1:56:EF:B0:DB:39:60:90:BC:75:DA:9D:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufQO9_E-yaFW77DbOWCQvHXanUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/e7725d-4c16-4867-8c4d-fc5590cb8f6b/1/6nxtoKCmopOSJTKbgK3tLa1F7Dw.roa
Signing time: Sat 01 Jan 2022 05:57:12 +0000
ROA not before: Sat 01 Jan 2022 05:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61437
IP address blocks: 185.200.156.0/22 maxlen: 22
2a09:a940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214672204 (0xccba34c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f40ef7f13ec9a156efb0db396090bc75da9d43
Validity
Not Before: Jan 1 05:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea7c6da0a0a6a2939225329b80aded2dad45ec3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:91:21:b9:32:94:4f:7c:77:59:5d:33:76:4e:
ef:0f:f3:4b:a6:a8:c2:11:e8:af:64:e4:df:f9:55:
d1:41:65:e2:97:24:d2:cf:8e:51:64:66:f7:c2:6f:
7f:9a:91:fc:66:22:96:ba:65:33:df:2e:5f:b8:86:
a4:9f:da:1b:da:84:11:f2:da:61:d2:69:dc:d4:b4:
dd:e4:ce:fe:e0:fb:46:80:1c:5b:ee:33:be:77:9b:
26:6b:90:8d:e3:d8:c3:12:25:2a:88:42:b6:43:65:
ff:f8:84:c9:91:51:04:e6:6a:10:1e:df:45:b1:67:
16:d0:0c:f5:c5:28:54:a0:2c:3f:e6:ec:31:4e:7b:
c3:28:32:2f:72:89:a2:88:03:8a:d1:f4:6d:b2:f1:
04:9c:61:69:7b:9e:87:73:1a:0d:03:88:d9:93:e9:
e3:06:0d:14:f7:75:fc:e7:b5:9d:89:7a:37:cf:07:
4d:8e:d7:7f:31:19:49:b5:0d:39:ff:db:82:37:a9:
d7:52:66:aa:86:c6:91:36:36:f5:a2:d1:89:fa:e4:
e4:28:81:93:83:f1:3c:43:01:e0:5d:b9:2a:2d:de:
f3:ee:f2:6a:9f:98:e7:61:cf:5d:ae:a4:51:ca:a1:
69:84:c2:d1:e2:af:58:3a:2b:45:28:04:d4:1e:22:
79:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7C:6D:A0:A0:A6:A2:93:92:25:32:9B:80:AD:ED:2D:AD:45:EC:3C
X509v3 Authority Key Identifier:
keyid:B9:F4:0E:F7:F1:3E:C9:A1:56:EF:B0:DB:39:60:90:BC:75:DA:9D:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufQO9_E-yaFW77DbOWCQvHXanUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/e7725d-4c16-4867-8c4d-fc5590cb8f6b/1/6nxtoKCmopOSJTKbgK3tLa1F7Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/e7725d-4c16-4867-8c4d-fc5590cb8f6b/1/ufQO9_E-yaFW77DbOWCQvHXanUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.156.0/22
IPv6:
2a09:a940::/29
Signature Algorithm: sha256WithRSAEncryption
60:39:91:87:d3:a4:c3:bb:1c:85:8f:82:33:3a:d5:61:37:4f:
1a:2d:e7:38:9e:68:da:14:bd:c4:02:4d:63:b9:05:b7:e4:b2:
0d:4c:14:b7:d7:59:68:bf:b0:69:6d:8f:85:9a:44:f6:b5:28:
76:2b:fe:14:fe:c8:18:a6:81:a2:ef:66:48:c0:4c:2e:bb:33:
72:45:7d:78:b5:0f:33:eb:55:fe:ab:e0:c4:ff:a6:d9:54:79:
31:58:61:e6:cc:86:82:70:b6:a4:60:bf:e4:4b:90:57:4a:97:
9a:ce:41:87:79:a1:67:3c:0a:26:75:af:52:87:64:c9:9c:25:
30:f2:f8:d6:f6:58:b5:9d:20:ca:2e:57:b2:e8:1d:7c:b7:c2:
32:db:56:a5:3b:16:70:52:0d:d9:ec:d3:60:d1:b5:0f:c3:b0:
06:70:4f:c3:87:fb:c9:dd:ca:44:35:5e:e2:2d:ba:99:0f:9b:
eb:e6:91:e6:15:b1:4e:4c:b3:06:a9:65:2a:39:5a:4e:82:81:
ef:0e:a1:47:e5:69:e6:bf:44:7e:35:04:65:9a:f6:6e:a2:49:
1e:01:32:2f:ac:e9:9b:fd:35:97:4a:e2:43:6b:06:3f:ec:cd:
37:2f:84:ca:98:18:aa:f5:8c:cc:a1:5a:ce:34:94:3d:df:60:
95:34:91:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:44 2025 by rpki-client