Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa
File: 6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa (raw, json)
Hash identifier: pTzDznW8fDxPrKu+uUR5uso4wmmTSuT2lJZzRB6GRG8=
Subject key identifier: E8:F5:94:BB:EE:46:1B:A8:8F:F5:24:6D:28:69:60:55:44:8E:4A:FB
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 01794528
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa
Signing time: Tue 25 Jan 2022 23:57:56 +0000
ROA not before: Tue 25 Jan 2022 23:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 104.222.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24724776 (0x1794528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 25 23:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8f594bbee461ba88ff5246d28696055448e4afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:6b:09:2a:28:fb:0c:a9:49:89:94:bd:2c:23:
54:eb:c2:ac:5c:1e:3a:4a:9e:fb:42:89:17:69:84:
14:28:47:ef:4c:00:0e:4c:40:45:43:a4:98:2f:65:
e6:8a:3e:f4:d6:2c:a6:45:ad:d9:82:90:ba:ea:aa:
48:d5:a7:ba:47:d4:d1:04:1e:e4:f9:4e:a7:5a:74:
ca:64:63:ae:53:bb:79:f7:72:0c:6f:81:10:18:f7:
b7:66:8d:06:40:2a:f3:ab:45:04:ad:28:4e:61:d6:
47:e9:ad:18:04:ac:ef:1c:4c:54:3f:94:e3:f1:8e:
93:4a:bc:1e:f9:8d:29:de:13:ed:43:6a:f1:fb:50:
ee:f6:50:c6:0a:bb:5f:fa:54:20:74:ba:67:9e:86:
fe:65:94:07:d2:10:ad:47:9a:05:3c:0c:27:74:8b:
9a:ce:57:ba:ec:9d:00:7a:8c:fb:7e:ce:45:7d:dc:
e9:73:c1:c0:b5:f9:d2:ef:73:e3:0c:19:6b:09:0d:
cd:10:0b:f4:45:89:89:84:07:a5:81:44:9a:57:17:
4b:b2:5b:bb:19:12:e6:cf:13:d2:4d:f0:32:53:4f:
a0:a9:35:90:f8:e4:0e:76:73:77:43:0e:6e:e6:f4:
61:d3:71:dc:b7:02:17:c6:2d:f6:35:53:81:f5:21:
b1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F5:94:BB:EE:46:1B:A8:8F:F5:24:6D:28:69:60:55:44:8E:4A:FB
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.222.188.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d1:5f:e3:ea:d6:d2:0f:2c:f5:3e:46:f8:8d:c1:e8:43:bf:
8c:3e:bc:5d:0f:75:4e:5a:e4:2c:6f:ac:6f:e1:a9:2c:c3:d0:
f2:76:6e:62:63:15:61:72:87:19:87:7b:7f:1f:c6:d5:73:3b:
7b:72:fe:b4:29:a0:1d:ed:c1:30:28:8f:f5:d0:71:5f:10:d9:
4b:07:15:89:6e:3a:ec:cc:c6:b4:70:e1:11:42:23:f6:4d:3e:
d3:30:25:20:49:b7:6c:2e:24:ef:a5:b4:2b:d8:21:90:f8:a7:
24:9d:17:3f:87:40:0f:a0:2b:58:ba:d8:ad:a1:2c:ed:04:fa:
9f:48:51:06:1a:f9:39:b1:6a:56:b9:30:31:d3:67:14:c0:4c:
58:ed:5e:10:d3:12:ab:e9:ac:01:b3:ca:da:4d:e1:4a:32:74:
ea:ba:41:ee:c6:11:82:1d:ac:e1:72:d0:3d:6b:55:84:ea:b0:
f9:17:38:c6:ca:c6:be:2c:d8:37:ef:e5:cb:52:d7:dc:2a:63:
3b:36:4f:6a:a4:d1:e3:c8:9a:0b:75:41:85:9a:55:5c:32:a9:
41:6d:8c:8d:9a:87:e2:6f:81:12:1b:f7:a0:d9:35:0a:cc:ed:
a9:59:a9:79:9c:0e:21:68:af:af:02:a3:1a:24:a0:60:de:6a:
d6:60:74:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:38 2023 by rpki-client on console-ams.rpki-client.org