Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/6RMNN-xTdWzWkMzG4u8Jv678Ask.roa
File: 6RMNN-xTdWzWkMzG4u8Jv678Ask.roa (raw, json)
Hash identifier: fzadbHj4oraWkStq6GKr5hUrMIQTkRguoZDytsVYFhU=
Subject key identifier: E9:13:0D:37:EC:53:75:6C:D6:90:CC:C6:E2:EF:09:BF:AE:FC:02:C9
Certificate issuer: /CN=ccc478dd9ccd6162f82488ac6fc50c21d369f2a0
Certificate serial: 0950562D
Authority key identifier: CC:C4:78:DD:9C:CD:61:62:F8:24:88:AC:6F:C5:0C:21:D3:69:F2:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zMR43ZzNYWL4JIisb8UMIdNp8qA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/6RMNN-xTdWzWkMzG4u8Jv678Ask.roa
Signing time: Thu 03 Feb 2022 18:18:10 +0000
ROA not before: Thu 03 Feb 2022 18:18:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199527
IP address blocks: 85.208.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156259885 (0x950562d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccc478dd9ccd6162f82488ac6fc50c21d369f2a0
Validity
Not Before: Feb 3 18:18:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9130d37ec53756cd690ccc6e2ef09bfaefc02c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e1:af:da:33:dc:c4:81:6a:61:af:81:cb:57:
45:41:fa:94:dc:a8:bb:69:ca:79:ef:24:48:cd:7f:
b1:43:71:d2:65:25:cd:4d:5f:a7:c3:d0:df:eb:79:
69:10:1f:1e:34:09:56:ba:cf:2e:96:a5:d7:f1:67:
ec:d2:11:7d:c3:b3:c3:72:77:26:98:1a:a0:34:a9:
19:97:09:0b:d1:37:33:87:94:5c:10:ce:ef:89:64:
b9:30:cc:08:75:2d:de:df:ab:ed:71:20:0c:b4:1d:
86:f8:0b:fe:a1:11:e8:0b:d2:c8:f3:85:da:bf:09:
35:bb:6e:ab:c8:89:d8:1b:12:d8:04:8f:d7:a9:da:
a1:61:16:a5:05:7f:0e:d5:4c:d7:04:4c:78:47:75:
16:bc:ea:bd:f7:bc:39:c3:3c:a8:cc:92:9e:cc:7d:
27:5f:45:1c:ee:c5:d7:2f:cb:78:9f:58:6c:09:68:
3c:cc:56:e1:ba:8a:57:a9:f6:b1:92:47:47:f5:a1:
3c:4d:7e:b1:a8:5f:47:0a:12:39:53:ec:3f:8c:12:
2b:46:33:36:16:1e:35:b2:5b:b7:9e:31:01:17:ec:
65:c7:30:9c:4b:3c:0a:9a:d3:08:ca:3d:1e:5e:ea:
eb:db:94:a3:76:21:08:e3:ca:fe:0c:79:e5:a0:61:
63:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:13:0D:37:EC:53:75:6C:D6:90:CC:C6:E2:EF:09:BF:AE:FC:02:C9
X509v3 Authority Key Identifier:
keyid:CC:C4:78:DD:9C:CD:61:62:F8:24:88:AC:6F:C5:0C:21:D3:69:F2:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zMR43ZzNYWL4JIisb8UMIdNp8qA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/6RMNN-xTdWzWkMzG4u8Jv678Ask.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/zMR43ZzNYWL4JIisb8UMIdNp8qA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.224.0/22
Signature Algorithm: sha256WithRSAEncryption
88:5b:5d:d0:52:eb:31:57:27:83:65:2c:7a:28:08:8c:4b:b3:
88:cf:f9:7e:4c:7d:7b:e2:05:03:0e:5e:9f:12:b8:df:27:c0:
58:b5:fa:9d:7c:37:dc:8d:23:09:98:8f:17:8d:96:48:fc:3d:
cd:52:a2:5d:d3:0d:f4:ad:2a:dd:d0:d4:75:06:82:f1:59:05:
6f:fb:b7:05:2c:ae:57:da:d0:ac:b2:23:07:0a:b3:5d:e6:e7:
3d:53:04:ab:4f:93:8c:48:9e:45:db:f2:51:20:31:98:fe:b5:
3f:1b:88:01:ee:d9:22:85:b8:71:f4:eb:a1:a5:a1:a8:aa:5c:
5e:47:c5:9d:cd:77:91:33:50:d7:84:d4:71:2c:ec:5f:d3:96:
06:17:b0:73:d1:35:d8:7f:b3:c7:76:cc:d5:07:06:a6:fc:d2:
09:29:70:2a:03:24:ef:b2:2d:d9:37:65:3c:55:7b:8f:30:0e:
61:a1:92:41:18:a1:1e:20:70:5e:2f:b4:a7:03:bd:5e:01:c2:
34:03:40:b0:9e:3b:5c:e7:55:c0:d0:18:0d:9f:ed:7e:e0:4a:
e9:2a:1e:a4:bc:a7:bb:d3:67:ee:93:a8:41:65:3f:ad:c5:3b:
24:b5:32:17:20:dd:66:4c:63:1a:26:9d:29:6f:58:5e:3f:9a:
63:2b:1e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:58 2024 by rpki-client on console-fra.rpki-client.org