Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/6NV2tr6U923gqSZkIqDsBma6E2k.roa
File: 6NV2tr6U923gqSZkIqDsBma6E2k.roa (raw, json)
Hash identifier: WnKrZ3+B49jXD+Zf69yKQ8Qqu8kKZkwcwtqRJLJC8E4=
Subject key identifier: E8:D5:76:B6:BE:94:F7:6D:E0:A9:26:64:22:A0:EC:06:66:BA:13:69
Certificate issuer: /CN=8e622a34c55e39b8fa15a37ba9e370eaafd99774
Certificate serial: 096381C6
Authority key identifier: 8E:62:2A:34:C5:5E:39:B8:FA:15:A3:7B:A9:E3:70:EA:AF:D9:97:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmIqNMVeObj6FaN7qeNw6q_Zl3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/6NV2tr6U923gqSZkIqDsBma6E2k.roa
Signing time: Sat 01 Jan 2022 13:56:15 +0000
ROA not before: Sat 01 Jan 2022 13:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198395
IP address blocks: 195.60.169.0/24 maxlen: 24
195.60.168.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157516230 (0x96381c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e622a34c55e39b8fa15a37ba9e370eaafd99774
Validity
Not Before: Jan 1 13:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8d576b6be94f76de0a9266422a0ec0666ba1369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d8:da:8e:f3:56:62:8a:5b:0f:35:4d:44:1e:
79:e6:d9:81:c1:e4:b9:0d:bb:6a:9e:5a:3e:2e:8f:
84:4f:be:17:40:7c:c2:85:a5:00:df:be:6f:ca:44:
71:76:08:7f:c1:8a:fa:5e:ea:71:e9:e3:21:de:cb:
e6:41:72:2e:53:21:16:8f:eb:27:b6:01:a9:7d:71:
ab:fc:10:6d:69:c2:d0:bb:1b:7b:45:01:cb:97:52:
9a:e5:b3:50:5a:24:96:3c:a9:aa:9d:f4:09:23:c5:
ed:b1:5a:fc:3b:19:82:4c:02:bd:79:c1:ea:3e:9f:
40:02:ba:b6:ba:ff:cb:65:5a:28:60:94:01:d7:10:
13:77:77:12:4d:4c:48:a9:73:4a:00:75:2f:c9:15:
35:a0:fb:ba:07:f4:bc:d0:da:2a:04:d6:93:87:24:
fc:58:4d:74:e4:f8:98:37:93:de:e6:90:ad:83:f5:
6d:98:ba:3c:30:c3:76:63:42:b9:f6:94:e9:f9:1c:
f0:a9:70:e8:9c:e7:a4:b4:0f:2e:ec:88:bd:56:f3:
2f:83:ba:7c:fb:6f:7e:d1:33:e9:fe:7d:79:22:1f:
1e:47:83:bf:86:ce:53:00:44:ff:ef:6a:fb:0a:27:
5d:0c:77:0d:63:14:fa:9b:92:c4:05:36:35:8d:9a:
00:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D5:76:B6:BE:94:F7:6D:E0:A9:26:64:22:A0:EC:06:66:BA:13:69
X509v3 Authority Key Identifier:
keyid:8E:62:2A:34:C5:5E:39:B8:FA:15:A3:7B:A9:E3:70:EA:AF:D9:97:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmIqNMVeObj6FaN7qeNw6q_Zl3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/6NV2tr6U923gqSZkIqDsBma6E2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/82cb3e-8199-4917-a176-e50e1e9bb4b3/1/jmIqNMVeObj6FaN7qeNw6q_Zl3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.168.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:29:92:cf:60:c7:52:3f:a5:28:19:40:fb:b1:ca:00:66:18:
68:2f:d1:02:94:85:02:07:14:23:a3:bb:f5:5f:0d:1d:da:19:
da:97:40:61:4c:7e:97:9f:e1:83:11:67:48:b7:fb:20:51:65:
4c:b8:5e:be:c0:6c:eb:b7:38:35:7b:69:53:ac:b5:d7:02:34:
db:34:fc:22:8c:c5:fe:cf:db:9b:39:bf:b0:74:e3:01:f9:d0:
fd:5a:49:fe:12:47:84:65:dd:4f:70:e5:b0:c3:a3:e9:3d:49:
8a:77:a7:0c:5c:ce:3d:e2:66:ff:0a:e9:69:c1:3b:45:a8:2e:
99:2c:a4:6c:16:ca:c9:68:4c:d6:24:32:69:72:dd:c6:d9:c9:
77:8b:13:c9:60:8b:1f:62:00:fa:7c:93:c8:03:e3:b1:9a:11:
d3:ed:17:94:b6:68:48:0c:e4:9b:79:dc:07:1b:29:f0:6e:18:
ae:b3:55:db:d8:0d:3b:40:86:bd:7c:df:59:67:85:ca:b9:fc:
11:14:0c:4e:28:77:89:6f:84:01:a1:9b:ef:1d:6c:f3:86:6b:
08:23:1f:a6:de:0c:09:2d:06:62:ee:1f:24:20:d7:79:b8:a5:
30:c2:be:5b:78:e6:81:4f:10:39:16:57:4a:9c:49:b8:d2:22:
a5:3e:cc:83
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECWOBxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTYyMmEzNGM1NWUzOWI4ZmExNWEzN2JhOWUzNzBlYWFmZDk5Nzc0MB4XDTIyMDEw
MTEzNTYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZThkNTc2YjZiZTk0
Zjc2ZGUwYTkyNjY0MjJhMGVjMDY2NmJhMTM2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7Y2o7zVmKKWw81TUQeeebZgcHkuQ27ap5aPi6PhE++F0B8
woWlAN++b8pEcXYIf8GK+l7qcenjId7L5kFyLlMhFo/rJ7YBqX1xq/wQbWnC0Lsb
e0UBy5dSmuWzUFokljypqp30CSPF7bFa/DsZgkwCvXnB6j6fQAK6trr/y2VaKGCU
AdcQE3d3Ek1MSKlzSgB1L8kVNaD7ugf0vNDaKgTWk4ck/FhNdOT4mDeT3uaQrYP1
bZi6PDDDdmNCufaU6fkc8Klw6JznpLQPLuyIvVbzL4O6fPtvftEz6f59eSIfHkeD
v4bOUwBE/+9q+wonXQx3DWMU+puSxAU2NY2aAEkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTo1Xa2vpT3beCpJmQioOwGZroTaTAfBgNVHSMEGDAWgBSOYio0xV45uPoV
o3up43Dqr9mXdDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ptSXFOTVZlT2JqNkZhTjdxZU53NnFfWmwzUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjAvODJjYjNlLTgxOTktNDkxNy1hMTc2LWU1MGUxZTliYjRiMy8x
LzZOVjJ0cjZVOTIzZ3FTWmtJcURzQm1hNkUyay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAv
ODJjYjNlLTgxOTktNDkxNy1hMTc2LWU1MGUxZTliYjRiMy8xL2ptSXFOTVZlT2Jq
NkZhTjdxZU53NnFfWmwzUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcM8qDANBgkqhkiG9w0BAQsFAAOC
AQEAjSmSz2DHUj+lKBlA+7HKAGYYaC/RApSFAgcUI6O79V8NHdoZ2pdAYUx+l5/h
gxFnSLf7IFFlTLhevsBs67c4NXtpU6y11wI02zT8IozF/s/bmzm/sHTjAfnQ/VpJ
/hJHhGXdT3DlsMOj6T1JinenDFzOPeJm/wrpacE7RagumSykbBbKyWhM1iQyaXLd
xtnJd4sTyWCLH2IA+nyTyAPjsZoR0+0XlLZoSAzkm3ncBxsp8G4YrrNV29gNO0CG
vXzfWWeFyrn8ERQMTih3iW+EAaGb7x1s84ZrCCMfpt4MCS0GYu4fJCDXebilMMK+
W3jmgU8QORZXSpxJuNIipT7Mgw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:01 2025 by rpki-client