Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/6RPt7QN5C0JOSRbLdDKRBqIhWag.roa
File: 6RPt7QN5C0JOSRbLdDKRBqIhWag.roa (raw, json)
Hash identifier: xpI51J1UbcY8Xalzrq7xlwju+vHPQiZLY14c+SQAveg=
Subject key identifier: E9:13:ED:ED:03:79:0B:42:4E:49:16:CB:74:32:91:06:A2:21:59:A8
Certificate issuer: /CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc
Certificate serial: 01856EA6C78C1D8D5D6735F1198BE7D3C6AE
Authority key identifier: B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/6RPt7QN5C0JOSRbLdDKRBqIhWag.roa
Signing time: Sun 01 Jan 2023 18:45:01 +0000
ROA not before: Sun 01 Jan 2023 18:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56855
IP address blocks: 185.51.100.0/24 maxlen: 24
185.51.101.0/24 maxlen: 24
91.226.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:c7:8c:1d:8d:5d:67:35:f1:19:8b:e7:d3:c6:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc
Validity
Not Before: Jan 1 18:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e913eded03790b424e4916cb74329106a22159a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:2e:da:94:2e:53:5f:40:b0:75:4a:d5:32:
b2:c1:1a:0a:d5:cb:bc:29:d6:ad:4b:b3:a8:8a:13:
28:38:63:ff:91:8f:86:d4:da:b2:31:ea:16:11:aa:
98:d0:e7:c2:c9:b4:bd:60:94:25:8e:a3:46:ef:49:
2e:b1:7c:ff:9b:b2:65:05:19:b4:99:3f:dc:e4:67:
e8:13:83:da:93:3a:84:35:50:fc:55:84:15:de:64:
c2:97:ae:fe:06:da:fd:a5:00:c7:fc:a8:ed:95:1c:
2a:9e:69:0d:24:38:d9:d1:9e:9a:68:a6:2e:9e:39:
c1:4e:af:1e:dd:c5:98:fb:a5:a6:30:7a:e6:1b:de:
b6:db:25:e2:d8:79:ac:c8:85:55:95:d4:14:86:fc:
83:86:b4:60:69:13:e6:ce:e3:a0:51:5f:4c:33:f5:
eb:cc:05:b9:a5:12:8e:74:7c:a8:7e:f4:3b:b9:9a:
fb:03:18:96:da:af:be:f4:b3:f9:82:bb:29:af:22:
d6:de:86:14:d5:1e:e6:89:a9:16:8b:18:bf:47:6f:
8c:73:58:e9:18:4f:52:f9:4e:0c:64:17:c1:d1:89:
c8:16:1e:ab:66:9f:65:46:df:ba:99:f8:5d:64:e3:
7c:49:9b:1d:ce:56:68:7c:97:2a:c9:a8:7d:9e:3b:
98:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:13:ED:ED:03:79:0B:42:4E:49:16:CB:74:32:91:06:A2:21:59:A8
X509v3 Authority Key Identifier:
keyid:B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/6RPt7QN5C0JOSRbLdDKRBqIhWag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/sL_SyF5redRg5mDPlmTe5V3MyMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.179.0/24
185.51.100.0/23
Signature Algorithm: sha256WithRSAEncryption
26:d0:37:39:45:5e:d8:bf:e3:1b:51:0a:54:e8:fe:bc:dc:38:
f2:e9:f4:16:83:57:17:5e:27:f2:3d:76:73:7d:81:07:5f:63:
cc:75:bb:fd:6c:15:53:0f:d0:0c:84:2d:8c:22:38:ef:79:9d:
a7:0b:cc:3a:24:40:22:4a:4e:6f:40:a1:a5:c8:db:e8:8c:55:
7d:31:56:60:e2:0f:1b:62:7e:e3:0c:87:40:8a:43:a2:49:5f:
65:29:64:1b:06:0d:74:85:db:a4:5f:7b:5f:b4:5d:59:73:2f:
42:fc:ed:71:d5:ae:50:5b:29:4c:15:6c:8a:f5:a5:bc:ff:dc:
56:e8:8b:c2:81:0c:c3:d7:0b:02:63:79:df:50:79:bf:75:ec:
47:dc:83:9f:4c:67:85:46:2d:8d:a2:43:3d:5e:a7:12:88:62:
98:9d:05:40:87:55:a5:ab:c8:6d:18:54:db:9f:50:e6:ad:0b:
2b:33:a6:d7:46:66:6a:7d:94:00:ec:45:26:e9:6a:83:15:da:
88:a4:8e:fe:c9:01:1e:af:82:b8:8f:2e:d7:e8:6d:ad:71:27:
95:e3:fb:e5:69:25:b6:70:5f:b5:fd:ac:87:99:f6:d1:05:1c:
79:16:b9:4a:3e:84:b6:d5:51:79:c0:80:c6:79:e8:01:ba:ca:
a9:e8:21:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:04 2025 by rpki-client