Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/6aiy-yWxqXa7q4MYHlCdCfmEi2Q.roa
File: 6aiy-yWxqXa7q4MYHlCdCfmEi2Q.roa (raw, json)
Hash identifier: znJdx4JP1eneg7jo4J3gjVrvWskO4Hiy6O4Ze2NvhYE=
Subject key identifier: E9:A8:B2:FB:25:B1:A9:76:BB:AB:83:18:1E:50:9D:09:F9:84:8B:64
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 1119B95A
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/6aiy-yWxqXa7q4MYHlCdCfmEi2Q.roa
Signing time: Sat 01 Jan 2022 14:04:43 +0000
ROA not before: Sat 01 Jan 2022 14:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43343
IP address blocks: 78.158.161.0/24 maxlen: 24
78.158.165.0/24 maxlen: 24
78.158.163.0/24 maxlen: 24
78.158.162.0/24 maxlen: 24
78.158.160.0/24 maxlen: 24
78.158.166.0/24 maxlen: 24
78.158.164.0/24 maxlen: 24
78.158.169.0/24 maxlen: 24
78.158.171.0/24 maxlen: 24
78.158.168.0/24 maxlen: 24
78.158.172.0/24 maxlen: 24
78.158.170.0/24 maxlen: 24
78.158.175.0/24 maxlen: 24
78.158.179.0/24 maxlen: 24
78.158.176.0/24 maxlen: 24
78.158.174.0/24 maxlen: 24
78.158.183.0/24 maxlen: 24
78.158.181.0/24 maxlen: 24
78.158.185.0/24 maxlen: 24
78.158.180.0/24 maxlen: 24
78.158.186.0/24 maxlen: 24
78.158.184.0/24 maxlen: 24
78.158.191.0/24 maxlen: 24
78.158.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286898522 (0x1119b95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 14:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9a8b2fb25b1a976bbab83181e509d09f9848b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:01:a2:3e:8a:85:9d:67:ef:af:1a:59:86:
05:5d:0a:6d:91:99:38:be:49:4c:62:ce:49:fd:f5:
b6:58:41:6f:48:cc:af:31:8b:92:96:90:71:2c:fb:
ed:90:df:4c:e9:b4:75:dc:9c:3a:f0:34:4a:61:77:
2f:b6:9e:90:de:ae:6c:11:fe:12:d5:33:94:e7:a0:
ec:46:32:14:e5:71:ff:d3:b8:c9:4d:5c:5d:ec:86:
d5:84:c8:ba:7c:f2:bc:77:8d:50:9e:2f:72:95:71:
01:de:83:84:d6:f5:f9:67:16:0d:a0:db:ab:80:08:
af:74:55:01:73:6f:35:5d:45:9c:a7:e4:30:a0:37:
77:5b:1b:1b:46:bc:91:21:46:a5:ae:84:97:3b:91:
df:7c:11:55:42:52:1a:81:5b:e8:93:9a:82:c3:f5:
e1:eb:52:70:a7:75:9a:eb:ff:5b:4e:52:f7:24:fb:
17:92:ec:0d:6c:2d:01:98:a4:c9:17:fd:c1:82:6b:
49:ab:70:80:a0:32:1a:d5:62:82:81:2d:11:0a:45:
12:ae:90:ba:d6:88:23:98:55:59:df:4f:b5:07:42:
71:82:4d:e8:7f:6a:99:03:70:49:19:bf:c0:6c:71:
26:15:0d:4b:c2:1e:19:13:3f:24:fe:0a:1c:31:92:
5e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A8:B2:FB:25:B1:A9:76:BB:AB:83:18:1E:50:9D:09:F9:84:8B:64
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/6aiy-yWxqXa7q4MYHlCdCfmEi2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.158.160.0-78.158.166.255
78.158.168.0-78.158.172.255
78.158.174.0-78.158.176.255
78.158.179.0-78.158.181.255
78.158.183.0-78.158.186.255
78.158.188.0/24
78.158.191.0/24
Signature Algorithm: sha256WithRSAEncryption
91:a2:ca:de:e7:2d:fe:3b:a1:d0:bc:7d:3e:cf:86:a4:c8:86:
0d:5d:a0:ba:ce:46:28:18:f9:6b:56:88:ae:81:b5:e6:16:60:
42:63:e2:a2:88:09:65:d4:74:74:4e:04:a3:b6:83:90:16:ac:
20:86:08:a4:cb:93:77:f4:28:f2:14:2f:a5:d4:96:48:ab:f9:
6a:5a:31:fe:16:01:6a:46:56:e5:b7:e8:46:89:59:4f:07:bc:
82:c3:75:42:be:e6:ca:bc:0b:c5:89:ed:dd:b5:e6:ed:fd:cf:
ab:0b:70:24:6f:12:a0:ce:47:14:b0:8c:92:05:8b:e7:d8:76:
f2:8d:45:8f:4e:3f:7f:bf:00:49:08:14:54:12:5b:db:9e:6b:
7b:fe:c4:7a:d3:26:e8:d2:e4:85:c2:16:d1:fe:4b:32:30:c2:
b8:0e:ab:ca:7a:3c:a9:4d:51:da:03:39:89:8d:1d:a8:b6:a2:
93:e5:57:6c:e4:34:5d:e9:f0:44:e6:3d:e6:8e:7c:70:b8:d1:
52:28:4d:2e:5b:0b:11:f7:83:7e:b9:fd:bb:f0:17:38:03:46:
60:34:e1:56:f3:0b:fe:07:9c:0f:30:cb:a8:02:87:96:fc:9a:
9d:42:63:cc:c4:fa:5c:2e:7f:90:56:17:60:23:2f:7d:41:e9:
35:24:2e:af
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org