Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/6_NDbQB56mxq5KLtXhtDwsQ4dDg.roa
File: 6_NDbQB56mxq5KLtXhtDwsQ4dDg.roa (raw, json)
Hash identifier: qdNyLvyXW+sPrWevR1VoV4KSdQ3boQ8qiMbqkrT1Vbc=
Subject key identifier: EB:F3:43:6D:00:79:EA:6C:6A:E4:A2:ED:5E:1B:43:C2:C4:38:74:38
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0267BC85
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/6_NDbQB56mxq5KLtXhtDwsQ4dDg.roa
Signing time: Sat 19 Mar 2022 14:41:37 +0000
ROA not before: Sat 19 Mar 2022 14:41:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 185.65.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40352901 (0x267bc85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Mar 19 14:41:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebf3436d0079ea6c6ae4a2ed5e1b43c2c4387438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5c:b8:ba:3f:ea:26:1c:8e:4a:dc:97:4d:5a:
9f:27:5a:86:4c:22:3f:ed:cf:ee:04:0f:2c:2a:c4:
63:1c:05:12:71:64:01:a4:75:4d:10:f4:9d:d3:08:
15:82:32:05:7c:c7:55:c5:f7:c0:61:e8:1b:05:3e:
e5:e0:42:35:d1:e7:ad:b5:d7:c2:cf:73:b0:14:69:
94:b1:23:ef:a1:fd:ad:60:e9:ef:29:cf:21:3e:18:
4f:67:b9:fa:36:99:6e:a5:3a:41:24:22:20:ab:c5:
71:81:5f:d2:fe:77:84:77:46:70:1f:ed:17:dc:a0:
cd:09:b8:17:05:e9:f7:43:4a:9d:97:3c:10:03:e2:
12:72:22:7e:2d:86:8e:d8:29:ab:af:8a:3b:31:92:
40:c6:06:ae:6a:01:a3:24:0d:c9:e1:d0:4f:19:92:
1b:46:8d:cc:a1:19:53:02:dc:a5:ab:a4:98:75:13:
91:62:15:ab:bd:7f:cc:26:8d:88:cb:54:97:54:f3:
86:fd:d0:c9:3d:2b:3d:b8:f7:83:1f:ae:16:2c:11:
e9:0a:a2:43:c6:35:f0:3c:0a:e3:3b:20:60:bd:de:
3a:39:03:85:1c:e2:f9:e0:fe:b9:e6:e9:e8:18:39:
42:58:f2:cb:78:6f:43:03:25:07:1f:79:20:a9:55:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F3:43:6D:00:79:EA:6C:6A:E4:A2:ED:5E:1B:43:C2:C4:38:74:38
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/6_NDbQB56mxq5KLtXhtDwsQ4dDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.68.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:71:11:57:4c:90:18:a2:c9:e4:7e:76:fc:0d:73:9a:5e:01:
13:09:3b:11:4d:36:23:ae:5e:46:0f:ec:25:3d:07:0b:7c:77:
20:45:91:d9:ed:37:90:cf:91:92:9d:a4:f3:b2:50:47:93:78:
38:be:b0:4c:b3:77:f6:e9:fc:d0:74:0b:af:97:32:81:f9:bb:
31:9c:d2:2d:e6:23:99:14:80:6d:6b:23:a9:39:07:64:83:00:
b4:88:27:05:ad:19:93:e7:2f:eb:13:f7:d8:e3:50:fa:73:0f:
0b:4c:fa:be:1a:8f:5c:c8:ea:67:61:09:6c:6f:12:7a:fc:31:
b0:f9:f5:84:35:d0:93:40:ac:85:b8:89:45:74:32:c0:80:1b:
e8:e1:28:94:be:2b:e6:a1:6a:d4:7f:8e:fd:4e:66:16:aa:a0:
7a:bf:84:f2:13:47:03:78:39:24:ee:d6:b0:85:bc:72:ed:e2:
b4:65:94:8f:cf:c5:c3:42:c9:67:6d:61:3c:f5:45:77:18:8f:
7d:1d:81:62:c5:38:c4:b8:2d:9e:af:35:4b:8b:97:8c:8b:ff:
56:a5:7d:17:aa:00:58:70:65:68:17:ee:35:16:24:9a:27:d0:
45:23:da:af:9d:3a:81:d7:2b:dd:32:2b:f2:dc:f5:86:e4:8f:
2e:1b:00:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:12 2023 by rpki-client on console-fra.rpki-client.org