Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/6JEXJbwakifW8h1ZCbvaPTlrgQQ.roa
File: 6JEXJbwakifW8h1ZCbvaPTlrgQQ.roa (raw, json)
Hash identifier: WqkXJdeVzChMOFZ4qAdsTye6ISxM+VuTLq4taRf1b9w=
Subject key identifier: E8:91:17:25:BC:1A:92:27:D6:F2:1D:59:09:BB:DA:3D:39:6B:81:04
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3B598E20
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/6JEXJbwakifW8h1ZCbvaPTlrgQQ.roa
Signing time: Tue 22 Mar 2022 11:13:00 +0000
ROA not before: Tue 22 Mar 2022 11:13:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201439
IP address blocks: 195.136.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 995724832 (0x3b598e20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Mar 22 11:13:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8911725bc1a9227d6f21d5909bbda3d396b8104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f1:7f:fb:45:f9:0e:bc:90:6b:8c:e8:3c:bd:
52:06:77:59:26:3a:2c:07:2b:65:2a:e8:e2:a5:c3:
e1:b0:d8:0a:27:d3:3a:44:44:a1:05:bd:1a:31:d2:
ae:1c:62:0c:2e:e8:4d:37:94:0e:98:7f:88:3d:bc:
6c:3a:83:76:4f:f7:e3:1b:90:15:8e:27:06:06:f5:
ec:ae:3e:f3:eb:03:59:6c:86:da:5e:12:8c:a1:4b:
79:f8:cf:7a:a5:f3:99:ae:a1:15:81:32:de:4f:fc:
f4:b7:06:fd:45:d0:66:03:bf:b5:72:95:8f:14:b8:
8d:e6:47:52:a0:d4:4a:0b:25:1e:ae:d9:31:18:24:
1e:c1:1a:32:8d:67:fc:e1:01:92:08:c9:d0:10:78:
cb:78:eb:18:4f:a5:a0:71:6d:21:46:e1:71:5d:b2:
b3:20:7c:c6:8e:55:84:54:83:58:3c:8b:43:25:00:
3a:ca:ec:c4:d0:ea:44:98:da:11:62:ad:8f:22:56:
99:96:fc:62:f9:fb:f0:57:94:f6:eb:6a:b7:99:f2:
fe:5c:dc:26:7c:86:64:e1:58:d4:05:9e:3c:9c:e2:
ad:54:5b:27:b8:a8:44:51:ee:8e:51:2a:e5:f9:b2:
50:4f:d4:68:f5:54:99:87:eb:12:c8:51:f5:2f:a6:
82:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:91:17:25:BC:1A:92:27:D6:F2:1D:59:09:BB:DA:3D:39:6B:81:04
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/6JEXJbwakifW8h1ZCbvaPTlrgQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.104.0/22
Signature Algorithm: sha256WithRSAEncryption
64:49:21:bf:6e:24:7b:1b:05:d7:11:1a:63:8d:b1:e9:5c:03:
20:72:c3:79:87:e6:79:7e:86:fb:5f:b1:a0:ee:d8:21:36:1a:
16:96:65:57:90:47:d8:22:e9:9b:e6:c2:b3:e9:06:89:81:19:
2d:1f:5e:87:b3:fe:a5:14:dd:11:79:d3:d8:e3:92:be:ab:fd:
ac:5b:47:31:6b:bd:d5:3d:62:a6:1f:28:e0:d0:bb:5f:36:b3:
da:34:0c:c2:f6:20:c6:94:79:5e:67:3c:73:ba:ae:89:33:60:
7f:69:4e:4f:4b:14:61:36:63:7b:03:e0:51:76:b4:5e:b2:cc:
1f:a7:fc:45:0b:71:f9:e4:31:5a:96:e3:bf:9c:59:ca:59:48:
78:fa:ed:82:41:91:a9:90:ea:c7:ab:ad:c9:6b:50:aa:75:a5:
83:e7:37:e5:93:a3:c5:f5:90:33:1d:0b:44:34:bf:aa:26:e7:
4f:00:89:1c:a2:23:78:69:cf:36:cf:e0:f7:32:83:60:45:8b:
4e:4a:e3:17:64:19:a5:15:ba:ac:96:ed:c3:c1:b0:47:af:a2:
53:e9:46:9a:6e:c3:4c:6e:3f:ae:83:2f:8e:ad:1c:2b:26:e3:
62:0b:a8:bd:32:8b:b7:50:d2:0c:d5:25:7b:94:d5:4b:c9:8c:
83:f7:30:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org