Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6xKqkmy5V_RwCyKd4jmwAhDQVTQ.roa
File: 6xKqkmy5V_RwCyKd4jmwAhDQVTQ.roa (raw, json)
Hash identifier: V2/jl0QJ1MjbDs8A211OzAyvMYEFD3bkDXC4ahMGdrM=
Subject key identifier: EB:12:AA:92:6C:B9:57:F4:70:0B:22:9D:E2:39:B0:02:10:D0:55:34
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38DB6163
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6xKqkmy5V_RwCyKd4jmwAhDQVTQ.roa
Signing time: Sat 01 Jan 2022 07:55:19 +0000
ROA not before: Sat 01 Jan 2022 07:55:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42517
IP address blocks: 145.35.174.0/24 maxlen: 24
145.35.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953901411 (0x38db6163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb12aa926cb957f4700b229de239b00210d05534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c8:ce:20:8c:cb:44:26:ed:f4:1a:aa:7d:22:
d9:15:56:f7:46:9e:0c:b3:53:33:38:e6:fc:dd:0f:
1c:06:6f:92:6a:04:69:e0:7d:8d:71:cc:10:dd:03:
61:7e:17:5b:27:82:95:3b:39:98:61:f8:05:e0:3f:
dd:62:41:e5:09:7b:6c:2e:e8:91:fd:00:42:95:73:
cd:84:1c:df:9f:de:36:6d:2f:44:1f:65:76:93:a7:
96:b4:40:6d:c1:5c:11:29:bf:08:d0:cf:cd:bb:41:
14:ab:08:87:4e:54:12:f8:89:1f:1d:3b:54:cf:c5:
b4:1b:38:0f:48:16:f8:86:a8:17:27:6d:9f:9e:e6:
db:77:66:da:99:f1:b3:3b:f9:31:d0:55:1f:dd:bd:
78:72:cb:fe:70:4d:89:81:79:de:e2:f4:ef:95:8e:
f2:b0:f2:7f:38:09:eb:76:d7:20:49:ed:02:9f:ba:
7c:c9:44:e4:f0:b6:c0:f9:84:52:2c:78:af:88:e6:
44:04:00:ed:d6:2a:4f:bb:95:f6:55:cd:f1:d0:df:
19:f4:2d:57:51:de:7e:00:6b:ce:f1:9b:a9:75:00:
b1:f7:07:4f:82:4f:05:37:7b:ae:6a:6c:8f:15:e8:
ef:94:20:cc:12:31:1f:e7:1f:d6:ce:e4:75:83:04:
ac:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:12:AA:92:6C:B9:57:F4:70:0B:22:9D:E2:39:B0:02:10:D0:55:34
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6xKqkmy5V_RwCyKd4jmwAhDQVTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0b:f0:3b:35:20:6e:90:94:e9:be:79:b4:b0:4d:6c:8a:0e:91:
99:68:6c:71:1b:e1:57:13:b1:5c:2d:65:cc:4c:35:15:bd:c0:
98:83:e1:78:6d:a4:ed:30:74:80:07:ab:cf:aa:6c:ac:b6:54:
ae:08:16:34:b6:9a:41:f5:0e:09:70:31:b3:a2:48:99:39:e1:
5c:6e:8d:c4:54:25:2a:b8:f0:ba:24:c6:0e:92:7c:af:3d:9b:
ac:61:d1:c0:5c:ef:43:50:34:45:d8:ff:5a:34:11:ba:e5:02:
63:c2:b1:dc:2a:e6:9a:b7:b9:5b:bb:6f:28:2b:68:db:fd:2b:
24:7e:af:fe:7e:7c:b8:47:ae:75:10:4b:63:a0:df:46:a2:98:
21:af:d9:c6:e3:40:76:ce:5f:20:d2:71:f7:e1:2b:11:59:b8:
05:43:f7:1b:4b:60:ba:e1:10:63:e1:ad:19:da:bc:90:a7:c4:
58:5c:c0:bc:92:d4:a9:d1:72:7c:03:f6:5a:60:7e:e3:45:88:
8e:7b:52:98:13:4a:22:cf:3e:29:a8:b5:04:a7:61:89:a2:5a:
77:c9:1f:18:b3:f9:7d:db:70:a1:5a:90:17:5c:7c:b4:c6:5d:
57:00:ab:fd:97:07:bd:c9:ab:f9:70:fd:e8:0b:10:9f:c6:20:
3d:44:d2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org