Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/b_qXp7KFbcLtV8X8bKdrGtJeyI4.roa
File: b_qXp7KFbcLtV8X8bKdrGtJeyI4.roa (raw, json)
Hash identifier: YGHwEnCqWwXbaVUsxVHepVHPA1ESxlFB3JmmrkEXBlM=
Subject key identifier: 6F:FA:97:A7:B2:85:6D:C2:ED:57:C5:FC:6C:A7:6B:1A:D2:5E:C8:8E
Certificate issuer: /CN=f992d817ec34b4731d8d36c7b094d2b045d0bc7c
Certificate serial: 0F019E6A
Authority key identifier: F9:92:D8:17:EC:34:B4:73:1D:8D:36:C7:B0:94:D2:B0:45:D0:BC:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ZLYF-w0tHMdjTbHsJTSsEXQvHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/b_qXp7KFbcLtV8X8bKdrGtJeyI4.roa
Signing time: Wed 02 Feb 2022 19:03:28 +0000
ROA not before: Wed 02 Feb 2022 19:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51185
IP address blocks: 94.124.64.0/21 maxlen: 21
94.124.67.0/24 maxlen: 24
94.124.65.0/24 maxlen: 24
185.45.208.0/24 maxlen: 24
185.45.210.0/24 maxlen: 24
178.248.52.0/24 maxlen: 24
178.248.53.0/24 maxlen: 24
178.248.54.0/24 maxlen: 24
185.187.159.0/24 maxlen: 24
178.248.48.0/24 maxlen: 24
178.248.49.0/24 maxlen: 24
178.248.50.0/24 maxlen: 24
178.248.51.0/24 maxlen: 24
2a02:2891:13::/48 maxlen: 48
2a02:2891:4::/48 maxlen: 48
2a02:2890::/48 maxlen: 48
2a02:2891:ff::/48 maxlen: 48
2a02:2891:10::/48 maxlen: 48
2a02:2890:ffff::/48 maxlen: 48
2a02:2891:15::/48 maxlen: 48
2a02:2891:1::/48 maxlen: 48
2a02:2892:36::/48 maxlen: 48
2a02:2891:12::/48 maxlen: 48
2a02:2892:40::/48 maxlen: 48
2a02:2891::/48 maxlen: 48
2a02:2892:32::/48 maxlen: 48
2a02:2891:11::/48 maxlen: 48
2a02:2891:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 251764330 (0xf019e6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f992d817ec34b4731d8d36c7b094d2b045d0bc7c
Validity
Not Before: Feb 2 19:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ffa97a7b2856dc2ed57c5fc6ca76b1ad25ec88e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cf:5a:59:4b:b3:1d:f2:f0:df:d4:05:03:c7:
06:a7:c7:2c:db:9c:51:42:53:ee:cb:fd:65:d4:42:
e3:76:c8:8b:9e:95:d1:30:9c:d9:e2:5d:c9:23:d1:
27:3a:ae:43:0a:50:47:c4:74:76:fe:e7:6a:87:d8:
72:d8:e3:93:57:0b:60:28:19:1f:6e:a1:5f:e4:1f:
c8:cf:16:2e:ac:32:04:71:fd:2d:e9:bc:65:99:c0:
27:54:77:ef:50:3c:29:25:bc:ff:d0:67:66:96:34:
25:c7:e5:7f:67:9f:7a:08:83:8d:e3:43:d6:92:af:
42:22:a6:82:79:a0:a0:e2:0d:d1:ef:8a:ca:23:c4:
3f:87:bb:7f:b2:f1:0a:c5:40:6b:41:43:d9:1f:9b:
9c:79:82:bb:6c:44:08:41:08:a5:99:ec:3e:85:9c:
34:ee:3a:ea:24:f3:2a:93:cd:91:76:33:8c:68:d2:
f6:c6:bd:54:ce:e0:11:14:a1:9c:f6:4d:fe:27:ee:
23:74:60:df:13:56:6a:00:17:4d:25:ea:a5:52:50:
81:64:9e:f3:1b:fe:35:b2:f9:f8:e7:02:13:20:10:
d2:22:0c:ad:ca:8b:88:f2:87:df:c7:1f:91:b9:07:
bf:83:2c:09:80:a5:94:60:6f:17:ed:c0:30:48:18:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FA:97:A7:B2:85:6D:C2:ED:57:C5:FC:6C:A7:6B:1A:D2:5E:C8:8E
X509v3 Authority Key Identifier:
keyid:F9:92:D8:17:EC:34:B4:73:1D:8D:36:C7:B0:94:D2:B0:45:D0:BC:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ZLYF-w0tHMdjTbHsJTSsEXQvHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/b_qXp7KFbcLtV8X8bKdrGtJeyI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/1-ZLYF-w0tHMdjTbHsJTSsEXQvHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.64.0/21
178.248.48.0-178.248.54.255
185.45.208.0/24
185.45.210.0/24
185.187.159.0/24
IPv6:
2a02:2890::/48
2a02:2890:ffff::-2a02:2891:2:ffff:ffff:ffff:ffff:ffff
2a02:2891:4::/48
2a02:2891:10::/46
2a02:2891:15::/48
2a02:2891:ff::/48
2a02:2892:32::/48
2a02:2892:36::/48
2a02:2892:40::/48
Signature Algorithm: sha256WithRSAEncryption
81:d4:3c:2a:18:7b:cc:a7:21:a4:32:fd:55:19:cf:42:a8:34:
d8:b8:01:1e:86:24:d0:81:09:7e:9b:21:93:a2:f8:d9:60:d2:
ac:50:12:30:cc:af:58:05:45:e5:ee:c6:3a:2a:ae:3f:9b:fa:
c6:36:80:09:93:86:1e:2f:f0:f8:f7:98:6f:55:95:68:2b:ad:
a5:58:97:2a:e3:e8:57:57:48:27:90:39:f1:1e:18:54:fe:ca:
29:92:48:64:f0:e3:4c:50:d1:3d:80:8e:f8:13:cc:9d:11:03:
6f:5e:42:11:f6:66:83:8f:8f:f2:5f:7e:35:ec:71:19:cd:04:
3c:94:0e:d9:d4:48:5d:30:43:a4:0e:27:f2:90:6a:2f:1d:8d:
9a:b8:8b:84:c2:fe:b8:a7:b2:bf:4c:7c:35:d0:6d:40:ae:6f:
06:6a:9b:2f:3b:bc:d1:96:a4:ac:4f:81:6e:6a:1d:fc:fc:01:
17:6a:dd:94:87:2f:8b:ea:cc:0e:ed:b9:34:0e:5e:69:55:74:
e4:6d:69:92:40:89:af:09:60:1a:72:86:71:21:f6:86:35:38:
17:00:94:32:ce:83:49:4c:1a:51:76:e7:f1:f8:2f:5e:1f:de:
9b:30:55:85:c7:91:e0:bb:ad:0c:69:22:67:50:f2:26:9d:6b:
5a:84:11:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:19 2023 by rpki-client on console-ams.rpki-client.org