Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/E9a6KwmxWnVSPT-YCCl55mvVi0Y.roa
File: E9a6KwmxWnVSPT-YCCl55mvVi0Y.roa (raw, json)
Hash identifier: adlwmC3h6F+oylFLfb1GONp+X0re11cVLw1G0UcSHsE=
Subject key identifier: 13:D6:BA:2B:09:B1:5A:75:52:3D:3F:98:08:29:79:E6:6B:D5:8B:46
Certificate issuer: /CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Certificate serial: 018A51BF89CD24E4CE156558074E45830284
Authority key identifier: 49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/E9a6KwmxWnVSPT-YCCl55mvVi0Y.roa
Signing time: Fri 01 Sep 2023 17:17:01 +0000
ROA not before: Fri 01 Sep 2023 17:17:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35676
IP address blocks: 178.213.66.0/23 maxlen: 23
178.213.66.0/24 maxlen: 24
178.213.67.0/24 maxlen: 24
178.213.65.0/24 maxlen: 24
178.213.70.0/24 maxlen: 24
178.213.71.0/24 maxlen: 24
178.213.68.0/22 maxlen: 22
178.213.68.0/24 maxlen: 24
178.213.69.0/24 maxlen: 24
178.213.64.0/24 maxlen: 24
178.213.64.0/23 maxlen: 23
178.213.64.0/22 maxlen: 22
193.105.186.0/24 maxlen: 24
194.5.88.0/24 maxlen: 24
194.5.88.0/23 maxlen: 23
194.5.89.0/24 maxlen: 24
195.234.36.0/24 maxlen: 24
185.16.252.0/23 maxlen: 23
185.16.252.0/24 maxlen: 24
185.16.252.0/22 maxlen: 22
185.16.253.0/24 maxlen: 24
185.16.255.0/24 maxlen: 24
185.16.254.0/24 maxlen: 24
185.16.254.0/23 maxlen: 23
2a03:6f81::/33 maxlen: 33
2a03:6f81::/32 maxlen: 33
2a03:6f82::/32 maxlen: 32
2a03:6f80::/32 maxlen: 33
2a03:6f80::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:51:bf:89:cd:24:e4:ce:15:65:58:07:4e:45:83:02:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Validity
Not Before: Sep 1 17:17:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13d6ba2b09b15a75523d3f98082979e66bd58b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e1:f7:c4:13:e7:26:79:ef:a4:96:ca:67:25:
c9:37:50:44:d8:2a:26:59:e7:7b:43:78:eb:5a:96:
e9:00:60:f7:eb:08:4e:b3:3f:cb:30:bd:62:d1:f4:
30:97:e9:f9:8b:c6:57:a9:ea:a9:83:10:e5:94:2e:
2e:3a:28:89:e9:c0:2d:39:d5:3b:46:4d:69:9c:34:
8f:f9:bb:c6:8b:d3:98:a3:9c:42:e0:20:1d:a5:07:
af:f8:1f:55:70:6e:4f:7e:3e:b6:b3:dc:00:96:5f:
52:33:a7:b5:0f:9b:53:63:30:67:de:41:11:eb:a3:
db:3e:14:15:f5:7c:d7:dc:b3:30:e9:3e:0f:05:b6:
a6:bd:e0:b8:bf:85:15:db:c7:43:d1:c1:2e:69:40:
87:4b:de:5f:6c:aa:04:e7:68:0f:97:0b:95:c0:3a:
fe:d7:0f:35:48:4d:04:4b:39:e6:64:2a:d6:5d:11:
82:2e:bc:08:99:77:2e:c4:0d:0a:3e:71:6d:a1:b2:
a8:54:28:ef:21:f5:f3:4d:fd:ed:3c:cf:b9:6a:e5:
d9:13:bd:b6:ea:9b:2f:b3:34:1a:4b:53:9d:3d:03:
5a:93:44:5d:0a:c6:df:e1:65:e5:6d:8f:5e:42:27:
9a:bc:ef:69:48:30:b3:14:ff:5c:50:1a:ca:c0:30:
3d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D6:BA:2B:09:B1:5A:75:52:3D:3F:98:08:29:79:E6:6B:D5:8B:46
X509v3 Authority Key Identifier:
keyid:49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/E9a6KwmxWnVSPT-YCCl55mvVi0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/SeRO7qJladDdvQ6GN_Es9QWk7ek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.64.0/21
185.16.252.0/22
193.105.186.0/24
194.5.88.0/23
195.234.36.0/24
IPv6:
2a03:6f80::-2a03:6f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4d:e4:54:1c:c1:19:f8:e1:0d:06:4a:5b:6c:91:c9:a8:6f:f8:
71:77:bc:c3:73:dc:8e:27:81:ac:b5:5f:bb:91:5c:02:31:da:
15:3a:e9:13:1f:81:a8:aa:96:08:0c:52:72:77:26:f2:bf:3b:
24:12:77:73:13:0c:5a:0d:d3:0e:47:48:4b:8b:6d:23:23:f0:
60:45:f0:d2:31:a7:60:55:ed:cf:3d:4e:20:21:9b:3c:0a:ad:
b5:ac:9e:e7:70:5e:8a:a5:9f:64:cd:73:34:59:eb:59:25:a4:
40:52:80:3d:1c:bd:bb:a0:10:d1:0e:17:52:73:65:ea:c9:1e:
e8:df:bb:54:0d:98:43:5e:06:34:42:fc:5a:8f:fe:70:5e:b7:
90:6c:b1:68:10:d8:ee:17:38:44:42:88:bc:05:b2:5f:67:f0:
11:7d:88:43:e1:02:cc:34:ca:a4:8d:b8:e2:b4:29:cc:aa:82:
c1:43:a2:14:03:b0:bf:46:a4:c2:0d:d2:11:ae:69:c8:d4:01:
3a:f6:07:fa:1f:80:33:6a:38:39:a5:b9:c4:3f:5b:68:53:60:
13:13:dd:6d:84:75:80:c3:eb:e2:8c:99:d6:66:08:d1:4e:79:
72:14:6c:2e:3e:f3:d2:30:2c:ee:52:74:9b:8a:8c:95:d8:f1:
c0:33:10:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:57 2025 by rpki-client