Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/W0mjJ374nZ-aifykfFWl3pTYArs.roa
File: W0mjJ374nZ-aifykfFWl3pTYArs.roa (raw, json)
Hash identifier: SgyVN3Ky36m2NYLVxbCdO+ECtGQRiLl6M8ftIx8h+mI=
Subject key identifier: 5B:49:A3:27:7E:F8:9D:9F:9A:89:FC:A4:7C:55:A5:DE:94:D8:02:BB
Certificate issuer: /CN=6ad9641ca447eb2e30c5db5191c16bcd477289db
Certificate serial: 05772C7D
Authority key identifier: 6A:D9:64:1C:A4:47:EB:2E:30:C5:DB:51:91:C1:6B:CD:47:72:89:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/W0mjJ374nZ-aifykfFWl3pTYArs.roa
Signing time: Sat 01 Jan 2022 01:51:51 +0000
ROA not before: Sat 01 Jan 2022 01:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9063
IP address blocks: 185.53.156.0/22 maxlen: 22
2a02:2c60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91696253 (0x5772c7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ad9641ca447eb2e30c5db5191c16bcd477289db
Validity
Not Before: Jan 1 01:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b49a3277ef89d9f9a89fca47c55a5de94d802bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:cd:51:7c:de:12:84:e0:a9:bb:15:65:78:
b0:96:e1:cc:32:18:95:4d:c9:f6:3c:6a:60:94:d3:
c4:a0:ba:e2:79:1d:59:25:8c:3f:05:53:3c:8e:05:
95:15:03:a0:24:43:79:ab:f5:5d:30:9e:f3:05:b6:
f2:14:59:ab:19:84:88:d5:34:b9:47:8b:7d:6e:56:
af:11:89:2f:a3:4b:13:d1:bb:2f:6d:dc:b7:a1:0e:
80:22:a3:e8:e2:96:02:a3:ab:65:32:02:cf:31:80:
14:a0:67:b8:76:5b:ad:1f:1e:cc:f8:31:52:a4:8c:
60:d8:2c:a7:f4:88:4a:68:5a:30:9b:98:4f:cf:e3:
46:78:80:45:16:56:32:ae:ce:0b:3c:03:1f:3b:32:
a3:83:93:53:39:f6:9d:9c:cd:bd:64:fe:1e:50:c6:
e6:f1:65:06:16:2f:4c:66:d9:a5:4f:36:d1:54:32:
80:1c:e3:2b:88:cb:1e:d7:7c:09:e4:4b:58:53:6c:
92:bd:61:c9:8e:1c:00:1d:58:55:7e:75:fe:f9:72:
e7:c3:34:7b:54:8b:e8:b3:55:6f:72:82:fc:ab:c0:
e1:dd:ba:83:59:23:b7:d4:5a:1b:fb:f6:fe:af:4c:
ad:98:33:0c:33:ed:65:c3:6c:11:70:17:60:94:5d:
aa:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:49:A3:27:7E:F8:9D:9F:9A:89:FC:A4:7C:55:A5:DE:94:D8:02:BB
X509v3 Authority Key Identifier:
keyid:6A:D9:64:1C:A4:47:EB:2E:30:C5:DB:51:91:C1:6B:CD:47:72:89:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/atlkHKRH6y4wxdtRkcFrzUdyids.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/W0mjJ374nZ-aifykfFWl3pTYArs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d1664b-a315-4e2e-80bf-311c2e6eeb46/1/atlkHKRH6y4wxdtRkcFrzUdyids.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.156.0/22
IPv6:
2a02:2c60::/32
Signature Algorithm: sha256WithRSAEncryption
67:84:18:1c:5c:15:f4:a0:4d:33:76:24:88:8c:e4:5e:9c:5a:
e6:15:ec:b8:09:9f:a4:37:86:d5:77:48:1d:1a:45:ae:d2:a0:
80:17:3b:dd:89:bc:86:c5:93:9e:0a:79:53:16:70:03:0f:cc:
10:bb:c3:a7:59:62:18:49:48:21:5d:91:66:b0:e8:30:8d:f6:
f7:a4:53:3e:da:3e:db:1a:39:d3:39:25:e1:ed:49:ee:10:9d:
86:0b:b5:72:fe:f1:90:e7:ee:e5:5d:ab:35:cd:3f:09:58:b2:
cf:e7:80:36:ff:6e:0c:d1:a5:2c:b7:e9:2f:ed:0f:f3:70:2e:
2c:d5:ed:db:d8:e2:18:52:57:15:06:09:90:a6:cb:51:e5:87:
49:9c:00:d4:38:fe:dc:33:d1:e4:8a:eb:c6:c6:31:c2:46:d0:
e6:c6:7b:a0:d8:b6:41:2d:54:ba:0f:e7:f4:8d:e0:e1:e6:73:
5c:3a:f5:7e:7c:d3:27:f6:dd:eb:5a:81:74:34:fe:20:de:25:
55:c3:38:3b:aa:b4:d3:75:28:37:5e:7a:79:62:2f:56:00:53:
01:20:17:20:51:0d:0e:d3:92:bc:2f:d4:d8:d8:ab:82:36:d9:
6f:26:6d:d5:05:1d:27:b0:05:59:1e:d3:32:01:32:4e:7f:15:
f9:e8:c9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:23 2024 by rpki-client on console-fra.rpki-client.org