Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a95c14-2010-43f6-abc8-cba79af5006a/1/6WJ3VdxlrEiXTYC3wJk216kY85I.roa
File: 6WJ3VdxlrEiXTYC3wJk216kY85I.roa (raw, json)
Hash identifier: J2O1T4htn2/EA2XX+n2Na90PpsMeHRZo0O9GMcblgUw=
Subject key identifier: E9:62:77:55:DC:65:AC:48:97:4D:80:B7:C0:99:36:D7:A9:18:F3:92
Certificate issuer: /CN=e73933c08af9c02dbb0d3e97f1f90933f5356fc1
Certificate serial: 5CA607
Authority key identifier: E7:39:33:C0:8A:F9:C0:2D:BB:0D:3E:97:F1:F9:09:33:F5:35:6F:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zkzwIr5wC27DT6X8fkJM_U1b8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a95c14-2010-43f6-abc8-cba79af5006a/1/6WJ3VdxlrEiXTYC3wJk216kY85I.roa
Signing time: Thu 07 Apr 2022 07:32:49 +0000
ROA not before: Thu 07 Apr 2022 07:32:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41424
IP address blocks: 193.41.33.0/24 maxlen: 24
89.207.240.0/24 maxlen: 24
89.207.241.0/24 maxlen: 24
89.207.244.0/24 maxlen: 24
89.207.240.0/21 maxlen: 21
89.207.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6071815 (0x5ca607)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e73933c08af9c02dbb0d3e97f1f90933f5356fc1
Validity
Not Before: Apr 7 07:32:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9627755dc65ac48974d80b7c09936d7a918f392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:63:27:02:4f:52:68:47:15:4d:95:25:78:1c:
ec:c3:c1:d5:0e:46:a5:6e:d8:5e:7a:99:ed:d1:c9:
23:d1:21:17:55:be:e0:a0:71:fb:90:7e:f5:43:13:
19:14:29:5a:b9:c5:9f:5f:3a:89:92:af:f2:cb:a9:
82:8f:c2:89:be:aa:36:87:a3:32:05:f2:c2:7f:ee:
9d:aa:cb:51:12:75:87:46:16:2d:b6:37:17:e1:7d:
2d:d1:91:73:40:1a:79:82:ad:92:7f:1e:1b:f3:8e:
5c:80:34:43:bd:fc:46:50:69:81:92:54:4d:e8:7f:
e7:f0:10:7a:36:0f:48:1b:ea:29:0c:f7:21:83:ef:
0f:4f:1d:bf:e7:0c:7d:ed:e1:e2:10:85:bc:14:c1:
ab:cc:c5:8b:47:9b:21:97:39:54:9e:7c:ef:c4:a6:
b6:99:b8:f3:e2:35:fa:f5:dd:61:55:2c:01:d0:64:
bc:f4:e6:5d:8f:36:96:31:e2:88:2a:62:59:42:e3:
ea:c9:33:e4:66:80:e7:14:da:a3:50:49:76:e3:ec:
1d:d7:e1:7e:e4:c8:57:a9:fa:21:53:04:e6:89:c6:
3a:bc:2e:22:72:8f:ea:d1:23:de:ef:ba:67:e6:78:
4d:51:3f:c4:4c:9f:f1:6f:4a:75:c1:14:b0:21:13:
2b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:62:77:55:DC:65:AC:48:97:4D:80:B7:C0:99:36:D7:A9:18:F3:92
X509v3 Authority Key Identifier:
keyid:E7:39:33:C0:8A:F9:C0:2D:BB:0D:3E:97:F1:F9:09:33:F5:35:6F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zkzwIr5wC27DT6X8fkJM_U1b8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a95c14-2010-43f6-abc8-cba79af5006a/1/6WJ3VdxlrEiXTYC3wJk216kY85I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a95c14-2010-43f6-abc8-cba79af5006a/1/5zkzwIr5wC27DT6X8fkJM_U1b8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.240.0/21
193.41.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:1a:30:40:60:5d:8e:cc:c9:c7:93:e6:5f:e3:aa:3c:65:6f:
b8:76:68:93:f3:9c:c6:28:bb:06:8b:8d:ce:a5:d0:48:01:e8:
58:5f:31:b8:f5:3b:6f:64:aa:1e:c8:a9:c8:28:43:df:72:49:
f2:a1:40:34:05:4f:08:0c:ac:3d:91:ee:58:68:1b:8c:53:db:
2d:c6:97:2b:4e:c4:3f:e5:f2:5e:e4:98:be:ce:68:6e:de:06:
32:70:26:cc:a2:cd:a2:62:eb:91:da:85:15:76:cb:2b:c2:28:
64:83:5d:84:c6:ff:34:c4:11:81:44:e2:96:9c:54:56:33:55:
4c:45:e1:05:3a:83:45:c9:e1:40:f4:46:6c:d4:4f:b4:18:70:
c4:02:9e:c9:f7:8a:48:f4:9c:55:b1:70:d5:ae:e9:07:17:46:
a0:a8:8f:c6:af:39:28:6f:7d:72:b8:82:47:60:81:2f:23:f0:
3d:70:44:65:10:5d:d5:cb:f0:b3:b7:b9:e4:d7:aa:d5:6a:0b:
14:3d:78:b8:ff:30:e0:65:bb:52:1c:1d:d8:29:43:3b:e2:ea:
e2:72:31:78:ff:d1:d4:7d:83:58:cf:93:6c:b7:04:25:e5:10:
dc:e0:a5:70:80:c9:3a:71:a8:38:f7:d1:d2:b2:f3:eb:16:3a:
40:80:b3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:50:51 2025 by rpki-client