Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/biVDeyZXNDl8ar8K53z830Xr6D4.roa
File: biVDeyZXNDl8ar8K53z830Xr6D4.roa (raw, json)
Hash identifier: DKrqbhkHwX+qzOZXm90xir9Syq4qMeLSo/83iWk5ugA=
Subject key identifier: 6E:25:43:7B:26:57:34:39:7C:6A:BF:0A:E7:7C:FC:DF:45:EB:E8:3E
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 33067C2D
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/biVDeyZXNDl8ar8K53z830Xr6D4.roa
Signing time: Sat 01 Jan 2022 09:58:38 +0000
ROA not before: Sat 01 Jan 2022 09:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21075
IP address blocks: 193.109.80.0/24 maxlen: 24
46.164.138.0/24 maxlen: 24
93.183.236.0/24 maxlen: 24
93.183.238.0/24 maxlen: 24
193.238.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 856063021 (0x33067c2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 09:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e25437b265734397c6abf0ae77cfcdf45ebe83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ef:d7:13:3d:e3:bb:bd:9c:48:a9:fe:c5:be:
73:6c:6b:3b:8e:38:19:76:5f:de:09:f4:04:ff:33:
a5:25:01:e4:d0:f6:00:53:ef:9f:67:cc:07:5f:85:
e6:a0:77:c7:8f:97:f4:df:2c:de:fe:47:38:02:d4:
ea:8f:d5:a5:f0:89:78:a4:2a:ed:38:e6:59:90:56:
39:10:9e:4d:43:7a:e0:3f:f5:20:31:d0:e3:e7:c5:
48:9c:44:8f:78:d1:51:78:cf:80:1a:88:14:66:73:
27:64:c7:4a:c0:92:d3:03:4a:a6:38:c5:0f:ad:ec:
72:d8:cf:96:2b:e0:30:38:37:a0:c2:85:6d:dc:91:
f8:f8:aa:0b:6c:af:6a:11:ba:ba:92:a0:fc:43:f4:
a4:86:e7:93:f5:ea:55:94:24:0d:7d:27:43:ee:f0:
df:67:ee:69:86:66:90:dc:a2:1e:0a:55:4e:15:7e:
af:60:cf:06:ab:59:cc:04:5c:6a:7b:22:6b:63:3b:
f9:46:a6:00:ae:0a:8b:8d:19:07:d8:ee:ba:ff:9e:
d5:82:83:eb:a5:03:83:b6:a8:77:c7:09:fa:48:75:
b8:1a:a1:40:6b:51:3a:10:81:94:a9:ca:fa:27:4a:
90:9b:26:f1:ac:ec:48:10:85:ad:5c:d2:71:d0:0b:
3b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:25:43:7B:26:57:34:39:7C:6A:BF:0A:E7:7C:FC:DF:45:EB:E8:3E
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/biVDeyZXNDl8ar8K53z830Xr6D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.164.138.0/24
93.183.236.0/24
93.183.238.0/24
193.109.80.0/24
193.238.96.0/22
Signature Algorithm: sha256WithRSAEncryption
53:c7:fc:33:b9:22:43:76:ae:af:00:44:f3:b3:17:9c:ca:5e:
1d:cb:b7:ae:78:ee:80:6f:58:cf:0e:27:70:ea:5d:92:1d:61:
9a:a5:d1:85:99:93:12:f6:61:51:88:29:3b:c0:c5:65:45:63:
4c:d9:ee:d0:40:ea:1b:63:82:c9:79:70:24:66:ec:e3:38:00:
df:e2:34:31:ae:49:a1:46:55:c7:8e:cb:22:5f:53:63:41:b5:
7e:93:05:72:1a:ba:30:01:00:3e:30:9b:3e:cd:6b:90:37:1c:
de:b1:a9:e2:d5:a6:8d:49:fc:45:6c:27:fd:84:71:1e:0a:3d:
6d:78:11:23:1c:1f:9d:90:78:79:f4:89:70:ab:3c:fd:07:cd:
30:01:e9:b5:b5:9a:b8:73:ab:1b:d6:ce:3e:6a:01:e2:f6:dc:
4e:f2:46:d0:1a:33:98:0d:63:6d:fe:a7:b4:28:4a:59:2e:3e:
dc:b1:92:64:71:f0:24:0e:ff:44:67:79:cf:66:c1:10:39:ce:
41:5b:dd:58:05:2f:c1:e8:1a:fa:2d:c6:fa:4e:0b:f5:b1:c8:
da:f1:aa:2c:ea:72:a1:76:9c:a8:31:35:21:93:c7:61:d4:27:
dd:03:38:46:6d:e7:67:37:c6:18:27:c6:76:cd:9d:22:0c:99:
b7:eb:82:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org