Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/6TkGsZMwLnkcQBZD3PRA6FvLZmk.roa
File: 6TkGsZMwLnkcQBZD3PRA6FvLZmk.roa (raw, json)
Hash identifier: nidmrtcole6DxmEFymx8DF0Cyo4jh2YAiL6NvthW/m8=
Subject key identifier: E9:39:06:B1:93:30:2E:79:1C:40:16:43:DC:F4:40:E8:5B:CB:66:69
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 0D972D9A
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/6TkGsZMwLnkcQBZD3PRA6FvLZmk.roa
Signing time: Sat 01 Jan 2022 09:56:39 +0000
ROA not before: Sat 01 Jan 2022 09:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201533
IP address blocks: 185.71.232.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228011418 (0xd972d9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 1 09:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e93906b193302e791c401643dcf440e85bcb6669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bc:f2:33:84:65:53:52:eb:c8:f7:4c:7a:a9:
36:b9:d7:91:7e:13:b6:4d:3d:d6:86:ed:57:68:42:
13:8f:cd:1d:cb:5e:70:a3:3c:e3:67:61:f1:92:39:
e3:4c:74:2c:1f:da:28:c1:f1:05:36:c0:8f:de:93:
91:2a:83:10:eb:c2:ad:8b:46:d0:f6:97:9d:30:29:
9a:e8:e0:a5:71:88:b5:c5:2b:7b:29:30:8e:71:11:
23:f8:28:ad:99:c5:21:84:4f:7c:91:f8:a7:77:ab:
8f:5f:c5:99:66:0d:8a:24:e8:44:a7:c0:53:00:ff:
e6:77:a7:71:02:b6:ab:df:76:79:58:8e:87:be:d2:
06:8c:db:1f:e0:d4:f2:9f:31:9f:42:ae:5a:45:b6:
e9:0c:44:70:3c:70:ff:2a:5e:10:bc:ed:73:9d:dd:
0b:4c:46:97:98:9e:c5:95:49:60:30:34:94:5d:f8:
fa:9a:47:99:20:dc:4c:d9:85:86:ee:9b:3a:8c:75:
dd:c5:ca:fe:4b:c9:e8:9f:4f:9d:e2:a3:bb:ca:91:
f1:7d:f8:8c:5c:84:9e:bc:ed:57:ab:43:75:00:49:
d7:ab:04:c4:d6:1c:e0:0c:d4:f8:7a:f3:d9:b1:f4:
b6:6c:61:f1:51:3a:4f:1c:7f:c3:74:84:01:eb:40:
67:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:39:06:B1:93:30:2E:79:1C:40:16:43:DC:F4:40:E8:5B:CB:66:69
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/6TkGsZMwLnkcQBZD3PRA6FvLZmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.232.0/22
Signature Algorithm: sha256WithRSAEncryption
99:9d:51:b2:c7:af:fc:af:f0:1a:ff:73:88:b4:ea:2d:62:82:
52:fd:66:ce:02:52:50:76:97:e8:77:da:75:c5:99:72:f0:3b:
93:75:8a:f1:3a:46:5d:7e:4d:75:08:15:7d:82:ed:00:35:8e:
1f:86:da:3c:7d:c4:13:99:c4:49:e9:c8:df:0c:05:ec:58:b3:
70:af:e0:5a:cd:5d:75:82:bc:ba:4a:c5:7c:8d:8f:84:7d:04:
9c:6d:56:73:b8:19:f4:12:f3:ef:3f:36:ea:33:4f:d2:8f:44:
0e:e5:bf:45:be:0b:d6:e3:7e:4e:ae:1f:09:59:49:41:72:fd:
9c:9c:5b:06:15:1d:8a:51:f7:63:d7:28:2a:71:34:21:7a:3a:
d9:6c:16:26:d8:b5:6b:e8:e2:c2:57:74:ae:5e:09:4e:87:2d:
f3:9f:5d:53:ac:ee:7b:5c:9a:07:69:13:d6:ea:a6:88:08:f4:
23:2a:01:de:99:70:5e:82:61:36:74:d9:52:6a:13:ef:42:59:
c1:10:6a:1d:ac:db:aa:bd:ae:e4:1f:8b:7f:d5:48:b2:96:d3:
c1:bf:75:3d:91:d1:a1:db:80:47:9e:c3:83:1c:f9:75:56:33:
81:21:4b:7b:6b:ed:45:e4:8d:72:c5:c9:60:c8:29:4b:95:e6:
f1:ca:99:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:09 2025 by rpki-client