Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/k6cX5fCQeOLsfVfyyydlnA9MV7Q.roa
File: k6cX5fCQeOLsfVfyyydlnA9MV7Q.roa (raw, json)
Hash identifier: mSV9tO9M3iO5TcUjlFQZiM8B6RA0WSNCAudmKsHt/W8=
Subject key identifier: 93:A7:17:E5:F0:90:78:E2:EC:7D:57:F2:CB:27:65:9C:0F:4C:57:B4
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 0D972A80
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/k6cX5fCQeOLsfVfyyydlnA9MV7Q.roa
Signing time: Sat 01 Jan 2022 09:56:39 +0000
ROA not before: Sat 01 Jan 2022 09:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197296
IP address blocks: 45.139.88.0/22 maxlen: 22
46.23.48.0/20 maxlen: 32
185.17.100.0/22 maxlen: 32
185.74.62.0/23 maxlen: 32
2a02:d280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228010624 (0xd972a80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 1 09:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93a717e5f09078e2ec7d57f2cb27659c0f4c57b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:7c:ab:14:11:9a:fb:ca:25:d0:37:f4:6f:2e:
df:13:41:ab:cc:96:c4:b9:5c:5c:5d:df:1c:e2:00:
aa:4a:db:ad:cd:78:e6:af:2d:79:28:a1:21:c2:a6:
d2:6c:70:9d:6c:04:3c:85:45:24:22:43:df:da:32:
c6:b8:9b:a0:b8:52:49:7b:f6:9d:f3:4a:34:d2:5f:
26:ec:d8:ee:f5:bd:a9:ab:27:63:ca:1b:22:24:37:
53:70:46:f7:fc:ab:19:31:3f:a9:bc:c0:b3:fb:8c:
44:59:7f:f2:5c:06:91:3b:0f:62:58:22:57:c9:5e:
d2:0c:9c:65:1f:dc:4e:23:a1:7a:13:4c:08:c7:5a:
ba:c9:29:84:92:f8:8f:28:7a:c9:1f:52:b9:d5:02:
b7:fe:49:22:44:dd:0a:96:00:14:bb:4a:85:58:4d:
44:ba:2a:d1:30:e3:6e:bb:4f:1a:b9:dc:be:02:16:
6b:eb:cb:14:5e:5e:7e:9e:f2:56:4a:ea:48:bc:fc:
e6:88:7c:d4:81:c8:0f:df:9a:72:d4:77:05:1d:80:
23:91:57:01:5d:5a:ec:f0:c1:2c:a4:9a:5e:f0:fe:
30:3e:21:d1:ff:c4:c6:42:69:97:cc:36:dd:18:78:
b9:a5:57:ef:99:35:df:7f:af:44:30:24:d6:8d:5d:
58:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A7:17:E5:F0:90:78:E2:EC:7D:57:F2:CB:27:65:9C:0F:4C:57:B4
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/k6cX5fCQeOLsfVfyyydlnA9MV7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.88.0/22
46.23.48.0/20
185.17.100.0/22
185.74.62.0/23
IPv6:
2a02:d280::/29
Signature Algorithm: sha256WithRSAEncryption
40:eb:b6:1e:83:76:e9:e1:91:a0:f5:01:9d:d4:5b:36:2f:24:
e5:eb:62:c1:ab:e7:0f:f3:52:cd:21:cc:44:da:b0:88:4e:58:
38:d1:f2:18:18:00:f1:90:e0:78:47:f6:c4:83:1e:9b:c0:83:
33:bd:fe:0e:01:de:21:0d:d7:49:fa:7e:e3:02:cd:cc:2d:d7:
7a:35:38:71:f2:40:b4:bd:f4:3f:0f:7f:18:d7:53:c7:0c:f1:
ff:80:89:38:82:6d:ff:a3:bd:94:cb:3b:d1:84:cb:df:fa:be:
aa:32:8d:9e:6d:ee:fc:00:02:47:0f:03:b3:20:b7:54:9a:32:
71:ab:9b:a8:a4:9e:ee:d9:45:db:96:25:30:a7:ae:2a:26:00:
29:59:cf:af:6e:6c:16:f3:83:87:d0:ee:4e:b5:a7:63:6d:b7:
05:4c:45:62:9d:ba:63:8b:c7:5e:47:2f:42:31:46:5f:9f:f4:
87:9f:ab:a8:53:aa:1d:d7:94:89:00:a4:06:0f:85:2b:6e:3b:
55:3d:15:bf:07:8d:ff:d3:fb:7b:96:50:77:4e:30:2d:f5:0f:
58:e3:af:b4:aa:db:45:08:e8:5b:7d:dc:fe:01:8e:2f:a6:ac:
6d:9f:ff:42:c4:10:0d:04:a7:2e:81:4d:e0:2d:df:68:df:69:
be:39:18:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:27 2024 by rpki-client on console-fra.rpki-client.org