Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/46f501-7745-49da-b1d8-07309e796c78/1/6U3wSU799hOYDzGyCKtC9DHO4b0.roa
File: 6U3wSU799hOYDzGyCKtC9DHO4b0.roa (raw, json)
Hash identifier: xAhCXHqmuEmtmQz9hMlYGMpzoy0guuBTbMbHtY6KDck=
Subject key identifier: E9:4D:F0:49:4E:FD:F6:13:98:0F:31:B2:08:AB:42:F4:31:CE:E1:BD
Certificate issuer: /CN=576b57aed853f89da2a5b23df17f9217eefa61b6
Certificate serial: 16EF5293
Authority key identifier: 57:6B:57:AE:D8:53:F8:9D:A2:A5:B2:3D:F1:7F:92:17:EE:FA:61:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V2tXrthT-J2ipbI98X-SF-76YbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/46f501-7745-49da-b1d8-07309e796c78/1/6U3wSU799hOYDzGyCKtC9DHO4b0.roa
Signing time: Sat 01 Jan 2022 10:54:38 +0000
ROA not before: Sat 01 Jan 2022 10:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51053
IP address blocks: 185.208.160.0/22 maxlen: 24
193.104.3.0/24 maxlen: 24
141.101.40.0/21 maxlen: 24
2a01:4f80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384782995 (0x16ef5293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576b57aed853f89da2a5b23df17f9217eefa61b6
Validity
Not Before: Jan 1 10:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e94df0494efdf613980f31b208ab42f431cee1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7a:37:1c:09:dd:9a:06:5a:3e:4e:f9:db:72:
ca:f3:1a:4d:e4:b1:b2:e6:8a:20:f9:ef:23:7e:6f:
d2:86:ec:43:65:8f:94:4a:3b:a9:dc:55:c5:97:23:
64:79:2b:e1:b1:60:92:d9:0e:81:23:fe:80:6c:bf:
32:e1:39:f8:cc:37:6c:6e:45:64:d5:7b:e8:94:b9:
1d:d1:7a:11:37:82:5a:44:56:fe:a1:e0:84:e7:cc:
36:14:18:6a:70:8c:f7:db:85:ac:96:f8:db:90:f3:
2d:67:cb:ee:a7:f1:df:cf:82:66:73:da:01:dd:1a:
f8:c3:4c:1f:80:61:98:c8:bd:39:cc:cf:63:c8:27:
71:d0:1a:3e:57:03:72:b5:84:20:cb:e7:48:e6:e8:
77:64:de:83:1a:40:46:89:80:ae:52:bd:82:fb:7e:
c2:7b:9c:ec:57:ef:5d:82:ed:6f:52:2d:62:1c:fe:
49:65:e4:f5:17:2b:28:e6:45:aa:71:6e:1a:68:20:
a6:bb:12:69:32:fa:91:3d:d2:2f:43:82:88:7f:28:
d6:75:bd:79:8b:bb:a3:c0:f3:3a:fc:3f:05:3a:36:
26:8e:30:d0:07:dd:eb:e1:3f:9a:56:b2:91:cb:4c:
ea:59:44:41:2a:a0:a6:82:33:a8:f6:d0:90:74:75:
4d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:4D:F0:49:4E:FD:F6:13:98:0F:31:B2:08:AB:42:F4:31:CE:E1:BD
X509v3 Authority Key Identifier:
keyid:57:6B:57:AE:D8:53:F8:9D:A2:A5:B2:3D:F1:7F:92:17:EE:FA:61:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V2tXrthT-J2ipbI98X-SF-76YbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/46f501-7745-49da-b1d8-07309e796c78/1/6U3wSU799hOYDzGyCKtC9DHO4b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/46f501-7745-49da-b1d8-07309e796c78/1/V2tXrthT-J2ipbI98X-SF-76YbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.40.0/21
185.208.160.0/22
193.104.3.0/24
IPv6:
2a01:4f80::/29
Signature Algorithm: sha256WithRSAEncryption
8f:3b:33:e8:23:da:60:1a:55:56:3b:d2:20:49:cc:29:96:36:
cb:d7:97:5b:61:eb:dd:b6:d5:65:2f:96:68:df:ed:1b:a7:a7:
b5:68:65:42:3e:56:a8:5a:af:77:f4:7f:a7:f0:e3:24:46:87:
01:4b:93:79:73:eb:54:90:59:7b:6d:f1:62:b2:f6:9b:9b:9d:
27:04:60:da:7d:ad:b4:05:d0:4d:52:d9:9a:14:73:38:e9:ea:
2d:cc:14:c2:19:d8:a9:48:6a:ff:7a:0d:e3:64:b4:ef:d6:1d:
f0:ca:38:dd:cb:f9:84:51:24:af:d6:36:b5:cf:ca:25:a6:97:
a7:7a:2a:3a:63:6f:6e:ec:58:75:f7:2e:b4:8c:05:b3:6a:00:
2b:1f:83:5b:31:aa:4a:75:d7:2c:1c:f6:40:36:d6:b4:79:e0:
29:4e:7e:35:df:0a:27:dc:2c:14:5f:4a:dc:97:4b:7f:5f:43:
26:fb:2f:e3:04:27:10:34:a3:1d:47:2b:6e:a7:df:3a:c8:f7:
98:e5:bb:73:0c:6d:62:d1:9f:50:30:6a:2f:41:15:9c:2a:88:
3b:d6:ad:39:a8:19:e3:54:1a:d3:db:2a:ee:9c:df:29:7e:26:
2a:23:0b:16:6a:eb:b2:91:f9:1d:fa:66:16:5f:48:96:92:e2:
c5:47:28:f5
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEFu9SkzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NzZiNTdhZWQ4NTNmODlkYTJhNWIyM2RmMTdmOTIxN2VlZmE2MWI2MB4XDTIyMDEw
MTEwNTQzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTk0ZGYwNDk0ZWZk
ZjYxMzk4MGYzMWIyMDhhYjQyZjQzMWNlZTFiZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKt6NxwJ3ZoGWj5O+dtyyvMaTeSxsuaKIPnvI35v0obsQ2WP
lEo7qdxVxZcjZHkr4bFgktkOgSP+gGy/MuE5+Mw3bG5FZNV76JS5HdF6ETeCWkRW
/qHghOfMNhQYanCM99uFrJb425DzLWfL7qfx38+CZnPaAd0a+MNMH4BhmMi9OczP
Y8gncdAaPlcDcrWEIMvnSObod2TegxpARomArlK9gvt+wnuc7FfvXYLtb1ItYhz+
SWXk9RcrKOZFqnFuGmggprsSaTL6kT3SL0OCiH8o1nW9eYu7o8DzOvw/BTo2Jo4w
0Afd6+E/mlaykctM6llEQSqgpoIzqPbQkHR1TZsCAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBTpTfBJTv32E5gPMbIIq0L0Mc7hvTAfBgNVHSMEGDAWgBRXa1eu2FP4naKl
sj3xf5IX7vphtjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1YydFhydGhULUoyaXBiSTk4WC1TRi03NlliWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODUvNDZmNTAxLTc3NDUtNDlkYS1iMWQ4LTA3MzA5ZTc5NmM3OC8x
LzZVM3dTVTc5OWhPWUR6R3lDS3RDOURITzRiMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUv
NDZmNTAxLTc3NDUtNDlkYS1iMWQ4LTA3MzA5ZTc5NmM3OC8xL1YydFhydGhULUoy
aXBiSTk4WC1TRi03NlliWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEA41lKAMEArnQoAMEAMFoAzANBAIA
AjAHAwUDKgFPgDANBgkqhkiG9w0BAQsFAAOCAQEAjzsz6CPaYBpVVjvSIEnMKZY2
y9eXW2Hr3bbVZS+WaN/tG6entWhlQj5WqFqvd/R/p/DjJEaHAUuTeXPrVJBZe23x
YrL2m5udJwRg2n2ttAXQTVLZmhRzOOnqLcwUwhnYqUhq/3oN42S079Yd8Mo43cv5
hFEkr9Y2tc/KJaaXp3oqOmNvbuxYdfcutIwFs2oAKx+DWzGqSnXXLBz2QDbWtHng
KU5+Nd8KJ9wsFF9K3JdLf19DJvsv4wQnEDSjHUcrbqffOsj3mOW7cwxtYtGfUDBq
L0EVnCqIO9atOagZ41Qa09sq7pzfKX4mKiMLFmrrspH5HfpmFl9IlpLixUco9Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:29 2024 by rpki-client on console-fra.rpki-client.org