Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/b6c783-f55d-4ead-8c6a-19633f08ed6a/1/6tucJXQ4ZPp6CjZMWwkbrZAsaTw.roa
File: 6tucJXQ4ZPp6CjZMWwkbrZAsaTw.roa (raw, json)
Hash identifier: i3cXYRAuov9xgS46GLwbh3r9wEYlMl2L5WdZSE7i45I=
Subject key identifier: EA:DB:9C:25:74:38:64:FA:7A:0A:36:4C:5B:09:1B:AD:90:2C:69:3C
Certificate issuer: /CN=1cd8b25cceac38c99372bf72b00c6c8b6418e923
Certificate serial: 0571ABB5
Authority key identifier: 1C:D8:B2:5C:CE:AC:38:C9:93:72:BF:72:B0:0C:6C:8B:64:18:E9:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNiyXM6sOMmTcr9ysAxsi2QY6SM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/b6c783-f55d-4ead-8c6a-19633f08ed6a/1/6tucJXQ4ZPp6CjZMWwkbrZAsaTw.roa
Signing time: Sat 01 Jan 2022 07:56:48 +0000
ROA not before: Sat 01 Jan 2022 07:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 193.53.16.0/22 maxlen: 24
193.53.20.0/23 maxlen: 24
2a00:f620:1::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91335605 (0x571abb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cd8b25cceac38c99372bf72b00c6c8b6418e923
Validity
Not Before: Jan 1 07:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eadb9c25743864fa7a0a364c5b091bad902c693c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cd:27:c5:73:a7:af:8d:bd:d7:93:6c:f1:ec:
d5:51:75:29:4c:96:77:87:8e:2f:52:f7:54:06:92:
39:b1:a0:e3:e9:3a:04:a0:58:21:e1:2b:d3:65:50:
75:3a:f0:4c:69:7a:da:e2:1c:c4:3a:bb:e6:8f:bb:
82:1b:a0:26:98:40:5f:af:8e:4f:b9:f6:0b:fb:a5:
85:62:62:2d:f0:ae:9f:ef:96:d2:ca:7c:69:0f:3e:
7d:3b:d2:44:37:45:5d:57:28:dc:e0:b0:dd:56:a5:
4f:a7:17:fa:45:2f:95:bf:3d:a0:3c:4e:ef:16:8c:
ed:05:37:80:2a:74:73:d0:0f:79:35:bc:92:7a:44:
9a:bb:46:35:c1:40:f3:f7:03:0c:fb:82:d9:20:ad:
6d:1a:04:ce:d8:11:44:16:40:f2:9c:26:b0:07:e2:
0a:e0:2c:3e:b9:91:50:0b:cb:3c:41:e1:52:3d:db:
4f:f9:7c:66:17:d3:43:29:9d:d5:45:93:49:0a:98:
1d:7b:21:60:03:ce:c7:52:58:0e:8d:f6:be:40:99:
40:84:7c:73:01:07:51:7c:cd:53:06:71:5e:86:b0:
a4:b3:15:bc:c5:b0:ab:1b:9c:5b:39:f9:58:ef:c1:
69:2a:98:9f:c1:e4:c7:7f:7b:aa:9a:7f:b4:17:ec:
cc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DB:9C:25:74:38:64:FA:7A:0A:36:4C:5B:09:1B:AD:90:2C:69:3C
X509v3 Authority Key Identifier:
keyid:1C:D8:B2:5C:CE:AC:38:C9:93:72:BF:72:B0:0C:6C:8B:64:18:E9:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNiyXM6sOMmTcr9ysAxsi2QY6SM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/b6c783-f55d-4ead-8c6a-19633f08ed6a/1/6tucJXQ4ZPp6CjZMWwkbrZAsaTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/b6c783-f55d-4ead-8c6a-19633f08ed6a/1/HNiyXM6sOMmTcr9ysAxsi2QY6SM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.16.0-193.53.21.255
IPv6:
2a00:f620:1::/48
Signature Algorithm: sha256WithRSAEncryption
6f:77:3a:12:c5:34:f8:7e:08:4c:f0:50:19:c2:f8:2a:2e:25:
5e:59:d7:d7:16:be:a1:49:fa:9d:78:70:22:72:30:9c:99:4c:
9c:e3:ee:01:a7:16:26:a8:fc:1d:d5:5e:9c:5e:bf:62:17:1d:
33:30:8c:6c:9c:41:9c:8d:09:7f:3b:51:72:33:e2:8c:47:e7:
3e:09:f1:1a:f2:b8:f1:81:8b:fd:fb:8b:23:f3:49:eb:86:8c:
0e:06:21:60:9a:a1:04:e9:dd:05:b7:9f:67:a6:34:19:79:cb:
01:cd:14:8e:27:62:45:37:68:7e:fb:cd:71:1e:3f:a7:9e:a0:
c3:dc:e7:09:be:7b:97:d4:5d:4d:71:1b:61:b4:82:18:62:ab:
65:81:5c:a9:8d:fc:5f:be:41:ae:8b:7f:2e:b8:8d:86:31:0d:
a2:44:02:d4:4b:f1:42:91:73:d8:88:3b:e0:77:ff:ad:2d:fe:
b4:29:bb:2b:7f:ae:f3:a0:61:a2:6b:58:1a:22:dd:98:f1:51:
bf:b7:c2:fa:33:68:64:2d:7a:71:cd:89:37:99:27:eb:2c:e8:
39:91:ad:57:48:22:3f:58:13:49:72:13:eb:29:67:68:93:83:
b6:68:d2:2c:8d:c3:54:e1:3c:cb:12:31:c8:cc:08:3a:44:8a:
96:ee:cb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:30 2025 by rpki-client