Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/71fd10-4f26-449a-b361-f98ec9d162be/1/6q40F6M2tMs0jes0nbBqBLKHAAw.roa
File: 6q40F6M2tMs0jes0nbBqBLKHAAw.roa (raw, json)
Hash identifier: 7NDSXsjTnD10zIXvUnbD3bk64G3fTZr8iux7Vnb7ZmM=
Subject key identifier: EA:AE:34:17:A3:36:B4:CB:34:8D:EB:34:9D:B0:6A:04:B2:87:00:0C
Certificate issuer: /CN=ca1def8400365e1cac16e8f7887092dac983b73e
Certificate serial: 029A7A37
Authority key identifier: CA:1D:EF:84:00:36:5E:1C:AC:16:E8:F7:88:70:92:DA:C9:83:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yh3vhAA2XhysFuj3iHCS2smDtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/71fd10-4f26-449a-b361-f98ec9d162be/1/6q40F6M2tMs0jes0nbBqBLKHAAw.roa
Signing time: Sat 01 Jan 2022 00:53:56 +0000
ROA not before: Sat 01 Jan 2022 00:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43109
IP address blocks: 193.243.156.0/23 maxlen: 23
91.196.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43678263 (0x29a7a37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca1def8400365e1cac16e8f7887092dac983b73e
Validity
Not Before: Jan 1 00:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaae3417a336b4cb348deb349db06a04b287000c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:3c:8c:68:86:25:86:15:16:71:ef:fa:4f:
89:71:f8:cb:eb:b6:98:66:fb:f8:6e:31:28:31:d6:
31:43:b5:bf:7d:18:a0:a3:3c:cd:fa:72:70:52:bd:
22:c7:05:7b:dc:90:38:2d:b1:63:1a:f8:1a:36:3b:
1c:ab:ed:95:92:7d:21:98:b1:f7:e5:6d:8f:6e:94:
e4:2f:5c:ff:65:28:8d:5c:59:f5:8e:5a:ee:e8:41:
82:dc:09:f9:8e:99:a8:23:da:72:51:9b:8d:ef:91:
7d:d2:19:01:a8:7c:fd:6b:c7:51:c8:b5:29:7d:63:
bf:29:96:b6:29:3c:cd:52:ec:a2:b4:0e:ec:a9:9a:
ce:49:5a:8e:28:af:82:1a:23:2b:1d:d6:1b:37:6e:
51:62:bc:66:d8:0f:c2:12:01:ff:6b:d4:3c:03:e9:
27:21:ac:25:5b:71:ac:34:8a:36:c2:1b:16:ab:c3:
71:4a:4c:2a:39:01:69:cd:0c:9f:46:e8:1c:57:be:
8f:70:f3:5c:a5:72:66:b2:ae:e0:32:7d:e3:7f:58:
40:c7:99:bb:e6:c1:27:9c:55:61:c4:66:2d:c5:ab:
f7:9e:dc:96:ca:82:78:9a:61:0a:3f:d7:c1:0b:c1:
29:9d:b8:db:d0:57:be:63:c9:1f:cb:23:c7:a3:d7:
4a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:AE:34:17:A3:36:B4:CB:34:8D:EB:34:9D:B0:6A:04:B2:87:00:0C
X509v3 Authority Key Identifier:
keyid:CA:1D:EF:84:00:36:5E:1C:AC:16:E8:F7:88:70:92:DA:C9:83:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yh3vhAA2XhysFuj3iHCS2smDtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/71fd10-4f26-449a-b361-f98ec9d162be/1/6q40F6M2tMs0jes0nbBqBLKHAAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/71fd10-4f26-449a-b361-f98ec9d162be/1/yh3vhAA2XhysFuj3iHCS2smDtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.96.0/22
193.243.156.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:4b:6e:a1:14:58:c8:74:80:b3:d3:2e:46:c6:79:01:e9:35:
e1:10:98:af:e4:ae:a8:a8:60:14:78:e1:10:03:3b:ef:64:70:
ca:64:45:77:04:6f:7a:c8:0b:bd:8b:3d:37:f3:d7:c7:16:95:
6d:10:9b:50:f7:3b:d0:dd:f7:9d:eb:e6:09:58:e6:1f:e0:95:
42:ed:a1:bb:7c:cf:9f:db:f4:68:93:2d:b8:33:1a:d0:73:d9:
cd:cf:55:d1:8c:fe:3b:66:d8:83:c3:81:02:34:e2:1e:3f:7d:
e5:f3:77:bd:b0:43:7d:8b:84:65:ba:13:a4:eb:82:fe:52:f1:
de:4c:fc:5b:7a:99:9b:20:7e:de:da:2b:3e:11:9e:36:dc:26:
0a:37:17:82:b7:20:4c:c9:fb:c4:ad:35:07:b0:89:f9:f5:13:
d3:9b:1c:71:6f:bb:02:b0:cc:c5:5a:b9:23:9f:4a:d6:24:1a:
4a:e9:72:ac:45:14:27:00:4f:bf:f3:2a:20:13:aa:60:82:cf:
be:1b:f4:f2:c1:cf:17:de:98:61:cf:95:57:5b:73:c1:43:21:
81:e3:43:8c:04:78:91:65:8b:4f:0b:03:44:94:36:0e:3c:0f:
57:fa:45:92:06:35:b5:61:89:fc:53:e6:af:1f:59:e7:94:99:
fd:12:46:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:45 2024 by rpki-client on console-ams.rpki-client.org