Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/b6evGPmdlVdk8RBrmcoVADhU9DU.roa
File: b6evGPmdlVdk8RBrmcoVADhU9DU.roa (raw, json)
Hash identifier: aUIjWb7T+AlcZTn+TJ1lR3mfwmezzdH7YpwslWbbv+M=
Subject key identifier: 6F:A7:AF:18:F9:9D:95:57:64:F1:10:6B:99:CA:15:00:38:54:F4:35
Certificate issuer: /CN=705a3bb117538db6db9c5cfd5a794bf3df697c27
Certificate serial: 0D0FD970
Authority key identifier: 70:5A:3B:B1:17:53:8D:B6:DB:9C:5C:FD:5A:79:4B:F3:DF:69:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFo7sRdTjbbbnFz9WnlL899pfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/b6evGPmdlVdk8RBrmcoVADhU9DU.roa
Signing time: Sat 01 Jan 2022 02:52:44 +0000
ROA not before: Sat 01 Jan 2022 02:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42207
IP address blocks: 185.206.184.0/22 maxlen: 22
2a0b:15c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219142512 (0xd0fd970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705a3bb117538db6db9c5cfd5a794bf3df697c27
Validity
Not Before: Jan 1 02:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fa7af18f99d955764f1106b99ca15003854f435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:81:2a:56:29:5e:78:10:fa:3f:72:4b:e8:8b:
cc:21:27:cd:77:f9:e1:1c:5d:eb:da:83:89:b9:eb:
76:ec:d7:b8:32:c1:42:6d:27:8b:d5:e4:ad:2a:63:
15:2d:58:33:3d:8e:60:00:12:43:47:a0:41:97:4e:
db:f4:6d:ab:18:c7:0a:aa:03:d1:43:94:4d:da:0a:
74:34:5d:a5:87:d3:e0:32:a7:e1:ab:3f:77:7e:b2:
26:8a:f9:b4:18:e5:ec:e7:7b:c6:23:d7:99:3b:49:
29:c9:ad:f1:29:3d:04:76:03:6c:e8:9a:41:7c:1e:
71:10:26:75:11:9e:d5:3d:0d:5a:54:cd:99:e3:73:
50:a5:81:b7:49:7c:89:d9:29:b2:6f:fa:36:dd:e8:
84:fc:34:52:7c:2b:9d:37:1a:cb:31:36:a3:fa:e2:
39:47:e4:fd:bf:77:c3:0d:db:9e:52:31:1b:09:15:
5d:fa:cd:df:8b:5c:e2:6f:66:67:ea:0a:2c:ef:c7:
3b:af:46:f4:7e:e7:65:2b:0f:92:a4:ef:7b:76:81:
13:91:f9:f3:26:17:39:3e:87:be:41:c1:01:ac:5e:
db:28:93:49:8b:f0:f8:70:56:d1:9e:89:d6:72:64:
a8:5a:a9:17:ba:93:8c:3b:16:59:0d:0d:88:52:1f:
66:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A7:AF:18:F9:9D:95:57:64:F1:10:6B:99:CA:15:00:38:54:F4:35
X509v3 Authority Key Identifier:
keyid:70:5A:3B:B1:17:53:8D:B6:DB:9C:5C:FD:5A:79:4B:F3:DF:69:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFo7sRdTjbbbnFz9WnlL899pfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/b6evGPmdlVdk8RBrmcoVADhU9DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/cFo7sRdTjbbbnFz9WnlL899pfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.184.0/22
IPv6:
2a0b:15c0::/29
Signature Algorithm: sha256WithRSAEncryption
8a:d8:80:6f:b5:ac:5f:4e:10:e1:50:c1:02:c1:aa:1b:49:67:
36:31:6e:ab:17:f6:af:61:16:90:07:08:4e:0e:cd:45:b0:10:
6e:17:0b:4f:8d:5d:06:48:78:9a:e3:d2:76:09:2b:d1:95:b7:
99:cf:a1:62:b1:26:1e:6c:99:aa:d0:b6:02:23:55:78:24:e7:
de:37:ce:22:fc:75:29:6d:ce:57:fe:78:7f:ab:f5:36:89:c8:
d5:0e:c9:5f:fb:95:2a:dc:1e:cf:0b:b9:75:94:2a:29:c8:06:
96:9a:84:d8:fe:78:1d:0c:ee:26:37:e4:5c:4f:0c:58:a8:cd:
2a:46:71:69:03:fd:07:60:2a:7c:e7:29:43:3e:6a:df:5f:8f:
8e:69:a9:09:da:41:5f:a1:cf:9e:c3:e6:46:e6:74:40:95:4c:
e3:89:be:79:ba:fe:b1:e6:4c:ed:f0:40:93:43:48:d3:9b:c0:
0f:c9:b5:ed:44:9b:66:02:df:33:4c:be:a0:e0:58:29:10:59:
84:ab:0f:b6:df:11:92:08:eb:e2:f1:fc:14:e2:3f:18:c1:76:
65:98:2f:58:0f:fa:9f:88:16:4a:29:7e:b7:62:e7:40:42:c2:
45:4b:2d:dd:f7:8d:56:2b:bf:b1:c1:78:05:aa:85:a3:54:e3:
80:83:8f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:43 2023 by rpki-client on console-ams.rpki-client.org