Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/6v-WR41cRri2mC8_51j5CXZyPtM.roa
File: 6v-WR41cRri2mC8_51j5CXZyPtM.roa (raw, json)
Hash identifier: VRdGKUSLRZ7vHqamE99zoVvG+GaN5Ht7eJbcnr6AEvY=
Subject key identifier: EA:FF:96:47:8D:5C:46:B8:B6:98:2F:3F:E7:58:F9:09:76:72:3E:D3
Certificate issuer: /CN=a9ec57bc8464fec2e9a1b098ffce34c21aaf9ca6
Certificate serial: 08557FC2
Authority key identifier: A9:EC:57:BC:84:64:FE:C2:E9:A1:B0:98:FF:CE:34:C2:1A:AF:9C:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qexXvIRk_sLpobCY_840whqvnKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/6v-WR41cRri2mC8_51j5CXZyPtM.roa
Signing time: Sat 01 Jan 2022 07:03:03 +0000
ROA not before: Sat 01 Jan 2022 07:03:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208943
IP address blocks: 213.108.131.0/24 maxlen: 24
185.229.110.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139820994 (0x8557fc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9ec57bc8464fec2e9a1b098ffce34c21aaf9ca6
Validity
Not Before: Jan 1 07:03:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaff96478d5c46b8b6982f3fe758f90976723ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:fa:2b:dd:b9:7a:fd:28:af:24:7d:8a:e0:99:
5a:3b:3c:b0:18:57:c9:28:39:6e:7d:88:7d:c5:a7:
67:f1:53:ee:7e:8e:8f:3b:0f:a5:74:f6:28:52:de:
a8:fe:79:c2:68:24:16:6d:4b:79:db:53:3b:4f:25:
76:0e:f8:cb:3c:e8:43:80:9e:ea:3c:3b:00:6b:28:
50:09:19:b3:00:7e:31:2e:49:5f:d1:7c:7f:3c:c0:
75:36:90:7c:1f:0b:b5:8f:64:d7:82:3b:68:83:63:
90:6c:73:27:45:75:4a:28:e7:ba:2a:b5:26:be:72:
32:ef:3a:a5:21:ae:ae:54:17:ec:c9:f6:3e:47:8b:
e8:55:45:75:27:08:af:ad:7a:5b:2e:70:3d:73:1a:
76:ea:17:d1:ea:51:7c:e7:05:22:66:d4:d2:ac:3e:
f2:7a:cc:c7:c4:4f:09:4b:a9:0c:56:de:ad:4b:17:
aa:4d:a8:e9:dc:55:22:c3:09:d8:84:4e:ca:0c:c8:
56:1f:5a:cd:47:5e:0e:9f:10:b5:36:ec:78:9f:02:
b9:c2:2e:b2:68:b5:45:cf:b1:35:f4:cd:20:96:20:
34:53:9a:43:4f:ac:a4:1d:1b:d2:cc:f6:53:91:9d:
11:81:16:77:d5:4d:28:8f:14:67:ea:fe:7e:a4:52:
cc:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:FF:96:47:8D:5C:46:B8:B6:98:2F:3F:E7:58:F9:09:76:72:3E:D3
X509v3 Authority Key Identifier:
keyid:A9:EC:57:BC:84:64:FE:C2:E9:A1:B0:98:FF:CE:34:C2:1A:AF:9C:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qexXvIRk_sLpobCY_840whqvnKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/6v-WR41cRri2mC8_51j5CXZyPtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/41b40c-f3b6-40b8-840c-19a3c5649b57/1/qexXvIRk_sLpobCY_840whqvnKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.110.0/24
213.108.131.0/24
Signature Algorithm: sha256WithRSAEncryption
48:6b:3b:05:72:96:ba:2c:16:76:c7:f1:5e:ec:ef:86:bc:cb:
0d:2b:5b:82:d2:49:da:f0:f0:23:f0:82:55:7f:d1:bc:61:5b:
8f:ff:62:19:ce:52:13:24:d4:b1:af:18:8e:41:7f:f2:ad:8e:
28:f7:e8:dd:bc:cd:47:a1:90:a1:91:5b:e6:2b:c9:a9:7e:52:
89:48:81:32:9c:ba:af:8d:53:1e:f9:cb:89:b2:5a:97:10:f1:
6e:98:40:a1:11:cd:0e:0b:69:30:1b:b9:f3:83:2b:e6:0d:a4:
ba:a5:1f:06:15:79:98:92:db:5d:6c:e1:5d:4a:47:66:96:b4:
ed:e5:25:14:e4:38:66:3a:f3:1b:17:74:8a:be:35:1e:75:83:
f0:8c:96:19:07:dc:0d:1f:ee:15:d7:07:ab:33:64:a2:d1:38:
05:d4:b1:76:f4:04:03:d2:43:e5:24:29:2f:b1:45:ac:53:f9:
8a:d4:13:28:4f:27:03:3d:13:61:77:03:3e:90:1c:60:ee:b6:
93:11:bc:d6:63:14:3b:c2:2f:5a:d3:6b:04:03:b2:7c:90:db:
5d:3a:9a:bd:02:0e:1f:46:e2:71:10:3e:64:b9:09:31:e7:3f:
61:be:e1:2d:51:c1:22:01:ec:9b:70:2c:4a:6d:df:05:31:61:
85:c4:24:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:48 2024 by rpki-client on console-fra.rpki-client.org