Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/6Q6i0q67IsDAhxj0du7JhmYgZXw.roa
File: 6Q6i0q67IsDAhxj0du7JhmYgZXw.roa (raw, json)
Hash identifier: /4sMYj7toDLrDzT5x5vYodxuHpgawaRkndIAb8dO5ws=
Subject key identifier: E9:0E:A2:D2:AE:BB:22:C0:C0:87:18:F4:76:EE:C9:86:66:20:65:7C
Certificate issuer: /CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Certificate serial: 15F0EAC1
Authority key identifier: C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/6Q6i0q67IsDAhxj0du7JhmYgZXw.roa
Signing time: Sat 01 Jan 2022 06:59:23 +0000
ROA not before: Sat 01 Jan 2022 06:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45566
IP address blocks: 185.25.28.0/23 maxlen: 23
89.207.228.0/24 maxlen: 24
89.207.231.0/24 maxlen: 24
2a00:79e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368110273 (0x15f0eac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0747fbe26c9cdd7628adfedb57b78be8de75e29
Validity
Not Before: Jan 1 06:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e90ea2d2aebb22c0c08718f476eec9866620657c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4b:7a:0d:cc:de:4e:2e:eb:27:a3:0e:b8:86:
a6:01:bb:98:60:f2:87:bd:3e:b4:35:1b:46:93:d3:
9a:22:f5:37:55:38:37:6a:4f:df:ce:30:f6:ca:88:
03:de:d5:7b:98:0c:0d:bc:24:0f:89:e7:67:fa:04:
61:54:8a:81:f2:98:f3:9d:dd:b2:8f:46:9c:10:6b:
26:90:66:0f:f9:cb:a8:e4:c4:f8:1f:41:f9:ea:36:
c6:91:2c:18:dd:85:f0:f2:8c:00:e1:ad:d0:fa:6d:
54:1f:62:57:51:ee:c8:7c:ca:3f:f9:db:ba:1d:b6:
07:3f:09:5a:09:2b:cb:45:d2:60:2e:45:ca:f0:34:
63:23:eb:b0:9c:6f:c4:99:77:75:ac:7a:a5:0b:b8:
5c:95:db:20:5f:f1:e8:ca:0e:dd:0f:bd:8c:e9:b0:
38:e4:d7:da:61:b1:1a:10:92:fd:67:9e:7a:75:b6:
f5:92:ac:15:85:44:9c:6a:ee:48:f0:a3:e3:4c:5f:
cf:80:45:64:d6:c0:af:0e:87:6a:01:ff:88:5b:61:
29:fd:3d:e7:e1:65:22:d0:cc:b3:22:5b:60:ea:b7:
3f:27:6c:46:93:68:a4:32:76:3b:ff:c2:f4:d9:66:
3a:54:c9:22:cd:ce:bf:4a:b4:1a:45:cc:ec:72:85:
00:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0E:A2:D2:AE:BB:22:C0:C0:87:18:F4:76:EE:C9:86:66:20:65:7C
X509v3 Authority Key Identifier:
keyid:C0:74:7F:BE:26:C9:CD:D7:62:8A:DF:ED:B5:7B:78:BE:8D:E7:5E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHR_vibJzddiit_ttXt4vo3nXik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/6Q6i0q67IsDAhxj0du7JhmYgZXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2406ab-3bcb-41bc-a942-368608385883/1/wHR_vibJzddiit_ttXt4vo3nXik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.228.0/24
89.207.231.0/24
185.25.28.0/23
IPv6:
2a00:79e0::/32
Signature Algorithm: sha256WithRSAEncryption
6e:4e:31:ca:87:1d:8c:d2:5b:52:cd:61:81:f5:20:f7:8a:da:
27:f7:5b:bb:5f:af:f3:f1:dc:88:35:51:6f:9f:b6:a7:e2:18:
4b:5a:e8:f4:f7:8f:d9:c5:f5:cf:58:d8:d7:64:ab:62:1c:12:
9c:1c:d9:dd:c1:fa:9a:d2:00:e1:40:27:1e:88:3e:c3:ff:ea:
98:f2:6c:4a:0f:7d:cb:d1:47:78:31:fe:62:cc:14:c0:e8:4b:
59:bc:95:40:fb:65:f7:dc:89:54:6c:78:f2:c1:2d:1a:13:e1:
0b:9e:cf:3f:65:6d:ca:3a:2c:77:81:21:fe:16:58:e5:b9:00:
46:80:ab:c8:06:b9:47:d2:78:c7:6c:7e:66:60:a4:2c:68:b2:
02:5b:7b:0a:68:20:e7:1b:0e:dc:66:2e:b1:92:29:cc:7c:80:
9c:f8:66:40:7c:92:ff:d0:4a:ea:6d:00:d5:53:d3:18:20:5b:
db:df:f4:9e:e5:14:b4:9b:45:f1:ed:4e:46:d0:9a:2e:92:cc:
06:82:c9:99:ff:ff:31:00:33:e4:51:1f:7c:20:9f:6d:1a:48:
ff:d3:6a:52:8f:c6:0e:4a:f9:6e:26:a8:96:79:d9:1a:c7:c1:
2e:2c:b3:6a:49:e9:d7:9e:dc:47:84:7a:12:1d:86:7f:6b:9a:
33:8a:9f:ee
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:55 2024 by rpki-client on console-fra.rpki-client.org