Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/9a694b-c61b-41b2-93ce-4dc2f793c3cd/1/6QaM4XL27zKSfKxosZV7L1FL8yA.roa
File: 6QaM4XL27zKSfKxosZV7L1FL8yA.roa (raw, json)
Hash identifier: F1NM+2JSqWBfNYSdFp9xu/snh64oeqqWvsjLoCne/s4=
Subject key identifier: E9:06:8C:E1:72:F6:EF:32:92:7C:AC:68:B1:95:7B:2F:51:4B:F3:20
Certificate issuer: /CN=c32a16b207e3b6f6f72d3d0ad5fceba8ea103636
Certificate serial: 1999177B
Authority key identifier: C3:2A:16:B2:07:E3:B6:F6:F7:2D:3D:0A:D5:FC:EB:A8:EA:10:36:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wyoWsgfjtvb3LT0K1fzrqOoQNjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/9a694b-c61b-41b2-93ce-4dc2f793c3cd/1/6QaM4XL27zKSfKxosZV7L1FL8yA.roa
Signing time: Sat 01 Jan 2022 04:51:24 +0000
ROA not before: Sat 01 Jan 2022 04:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198290
IP address blocks: 193.169.158.0/23 maxlen: 23
185.44.56.0/22 maxlen: 22
2a01:7360::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429463419 (0x1999177b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c32a16b207e3b6f6f72d3d0ad5fceba8ea103636
Validity
Not Before: Jan 1 04:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9068ce172f6ef32927cac68b1957b2f514bf320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d3:66:1d:45:13:6a:01:52:77:16:6b:3a:c8:
29:08:32:c5:b8:88:6c:bc:6d:9e:9c:78:19:df:8f:
e8:19:51:a8:57:71:04:63:fb:d6:62:f2:a5:3c:9c:
dc:da:18:01:f3:d3:9f:68:41:da:3f:16:09:79:4b:
13:20:76:3e:07:50:b7:31:b7:c1:a7:dc:c6:a4:fb:
51:2d:11:dd:95:d0:ad:7e:67:ae:27:c6:35:2b:5f:
6e:93:7f:94:2f:40:48:fc:49:21:b7:2c:03:9e:c4:
9e:37:59:59:e8:57:c9:74:9f:0f:d6:7e:d9:1c:c2:
40:43:bc:e4:8a:f9:5a:41:bd:95:c7:0c:1a:2e:97:
ff:e4:e7:3f:c1:19:67:b1:e0:7a:a7:dc:ad:32:ac:
34:c8:c2:af:73:ac:7c:e7:b3:7b:a3:38:62:46:ba:
40:37:45:17:58:60:86:84:06:fe:b4:b0:6c:22:51:
f8:f2:65:98:6f:6a:10:66:5b:c6:1d:c2:16:fd:6c:
db:f8:3b:d6:ac:6d:fd:2c:00:1f:c1:d3:f5:17:38:
18:e2:0d:96:a4:3a:f0:b3:15:8d:8f:63:0e:2c:f6:
a6:09:39:35:d4:c5:26:70:79:25:e4:fd:18:92:f4:
03:6a:72:12:c5:96:23:0f:70:68:85:2b:28:0f:37:
c9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:06:8C:E1:72:F6:EF:32:92:7C:AC:68:B1:95:7B:2F:51:4B:F3:20
X509v3 Authority Key Identifier:
keyid:C3:2A:16:B2:07:E3:B6:F6:F7:2D:3D:0A:D5:FC:EB:A8:EA:10:36:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wyoWsgfjtvb3LT0K1fzrqOoQNjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/9a694b-c61b-41b2-93ce-4dc2f793c3cd/1/6QaM4XL27zKSfKxosZV7L1FL8yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/9a694b-c61b-41b2-93ce-4dc2f793c3cd/1/wyoWsgfjtvb3LT0K1fzrqOoQNjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.56.0/22
193.169.158.0/23
IPv6:
2a01:7360::/32
Signature Algorithm: sha256WithRSAEncryption
72:10:50:e8:9f:6c:04:31:91:a3:36:69:f7:2c:06:33:e9:a9:
e5:f7:11:0f:5f:d3:22:81:b3:53:38:2f:07:b7:f3:57:fd:29:
1a:38:f3:19:dc:af:64:7f:82:23:4b:22:22:56:78:b6:37:4d:
a2:64:be:8b:6a:8c:bf:a8:3b:5f:f4:89:9a:b2:e6:c0:bd:72:
c5:03:ff:54:d0:a9:ef:9e:14:5b:87:4d:03:27:a5:2c:2f:59:
27:91:b8:ba:24:73:cb:a1:81:ab:e7:2f:ee:d0:23:36:a5:cc:
85:ee:c0:d1:72:6b:79:a8:1b:5a:b3:6c:00:9f:42:6e:50:76:
68:90:97:bc:a7:87:31:b1:ee:f8:85:17:8c:8a:dc:e9:16:ab:
62:93:b0:97:5a:cc:46:60:3e:87:15:43:3d:f1:bc:c2:4d:f1:
83:61:d3:63:4a:fd:d3:36:e8:2e:31:f8:97:5f:79:db:7f:12:
d6:10:5a:1a:46:03:e2:17:3c:67:c5:84:da:af:75:5b:25:df:
03:f1:0b:cf:24:74:35:42:1c:8f:b7:a0:ff:14:0b:f6:7c:7d:
b7:1d:bc:5b:34:a4:50:4a:d0:4e:0a:84:70:ff:8f:29:de:4d:
c5:77:86:f2:ce:70:07:19:56:e6:10:2f:49:5b:71:0e:25:06:
98:3a:f5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:48 2024 by rpki-client on console-ams.rpki-client.org