Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ca13ca-f640-496c-922a-500abd93b9d4/1/6WjNfKKfFGXtVGdpI0y2dwFTm0Y.roa
File: 6WjNfKKfFGXtVGdpI0y2dwFTm0Y.roa (raw, json)
Hash identifier: 6s+yeIlGGs/343zWqCa+mmm0cdVLJsZiLZvcMSrtvhw=
Subject key identifier: E9:68:CD:7C:A2:9F:14:65:ED:54:67:69:23:4C:B6:77:01:53:9B:46
Certificate issuer: /CN=e2922520b67b1abf7c403afa2235534326272288
Certificate serial: 048356C9
Authority key identifier: E2:92:25:20:B6:7B:1A:BF:7C:40:3A:FA:22:35:53:43:26:27:22:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4pIlILZ7Gr98QDr6IjVTQyYnIog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ca13ca-f640-496c-922a-500abd93b9d4/1/6WjNfKKfFGXtVGdpI0y2dwFTm0Y.roa
Signing time: Sat 01 Jan 2022 13:56:30 +0000
ROA not before: Sat 01 Jan 2022 13:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205452
IP address blocks: 185.218.40.0/22 maxlen: 24
2a0b:d2c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75716297 (0x48356c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2922520b67b1abf7c403afa2235534326272288
Validity
Not Before: Jan 1 13:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e968cd7ca29f1465ed546769234cb67701539b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:01:b9:42:cc:6c:62:6c:c9:1d:a8:6a:23:b6:
e6:3f:df:b3:3c:11:b1:8a:b8:6b:7b:f3:37:92:ee:
17:2d:ba:4a:21:1a:69:cd:d2:25:21:66:23:99:97:
c1:d5:a5:ae:36:4f:d2:5a:ee:73:cf:05:a0:53:ee:
39:97:b1:c3:a9:95:e7:55:da:2b:49:48:af:92:4c:
bb:92:d8:58:7a:b4:50:4e:00:80:18:72:ad:96:7e:
7e:8a:ca:9d:9a:1e:98:55:12:17:63:66:fe:a2:96:
82:b8:96:fd:0f:75:37:f7:65:c0:4e:23:24:da:67:
08:29:3d:2f:8e:d9:63:48:5f:de:48:5f:29:a5:c1:
36:85:6d:7e:4f:7a:f6:4f:5f:c1:8e:c4:01:12:74:
06:2a:ff:98:86:10:cc:6e:06:63:9f:6d:8f:11:f0:
14:8e:45:62:bc:94:73:62:5e:c3:6e:ef:73:f0:c4:
b1:6c:78:36:c9:a4:5f:9d:4e:0f:d3:64:62:26:f5:
77:50:1c:3e:0b:2e:d3:c8:2e:47:b4:e8:0a:74:bb:
bc:75:42:76:74:5c:ba:c0:be:a9:6c:19:de:cb:0c:
14:46:e3:de:f9:4e:4f:54:3c:2a:92:c2:7d:bc:2d:
b8:b1:6a:ba:2a:64:fa:66:b9:e2:9a:26:8b:4d:c7:
a4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:68:CD:7C:A2:9F:14:65:ED:54:67:69:23:4C:B6:77:01:53:9B:46
X509v3 Authority Key Identifier:
keyid:E2:92:25:20:B6:7B:1A:BF:7C:40:3A:FA:22:35:53:43:26:27:22:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4pIlILZ7Gr98QDr6IjVTQyYnIog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ca13ca-f640-496c-922a-500abd93b9d4/1/6WjNfKKfFGXtVGdpI0y2dwFTm0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ca13ca-f640-496c-922a-500abd93b9d4/1/4pIlILZ7Gr98QDr6IjVTQyYnIog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.40.0/22
IPv6:
2a0b:d2c0::/29
Signature Algorithm: sha256WithRSAEncryption
91:7a:a2:4e:fb:a5:38:30:f2:6f:ee:85:cc:7e:2c:b9:c0:e3:
d0:56:1e:02:09:6c:a3:dd:74:13:e3:2d:d5:f4:7d:1c:1a:67:
b2:7b:92:b3:4f:86:01:0a:56:25:7e:89:70:ce:8b:7e:ed:63:
b5:07:74:a0:8a:75:af:ac:ba:85:17:ec:9b:96:bc:37:63:52:
94:79:af:ab:c2:fc:c5:ea:8f:67:6b:7f:ef:64:db:80:2f:4b:
1f:4d:09:ba:6b:39:00:f2:85:4a:ab:37:26:1f:b8:0d:59:5c:
c4:0a:d9:e8:46:5d:90:be:77:78:4c:6e:d6:ed:77:e5:f1:af:
de:f8:d6:5c:d7:52:d2:40:2d:0a:5e:fa:22:09:23:d1:15:4b:
53:7d:4b:6e:d4:62:e9:2d:2a:13:96:ea:1f:e5:a3:98:ae:5f:
47:ed:58:fe:20:80:24:ad:6e:06:36:11:fd:dd:0e:29:dd:a8:
be:03:bd:ad:13:4a:04:b5:28:3e:5d:17:d4:78:70:be:e8:d7:
be:0f:6a:b4:ff:3c:7f:54:06:c6:b1:7d:f9:f0:3c:05:92:75:
5a:72:b3:2e:fd:66:8a:43:39:17:00:a7:c3:fe:f0:62:ea:0d:
68:db:2e:f6:9e:84:59:e9:b1:55:5b:c0:14:28:d4:0d:45:4e:
bb:83:83:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-ams.rpki-client.org