Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/6hzplOEa_cy6N7XLWtUAn9FuKAk.roa
File: 6hzplOEa_cy6N7XLWtUAn9FuKAk.roa (raw, json)
Hash identifier: RNdLjgRBSNewNOrynlx/Y9yIkB4hmD6wRd6hYhMM6g8=
Subject key identifier: EA:1C:E9:94:E1:1A:FD:CC:BA:37:B5:CB:5A:D5:00:9F:D1:6E:28:09
Certificate issuer: /CN=1176b92497196085d6fbbd5f1c9929cf2b8230a8
Certificate serial: 1181680C
Authority key identifier: 11:76:B9:24:97:19:60:85:D6:FB:BD:5F:1C:99:29:CF:2B:82:30:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXa5JJcZYIXW-71fHJkpzyuCMKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/6hzplOEa_cy6N7XLWtUAn9FuKAk.roa
Signing time: Tue 26 Apr 2022 06:42:58 +0000
ROA not before: Tue 26 Apr 2022 06:42:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50819
IP address blocks: 194.1.169.0/24 maxlen: 24
91.234.168.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293693452 (0x1181680c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1176b92497196085d6fbbd5f1c9929cf2b8230a8
Validity
Not Before: Apr 26 06:42:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea1ce994e11afdccba37b5cb5ad5009fd16e2809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b5:28:4a:2e:cc:b3:2d:eb:da:b8:85:b6:1e:
24:0e:c8:00:fe:87:16:d4:8e:59:ad:16:a4:bc:b7:
4d:04:cc:09:d2:3e:20:6b:1a:fb:1b:fe:62:87:45:
d8:ce:10:b7:e9:07:d8:07:b3:50:9a:83:57:25:d3:
3c:bf:15:78:9c:df:2c:d8:5d:ca:1b:ad:d3:4e:6b:
a3:19:f2:ac:4e:10:bb:6a:a1:d2:fb:2c:a1:c0:5e:
06:3b:15:c2:e9:f5:28:5e:78:c2:a5:e6:0f:bc:cd:
e3:84:52:55:7f:66:50:96:9b:63:1f:eb:40:5e:7d:
98:fe:23:a2:61:9b:ec:01:72:40:6c:6f:99:a1:54:
62:11:c7:a0:fd:d4:fb:2d:1e:05:2c:2a:91:53:db:
4a:76:19:56:0c:67:71:37:f5:45:df:4b:47:28:3e:
4a:71:99:b8:c7:26:a0:bc:07:34:09:f4:57:43:68:
af:dd:02:2b:b5:f0:d4:a3:0a:01:d5:01:ae:c6:39:
a3:f1:fb:c5:f5:f2:f5:e2:3d:ef:ea:2c:ce:ef:fa:
e5:33:d3:4e:f3:78:bd:06:1d:d4:23:14:aa:ec:e9:
8a:1f:88:22:8e:f3:28:a3:f8:e2:1e:4c:15:90:3a:
2b:3b:59:75:ee:e8:9e:6b:76:b7:f6:7a:db:e3:aa:
eb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1C:E9:94:E1:1A:FD:CC:BA:37:B5:CB:5A:D5:00:9F:D1:6E:28:09
X509v3 Authority Key Identifier:
keyid:11:76:B9:24:97:19:60:85:D6:FB:BD:5F:1C:99:29:CF:2B:82:30:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXa5JJcZYIXW-71fHJkpzyuCMKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/6hzplOEa_cy6N7XLWtUAn9FuKAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/EXa5JJcZYIXW-71fHJkpzyuCMKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.168.0/23
194.1.169.0/24
Signature Algorithm: sha256WithRSAEncryption
59:61:90:de:66:fb:c8:46:c0:22:15:5a:12:ca:2a:df:00:64:
5b:af:84:4b:1b:96:2a:ab:41:e4:3a:62:ce:24:c6:94:57:ad:
c4:16:74:ff:03:ef:10:2a:f7:87:63:cb:e3:c0:22:f5:9b:02:
2f:c7:32:ad:df:73:ca:5b:65:00:bf:b6:82:68:e9:58:7e:87:
6b:a7:13:62:8a:41:5c:4a:d2:0f:fe:16:00:d7:df:e4:80:d5:
08:d3:ef:fd:f6:84:e2:b1:0d:ad:15:84:13:17:94:7a:11:2c:
7c:57:b7:93:76:a2:2a:86:66:bc:9c:f0:c7:a2:1d:02:24:6b:
71:64:93:88:3a:a7:de:fc:d1:04:31:e6:80:48:22:d2:e0:4a:
b2:30:aa:6a:12:fe:c0:06:f9:be:3d:b7:e9:28:a4:b0:4e:70:
91:db:4b:c1:52:07:22:6b:b3:3e:f5:53:f3:b6:ff:27:af:0d:
23:56:d9:5c:65:85:49:0d:fa:fb:ef:ec:7c:9c:a2:fb:9a:5d:
dd:5b:b7:10:32:c9:e7:49:c9:d4:a2:4e:15:67:3a:61:9e:de:
ec:6b:4a:b0:ec:6c:ba:a9:4b:0c:b9:d1:65:65:a9:e4:78:7b:
de:03:09:0b:e1:1f:c3:69:72:0e:8d:4a:8a:36:33:f2:86:ac:
08:22:4d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:46 2023 by rpki-client on console-fra.rpki-client.org