Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0c258a-5203-43e6-9672-fd9c74906baa/1/6w0m7VIN3TmoGXTVZdPkO-Sjkks.roa
File: 6w0m7VIN3TmoGXTVZdPkO-Sjkks.roa (raw, json)
Hash identifier: QlQboH42uQbi2B3F+H79lUPqUErI5dwqNLmyGR/Ngjw=
Subject key identifier: EB:0D:26:ED:52:0D:DD:39:A8:19:74:D5:65:D3:E4:3B:E4:A3:92:4B
Certificate issuer: /CN=13d62220648d6eee42ac92c396bf2d1e81ae65f7
Certificate serial: 077CADE3
Authority key identifier: 13:D6:22:20:64:8D:6E:EE:42:AC:92:C3:96:BF:2D:1E:81:AE:65:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9YiIGSNbu5CrJLDlr8tHoGuZfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0c258a-5203-43e6-9672-fd9c74906baa/1/6w0m7VIN3TmoGXTVZdPkO-Sjkks.roa
Signing time: Sat 01 Jan 2022 12:00:40 +0000
ROA not before: Sat 01 Jan 2022 12:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31276
IP address blocks: 194.147.128.0/22 maxlen: 22
2a07:ea80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125611491 (0x77cade3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d62220648d6eee42ac92c396bf2d1e81ae65f7
Validity
Not Before: Jan 1 12:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb0d26ed520ddd39a81974d565d3e43be4a3924b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:39:54:39:89:6a:81:9f:ff:b8:b7:ee:12:07:
d7:5e:fc:42:a7:c7:53:d0:1d:96:7f:1f:55:d3:70:
8d:8a:f5:99:2c:43:cd:0d:98:86:f4:c1:70:be:ba:
e8:15:fd:65:47:df:27:d7:5a:d0:99:9e:5a:89:b2:
c5:86:d4:aa:60:fb:ab:9c:0d:b5:f7:b0:81:3e:bc:
0e:6e:fc:33:2e:ca:b4:c0:f2:1c:3a:ef:1d:d9:ef:
3c:4a:c1:ab:18:94:3f:65:7d:67:16:75:7e:bd:3a:
18:0c:69:d6:eb:81:93:43:3d:b5:62:ee:c2:67:df:
48:58:3b:61:98:03:a3:ee:be:63:48:dc:24:29:ad:
6a:dd:3e:0c:bf:cc:51:30:1c:c6:ec:07:0b:ac:ad:
c3:36:7a:82:fd:22:95:7f:16:a8:a5:b9:c1:d8:c2:
cd:3c:42:2c:59:67:02:c3:30:fb:e7:1e:8a:c0:1e:
1f:f2:4d:00:ad:96:be:b9:69:5a:f0:a5:61:5d:ff:
e4:1d:2e:81:e8:9a:da:9d:43:1c:d2:d7:0b:5d:68:
14:85:e9:0b:24:48:85:8e:d1:ca:2b:0a:82:44:b1:
80:7b:94:22:c8:8c:12:24:4a:8f:65:06:17:f4:e8:
e9:6b:65:38:c3:31:a0:4d:af:67:f5:f1:a9:39:0d:
47:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:0D:26:ED:52:0D:DD:39:A8:19:74:D5:65:D3:E4:3B:E4:A3:92:4B
X509v3 Authority Key Identifier:
keyid:13:D6:22:20:64:8D:6E:EE:42:AC:92:C3:96:BF:2D:1E:81:AE:65:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9YiIGSNbu5CrJLDlr8tHoGuZfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0c258a-5203-43e6-9672-fd9c74906baa/1/6w0m7VIN3TmoGXTVZdPkO-Sjkks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0c258a-5203-43e6-9672-fd9c74906baa/1/E9YiIGSNbu5CrJLDlr8tHoGuZfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.128.0/22
IPv6:
2a07:ea80::/29
Signature Algorithm: sha256WithRSAEncryption
69:41:97:e6:de:ba:ed:a2:10:1b:ab:26:d5:69:3b:cb:ef:48:
04:7b:0a:f1:d4:a1:cc:44:a0:99:3b:46:e8:f5:f4:34:29:5d:
2b:81:97:95:01:2a:0e:69:18:92:82:50:8c:d0:0b:58:8f:ec:
4e:d6:d8:6c:7a:82:52:98:db:85:15:b6:63:2d:c3:ad:03:9b:
99:e4:79:cd:1c:5e:42:e5:a3:19:25:1d:49:c3:56:2b:be:6f:
e0:2e:81:8f:3a:67:97:f3:63:80:03:7c:89:a1:78:e6:20:7c:
4c:31:9c:39:eb:79:b5:47:f8:b4:e2:43:33:a5:19:1c:84:3b:
9c:ad:66:1d:68:c2:ab:e8:4d:14:7a:2d:ca:84:26:aa:11:05:
e6:28:f3:2e:4c:4c:5d:71:4f:ec:99:f4:91:fb:a9:76:39:d6:
88:6a:60:c9:40:02:14:b5:93:f5:9e:be:12:78:54:75:b0:60:
4c:e6:82:38:15:6d:08:4c:db:8f:5f:5a:df:56:e5:09:0b:d7:
51:46:f7:ba:d2:f4:39:1c:15:48:34:e5:0f:59:a3:9a:99:01:
c7:5a:7d:66:58:9e:87:ca:e0:97:30:ff:a6:49:94:49:f0:0b:
0e:8a:3e:2b:79:11:29:3b:09:0b:98:05:a7:ec:d9:b9:f9:9e:
61:c9:bb:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:18 2024 by rpki-client on console-ams.rpki-client.org