Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/6_-bxTKoHLB9oQnyMyPPQTnvwRA.roa
File: 6_-bxTKoHLB9oQnyMyPPQTnvwRA.roa (raw, json)
Hash identifier: /MCVNpD9efE4aByfBzkVJLzKxLSp0RQj/zfgUVZ3wI0=
Subject key identifier: EB:FF:9B:C5:32:A8:1C:B0:7D:A1:09:F2:33:23:CF:41:39:EF:C1:10
Certificate issuer: /CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Certificate serial: 0185580502BEB11CFD219FF4696C5DD1955D
Authority key identifier: 4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/6_-bxTKoHLB9oQnyMyPPQTnvwRA.roa
Signing time: Wed 28 Dec 2022 09:16:41 +0000
ROA not before: Wed 28 Dec 2022 09:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57391
IP address blocks: 94.139.176.0/20 maxlen: 20
94.139.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:05:02:be:b1:1c:fd:21:9f:f4:69:6c:5d:d1:95:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Validity
Not Before: Dec 28 09:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebff9bc532a81cb07da109f23323cf4139efc110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a3:90:06:7c:a7:12:19:0d:75:3e:cd:7a:3d:
14:62:f5:b8:ed:ca:46:16:a1:d9:36:c1:e9:57:4a:
35:e4:71:06:98:d6:7c:01:92:78:fd:d4:f1:be:16:
7d:5f:cc:64:7d:f1:83:c2:c4:10:e6:9b:22:c0:5b:
d0:2d:bf:84:b4:7d:1b:ee:4d:19:bc:d9:4d:ca:4c:
cc:05:63:37:60:b6:80:33:ef:05:0e:e9:1c:94:bc:
ef:98:84:66:3b:a2:06:9a:c0:42:32:10:6b:a7:5a:
d6:ac:57:18:45:29:a8:17:f8:b4:85:1c:d4:9f:46:
0a:e5:dd:84:63:28:f2:47:28:00:8e:49:9e:8a:ca:
90:e2:85:30:78:78:ec:72:7a:5e:f5:9c:7d:c2:b6:
76:8d:7a:49:e2:97:9c:6c:9b:ec:87:91:fb:4d:d3:
16:59:5b:0f:ef:6f:a9:06:cc:5b:25:bb:5e:81:0d:
c3:7f:24:0d:b9:ab:d3:2b:5d:cc:80:4c:b6:2b:95:
53:8a:7c:31:37:5e:34:2a:80:1e:d8:9a:a6:27:99:
f1:e1:33:6e:3f:6a:79:b9:aa:57:08:2f:1a:63:8e:
b5:1e:b0:d1:ca:d3:98:f9:55:b8:de:00:7d:22:3e:
9d:30:da:07:01:d6:72:e3:df:b8:ef:ce:86:7c:dc:
f5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FF:9B:C5:32:A8:1C:B0:7D:A1:09:F2:33:23:CF:41:39:EF:C1:10
X509v3 Authority Key Identifier:
keyid:4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/6_-bxTKoHLB9oQnyMyPPQTnvwRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/TddPu7rljdCHbZnoDsgqEaRHf34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.139.176.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:3b:9e:74:30:0a:8e:d0:f0:1f:95:73:7e:6e:b4:47:1e:09:
cf:83:5d:c2:d9:fa:26:77:37:3d:b0:f1:99:78:c4:eb:fc:3b:
15:df:4d:77:80:d9:0e:8c:cf:3e:68:a1:6a:ae:11:0f:ff:39:
52:b5:db:03:22:00:92:d5:0e:fc:2e:ed:a9:83:6f:19:42:58:
7d:4c:6d:a5:85:a9:a3:af:e8:b3:8f:ee:19:83:66:7d:c3:87:
84:31:8d:6f:e7:97:ad:73:f2:81:fe:76:eb:b0:09:7e:13:db:
c2:bd:f6:d7:8e:2d:b8:14:78:0a:6d:22:8f:1d:8a:7f:10:c5:
dd:f9:a8:17:a5:51:30:6f:5d:60:f4:df:2e:75:33:2d:ad:a4:
64:85:48:a2:e7:2b:df:7b:33:89:02:19:2b:f5:8d:22:af:90:
2a:8d:00:c7:28:a8:13:92:dd:18:9a:1a:86:a9:c7:ea:67:2a:
f9:6f:85:41:8d:5e:f6:af:0a:33:76:77:14:63:64:4f:79:3b:
34:f3:53:a3:7c:34:bf:73:39:a8:94:f7:81:8c:4c:c4:0f:b9:
75:50:ff:c9:4e:64:76:e3:3c:03:ba:a3:5c:fa:78:39:57:94:
b0:6e:11:15:e8:55:cb:8a:da:4e:1d:80:74:09:96:9c:28:0e:
8e:03:4e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:21 2024 by rpki-client on console-fra.rpki-client.org