Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/6k4zHat0cm7uVj8efAQ9M_UIaUw.roa
File: 6k4zHat0cm7uVj8efAQ9M_UIaUw.roa (raw, json)
Hash identifier: fDfHOJ+Kpk7coYLUgqFx4mBh8iM0bmTtec7CWiMvAkk=
Subject key identifier: EA:4E:33:1D:AB:74:72:6E:EE:56:3F:1E:7C:04:3D:33:F5:08:69:4C
Certificate issuer: /CN=021b3ea35edfdd138c15506d74a76022dd37694b
Certificate serial: 0182013D97A28D0DAEDC3EFAA5025A75860E
Authority key identifier: 02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/6k4zHat0cm7uVj8efAQ9M_UIaUw.roa
Signing time: Fri 15 Jul 2022 09:43:09 +0000
ROA not before: Fri 15 Jul 2022 09:43:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 193.197.70.0/24 maxlen: 24
193.197.68.0/23 maxlen: 23
193.197.85.0/24 maxlen: 24
193.197.80.0/22 maxlen: 22
193.197.86.0/23 maxlen: 23
193.197.94.0/24 maxlen: 24
193.197.112.0/22 maxlen: 22
193.197.20.0/23 maxlen: 23
193.197.28.0/22 maxlen: 22
193.197.32.0/19 maxlen: 19
193.197.64.0/22 maxlen: 22
193.197.180.0/22 maxlen: 22
193.197.200.0/21 maxlen: 21
193.197.212.0/24 maxlen: 24
193.197.224.0/19 maxlen: 19
193.197.120.0/21 maxlen: 21
193.197.132.0/22 maxlen: 22
193.197.130.0/24 maxlen: 24
193.197.136.0/21 maxlen: 21
193.197.152.0/22 maxlen: 22
193.197.149.0/24 maxlen: 24
193.197.157.0/24 maxlen: 24
193.197.160.0/22 maxlen: 22
193.197.160.0/23 maxlen: 23
193.197.168.0/21 maxlen: 21
193.196.130.0/23 maxlen: 23
193.196.132.0/22 maxlen: 22
193.196.129.0/24 maxlen: 24
193.196.136.0/21 maxlen: 21
193.196.144.0/21 maxlen: 21
193.196.152.0/24 maxlen: 24
193.196.154.0/23 maxlen: 23
193.196.156.0/22 maxlen: 22
193.196.64.0/18 maxlen: 18
129.143.0.0/16 maxlen: 16
193.197.4.0/23 maxlen: 23
193.197.0.0/24 maxlen: 24
193.197.8.0/22 maxlen: 22
193.196.165.0/24 maxlen: 24
193.196.160.0/22 maxlen: 22
193.196.166.0/23 maxlen: 23
193.196.168.0/21 maxlen: 21
193.196.176.0/20 maxlen: 20
193.196.192.0/18 maxlen: 18
192.67.189.0/24 maxlen: 24
193.196.0.0/21 maxlen: 21
193.196.9.0/24 maxlen: 24
193.196.16.0/20 maxlen: 20
193.196.13.0/24 maxlen: 24
193.196.0.0/15 maxlen: 15
192.67.208.0/24 maxlen: 24
2001:7c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:3d:97:a2:8d:0d:ae:dc:3e:fa:a5:02:5a:75:86:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=021b3ea35edfdd138c15506d74a76022dd37694b
Validity
Not Before: Jul 15 09:43:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea4e331dab74726eee563f1e7c043d33f508694c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:63:43:a8:3e:f6:c4:77:d5:6d:ca:69:19:
91:d7:b0:59:56:43:c5:55:b9:0e:08:03:d4:c6:c8:
70:c5:5f:f6:04:57:30:2e:34:08:79:d8:25:e7:3c:
ac:f8:b2:0a:f0:ed:6b:97:5f:6b:d8:de:32:8f:58:
55:76:56:f4:70:38:b4:ec:53:f0:34:58:ce:a5:78:
9d:3e:9b:00:53:0a:85:4a:5a:93:eb:46:1d:00:2f:
7f:ee:78:0c:54:5d:01:fe:14:9b:68:f0:1c:90:c2:
3d:48:5d:0a:d1:f3:5a:7f:4c:75:81:66:de:c6:28:
43:ea:d7:fe:68:f7:55:cc:d7:18:7b:0a:eb:25:df:
27:90:3f:f8:38:71:0a:2d:eb:92:ce:ad:b0:28:ed:
ab:97:5d:39:a7:c1:85:a9:c9:c3:49:1a:3f:79:3f:
75:94:1e:69:7b:71:60:11:01:81:e7:61:ad:b5:23:
c3:ab:58:a8:60:68:e4:4e:fe:6e:55:b2:6b:da:ff:
b1:7c:3c:54:f3:a5:58:6e:1b:1a:0b:94:df:93:b4:
f1:75:9c:d1:3c:69:70:44:df:02:01:e9:38:04:9a:
47:62:66:70:e0:8a:84:2a:c8:81:5e:d7:58:36:31:
c1:f6:b2:d7:17:0b:0f:42:c3:87:ce:18:a2:90:ee:
cf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:4E:33:1D:AB:74:72:6E:EE:56:3F:1E:7C:04:3D:33:F5:08:69:4C
X509v3 Authority Key Identifier:
keyid:02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/6k4zHat0cm7uVj8efAQ9M_UIaUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.143.0.0/16
192.67.189.0/24
192.67.208.0/24
193.196.0.0/15
IPv6:
2001:7c0::/29
Signature Algorithm: sha256WithRSAEncryption
ab:57:b3:1d:43:3c:79:72:a4:14:b6:8c:68:c2:2a:2b:42:68:
c5:74:63:c8:40:45:ac:69:d0:bf:14:31:73:45:a2:d8:02:cc:
42:47:c8:f6:c0:83:ba:e9:93:3c:f4:a5:7a:d3:3e:43:d6:1c:
2e:09:b3:67:3f:e5:fd:f0:a4:84:c8:c8:24:04:76:bb:4c:41:
14:e0:b3:9b:fc:af:29:dc:bf:9c:00:b5:c9:a4:35:c1:de:9e:
60:3a:67:f5:6f:5a:10:d4:bd:19:4d:32:9e:e4:02:55:fa:2c:
d4:c3:5d:e3:c0:67:87:02:0b:ba:94:1b:0b:01:2d:b8:e5:85:
f9:7b:43:2c:03:4b:08:e2:4d:96:9a:8a:3c:47:32:71:62:7e:
80:4d:22:09:5a:0e:99:35:19:18:50:f6:f3:65:8c:4e:5a:da:
ad:8f:59:57:7b:af:a7:9f:8c:e3:cd:58:49:2e:0b:56:a6:b3:
72:22:09:2d:27:bd:f6:5b:46:d1:24:9d:98:38:2e:7a:cf:ca:
80:22:7f:2e:39:e1:38:c2:ee:45:52:8c:bc:60:5e:a6:85:2d:
94:f9:c6:8c:4d:68:42:86:77:08:ae:de:40:1e:03:f5:ce:e7:
c1:90:29:82:64:36:b1:3c:ec:a5:a4:10:3f:35:79:b8:45:6f:
d5:10:f0:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org