Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/ah6i3lW92aX9IIzJZCvsMyx-Hn4.roa
File: ah6i3lW92aX9IIzJZCvsMyx-Hn4.roa (raw, json)
Hash identifier: hyyVAJy9uD4F2Qut68ty/NI7h6UB+L4FGF3b6z1V8NI=
Subject key identifier: 6A:1E:A2:DE:55:BD:D9:A5:FD:20:8C:C9:64:2B:EC:33:2C:7E:1E:7E
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 06FA6E68
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/ah6i3lW92aX9IIzJZCvsMyx-Hn4.roa
Signing time: Tue 03 May 2022 15:13:38 +0000
ROA not before: Tue 03 May 2022 15:13:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16190
IP address blocks: 85.159.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117075560 (0x6fa6e68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: May 3 15:13:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a1ea2de55bdd9a5fd208cc9642bec332c7e1e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:95:66:20:6a:dd:6c:3a:24:e1:96:b5:fc:3c:
1e:c6:8f:07:6f:b9:cf:8d:8f:ac:55:04:56:86:0c:
5b:db:bf:8d:32:36:d2:2e:05:82:07:9c:e6:fb:f7:
df:8d:33:56:bb:7c:7e:0c:77:65:fb:a0:8f:d0:c7:
57:1c:10:83:21:88:5a:c0:5b:5b:7e:9e:7f:61:b1:
bf:ab:41:19:b9:7f:a8:41:01:c9:47:aa:da:6b:fc:
9f:f5:ff:d9:7d:b3:2c:2e:d9:97:34:21:85:bd:c2:
1a:92:df:4a:70:39:33:05:81:86:7d:5f:f6:d9:33:
61:c3:0b:00:9c:2a:cb:73:a2:47:16:bd:cd:c0:5d:
c9:cc:21:c9:55:ab:30:3a:90:e7:8b:78:83:fb:72:
5c:c7:6d:83:21:69:c2:7f:7c:ef:b2:21:db:fa:bb:
b8:ac:fa:7f:21:5e:c6:d7:95:36:99:b4:40:c5:02:
cd:4b:7c:59:f0:26:a5:11:d3:ac:45:e9:5e:a9:18:
77:35:f9:10:a9:f9:9e:91:c4:0f:1f:d6:6e:56:70:
40:af:ec:5b:7f:f5:9a:1a:27:d3:ff:4f:26:57:97:
b3:c1:5c:b0:05:07:20:03:03:8d:bb:b0:82:95:f4:
63:af:86:c4:d8:f5:c3:45:d9:7f:3a:be:51:bd:2a:
05:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1E:A2:DE:55:BD:D9:A5:FD:20:8C:C9:64:2B:EC:33:2C:7E:1E:7E
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/ah6i3lW92aX9IIzJZCvsMyx-Hn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:6c:22:5c:fb:71:f8:d8:ce:1f:95:ea:25:85:73:a0:0e:11:
d6:5a:bc:a6:9e:ce:e6:64:06:ca:96:be:a0:1d:25:d2:98:c4:
f3:68:0e:46:8c:4d:27:33:37:33:0a:bc:f5:e8:01:86:24:56:
75:1e:04:20:60:97:1a:b8:af:3c:0a:df:d8:0b:2f:dc:bb:d0:
d0:e6:6a:b8:f2:6d:11:aa:72:99:ac:a7:a4:be:71:24:d8:79:
1a:b4:9f:65:62:83:1c:aa:11:93:f8:59:42:7c:6f:43:7c:40:
57:04:93:7b:55:10:5d:42:a4:b3:78:b1:c2:50:fb:a5:37:ca:
01:2d:b4:b8:1e:4f:00:32:49:30:f9:9c:68:07:39:52:0c:4b:
d4:1c:0e:31:ad:89:83:db:94:42:dc:0f:c9:8d:f6:fa:5d:0f:
64:5f:79:77:34:d8:9a:94:bf:a5:c7:23:22:02:1d:87:0a:03:
93:7b:ad:75:9d:59:42:82:96:eb:5e:36:e8:1c:a9:30:9c:26:
c0:ec:d9:c6:ec:d0:15:f6:30:36:e5:c3:e1:f8:c2:7d:5c:aa:
f1:21:d2:43:ff:47:ac:56:d9:7b:0e:e2:37:90:fa:b9:7f:37:
a6:11:1f:61:22:77:a8:f7:c6:db:d1:c7:d5:62:04:c5:b4:01:
4a:d4:e1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org