Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/Gk6ev8yglyrsg7bsCDU-nQ2dvqQ.roa
File: Gk6ev8yglyrsg7bsCDU-nQ2dvqQ.roa (raw, json)
Hash identifier: yFSEH9MV7BByIBsyqOLyKiDJOM9I9tYnn1XJsPK8Mi0=
Subject key identifier: 1A:4E:9E:BF:CC:A0:97:2A:EC:83:B6:EC:08:35:3E:9D:0D:9D:BE:A4
Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c
Certificate serial: 1221AB16
Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/Gk6ev8yglyrsg7bsCDU-nQ2dvqQ.roa
Signing time: Tue 17 May 2022 08:17:29 +0000
ROA not before: Tue 17 May 2022 08:17:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30778
IP address blocks: 81.6.140.0/22 maxlen: 22
81.6.128.0/21 maxlen: 21
2a00:cd80:8000::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304196374 (0x1221ab16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c
Validity
Not Before: May 17 08:17:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a4e9ebfcca0972aec83b6ec08353e9d0d9dbea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:43:0b:e6:7c:ca:2b:a2:25:c6:29:32:c6:89:
aa:51:a7:f1:9e:56:2a:7f:e1:f2:01:32:20:ed:5a:
2c:9f:a1:c6:9b:a5:db:be:56:a8:bf:b6:bd:84:ef:
f4:9d:cb:52:a0:3d:7d:d1:c9:95:ac:f0:8e:cd:ea:
2e:b8:dd:26:58:a7:c3:e2:30:67:21:bd:d2:5a:5f:
88:8b:4b:b0:d5:ba:9f:e3:3c:dc:21:92:5e:f4:b9:
78:bf:f4:11:10:24:ff:dd:78:4c:e6:cb:33:03:92:
f2:63:28:b4:d4:c7:47:91:f4:ae:63:80:96:43:56:
c3:b6:be:9d:7e:97:ba:a8:bc:11:5d:65:e0:4b:35:
5b:30:72:9b:04:11:33:4b:ad:a5:fb:fa:58:cb:fb:
1f:6a:83:2b:bc:99:af:72:ed:c1:92:2d:3a:46:65:
eb:31:29:3c:59:3b:bd:93:16:95:c9:72:08:04:cc:
4c:15:cd:66:9d:92:0c:b6:0a:69:fd:2c:14:7b:fe:
72:ba:61:cc:fa:f6:2b:0a:0c:02:ef:d5:0f:1e:d3:
99:8b:ed:ac:89:58:eb:b0:ef:39:19:ee:dd:7b:c2:
34:fe:1e:0f:4c:b1:7b:08:e8:53:a4:72:07:f1:3f:
54:0b:0c:cf:6a:bb:5f:ce:e0:6c:af:47:b8:79:0a:
77:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:4E:9E:BF:CC:A0:97:2A:EC:83:B6:EC:08:35:3E:9D:0D:9D:BE:A4
X509v3 Authority Key Identifier:
keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/Gk6ev8yglyrsg7bsCDU-nQ2dvqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.6.128.0/21
81.6.140.0/22
IPv6:
2a00:cd80:8000::/33
Signature Algorithm: sha256WithRSAEncryption
7f:00:f1:e6:a7:a0:fc:07:60:9b:4d:7a:ab:ed:88:06:f3:62:
62:25:4a:84:1b:5c:67:25:43:d1:d6:a2:a3:aa:c8:7d:e3:df:
8c:15:28:48:0b:7d:15:b3:4c:2b:52:2e:49:56:5a:ac:ab:89:
ca:36:17:0d:5a:c6:d7:6d:11:ff:b3:2b:c6:28:b4:d5:25:8c:
f1:fd:5d:0c:04:06:77:d3:ed:86:fc:a4:03:d8:f9:32:c2:83:
3b:34:43:07:64:f4:86:68:d8:ee:8c:f4:55:c6:be:22:25:fd:
4e:45:ee:95:2c:60:a5:20:42:6f:a8:9d:47:43:a8:53:d6:11:
ff:f9:ff:ad:7f:2f:c4:72:1a:57:d0:e5:a3:08:69:6c:80:db:
45:5b:c7:d0:30:5c:af:d9:1f:4a:3a:5f:f3:f6:77:3a:49:1d:
c6:02:5f:43:1f:86:c3:4f:f6:ab:8f:f0:19:97:5d:bd:7c:ee:
f9:6c:6d:67:c3:ab:8c:f4:ae:08:20:82:ab:a6:d8:49:38:00:
ab:5c:30:e3:72:e1:04:ee:69:a4:18:81:ce:b2:2f:37:7c:dc:
1d:e2:ad:df:43:cb:a8:b9:fb:3f:dc:12:13:01:67:68:de:da:
87:77:a8:58:a0:10:17:5d:cc:5c:2c:07:56:03:36:cd:89:2a:
f5:06:b9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:48 2023 by rpki-client on console-fra.rpki-client.org