Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/6n-ykfF-mB55XkH2YkVEol0z_44.roa
File: 6n-ykfF-mB55XkH2YkVEol0z_44.roa (raw, json)
Hash identifier: YmTnd7OXus2tkj4yllg5eqZY6QD6paS2O5ANf1zNyRw=
Subject key identifier: EA:7F:B2:91:F1:7E:98:1E:79:5E:41:F6:62:45:44:A2:5D:33:FF:8E
Certificate issuer: /CN=a2ae3569689ff542a911d7098b82466e6ea9fc85
Certificate serial: 01737E
Authority key identifier: A2:AE:35:69:68:9F:F5:42:A9:11:D7:09:8B:82:46:6E:6E:A9:FC:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oq41aWif9UKpEdcJi4JGbm6p_IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/6n-ykfF-mB55XkH2YkVEol0z_44.roa
Signing time: Wed 02 Feb 2022 14:16:20 +0000
ROA not before: Wed 02 Feb 2022 14:16:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211668
IP address blocks: 80.249.132.0/24 maxlen: 24
2a10:b5c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95102 (0x1737e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2ae3569689ff542a911d7098b82466e6ea9fc85
Validity
Not Before: Feb 2 14:16:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea7fb291f17e981e795e41f6624544a25d33ff8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2b:b5:20:66:df:d8:13:67:11:fd:19:b0:1b:
52:ad:0d:36:c7:bc:84:03:af:73:b6:f7:10:f5:a1:
12:79:11:d0:02:a4:28:ac:c5:02:c7:dc:ff:07:0a:
9b:a9:11:eb:ed:ac:98:02:d7:f9:a4:68:dd:8e:92:
f4:af:78:30:6b:a5:c4:2b:e2:3d:9d:ae:b0:a9:b0:
b6:08:ed:20:b1:0d:a4:df:a3:43:bb:92:e1:bc:fe:
e4:e5:d0:bf:41:91:1f:54:b4:25:a1:5d:6b:8f:67:
65:46:0a:83:c9:fc:b3:aa:a4:14:13:70:39:2f:b7:
04:b6:6a:c2:2d:9b:7c:5a:df:d2:2b:4f:4a:5b:92:
49:cb:68:5c:84:3d:df:ea:f0:4b:4e:03:db:68:56:
e6:df:e2:9a:4e:a5:4a:e1:a9:76:01:4c:c1:9a:a5:
a0:19:24:a4:d0:5d:dd:0d:f7:e0:7d:63:bb:c0:4a:
28:e6:32:d3:21:84:68:81:2c:4b:74:60:88:08:20:
69:5e:f7:2f:2e:a2:fc:b0:f4:18:09:fc:8e:b0:db:
dd:16:53:a4:b3:9c:09:d1:0e:b9:c3:4e:ab:28:b0:
5f:1a:d1:14:89:23:ea:9f:74:43:55:7a:37:13:61:
c7:01:4d:0f:3b:91:29:a1:00:19:18:f0:bc:ea:27:
98:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7F:B2:91:F1:7E:98:1E:79:5E:41:F6:62:45:44:A2:5D:33:FF:8E
X509v3 Authority Key Identifier:
keyid:A2:AE:35:69:68:9F:F5:42:A9:11:D7:09:8B:82:46:6E:6E:A9:FC:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oq41aWif9UKpEdcJi4JGbm6p_IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/6n-ykfF-mB55XkH2YkVEol0z_44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/98867c-856e-46c9-8925-6ea5d8b75411/1/oq41aWif9UKpEdcJi4JGbm6p_IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.132.0/24
IPv6:
2a10:b5c0::/29
Signature Algorithm: sha256WithRSAEncryption
7a:0e:e0:93:bc:86:b5:4d:b5:bb:f6:dd:44:9e:be:6e:ea:32:
8b:e6:7c:2e:95:85:ac:d3:84:58:33:63:d1:8f:73:fb:56:b8:
a1:5b:1a:14:cc:29:bd:a5:10:75:d0:75:5f:96:09:f8:9c:c7:
20:a7:ce:6f:96:1f:51:ce:81:0a:f1:e2:d8:60:a9:6f:3b:9c:
5b:f9:9a:11:09:5c:65:56:54:f8:73:9b:2c:0d:7c:fb:b8:31:
35:17:1a:0d:d8:db:58:6c:48:0f:ec:fb:66:e5:a1:cd:74:36:
a7:0d:72:1a:27:63:43:cf:8a:0f:d7:ea:e2:cf:e7:1d:cf:4b:
14:69:e9:71:a3:01:46:b5:1d:20:17:ee:62:b3:f4:5c:4c:7b:
f4:f6:f3:ef:6b:c9:3f:89:81:28:a1:21:49:fb:13:73:eb:8e:
26:25:ce:94:11:64:5d:9f:79:b4:62:18:f3:8a:25:bd:8d:12:
1f:09:3a:0a:08:4d:c8:2b:f6:e1:0e:1b:86:48:29:57:26:24:
d4:fa:08:f9:21:15:c7:1c:cb:b5:de:28:d0:15:a9:9c:b7:a7:
bb:95:8c:46:11:04:87:8d:62:45:bf:f5:82:88:cf:19:df:a2:
32:d9:fd:7d:f2:ff:9e:50:68:f9:e3:1c:6c:a5:86:48:ba:36:
9a:79:eb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:38 2023 by rpki-client on console-fra.rpki-client.org