Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/6ni_tqbnZbEJfAkQPCseCp8JUg0.roa
File: 6ni_tqbnZbEJfAkQPCseCp8JUg0.roa (raw, json)
Hash identifier: +f7DbNOs3QvNFOOD2ituQWf+cCOldZaanlQt9EMYWcI=
Subject key identifier: EA:78:BF:B6:A6:E7:65:B1:09:7C:09:10:3C:2B:1E:0A:9F:09:52:0D
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 1915F1AA
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/6ni_tqbnZbEJfAkQPCseCp8JUg0.roa
Signing time: Mon 28 Feb 2022 14:41:52 +0000
ROA not before: Mon 28 Feb 2022 14:41:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31122
IP address blocks: 78.137.128.0/18 maxlen: 18
185.242.236.0/23 maxlen: 23
92.51.192.0/18 maxlen: 18
185.53.32.0/24 maxlen: 24
84.203.0.0/16 maxlen: 16
185.53.35.0/24 maxlen: 24
83.147.128.0/18 maxlen: 18
89.234.64.0/18 maxlen: 18
176.52.216.0/22 maxlen: 22
46.183.104.0/23 maxlen: 23
212.126.32.0/19 maxlen: 19
176.52.220.0/23 maxlen: 23
212.126.60.0/22 maxlen: 22
80.93.16.0/20 maxlen: 20
92.51.208.0/20 maxlen: 20
217.78.0.0/20 maxlen: 20
2a02:220::/32 maxlen: 32
2a01:258::/32 maxlen: 32
2001:1bb8::/32 maxlen: 32
2a00:15b8::/32 maxlen: 32
2a00:15b8:400::/40 maxlen: 40
2a01:8aa0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 420868522 (0x1915f1aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Feb 28 14:41:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea78bfb6a6e765b1097c09103c2b1e0a9f09520d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:60:66:2e:ef:c4:80:d3:6b:11:7c:3b:ab:9e:
d8:c6:af:1a:bd:4e:92:71:4d:c2:c6:53:b8:63:0d:
f7:6d:7e:fb:90:e0:f6:8c:b8:02:4a:21:dc:18:c8:
6c:fd:b4:5e:c1:3b:1f:87:02:07:08:5a:67:cd:57:
42:d8:a7:9f:d3:21:e8:f4:bd:e0:20:18:7f:11:70:
74:e7:98:ef:bb:e8:16:f5:69:c7:2a:82:fd:7f:e8:
cc:31:ce:2d:ea:92:63:db:99:91:8a:91:52:74:59:
e1:60:82:a7:90:03:c6:da:3d:c4:d4:9d:c8:b9:b9:
30:22:6a:c1:cd:fe:3c:2f:06:03:20:34:0a:dd:c8:
90:c5:2d:13:e3:2e:f9:a2:6f:27:85:92:47:4b:7a:
89:22:51:b9:3c:c9:de:f7:8d:96:93:7b:97:3c:c1:
df:6d:ab:54:b9:47:5e:12:ac:3d:37:aa:0d:45:1c:
9f:57:9f:f9:e8:fb:63:b1:24:6d:57:d3:25:9a:0c:
20:db:c8:20:38:80:5b:85:2f:b7:e2:3e:93:bd:46:
e4:7a:8f:cb:71:64:5a:1b:9c:4b:a2:ff:46:c3:f7:
a3:56:23:0c:f7:1d:c2:c6:ab:46:d2:11:5f:25:33:
c1:57:4c:da:f4:e4:b9:e1:c8:7f:ea:8e:a4:36:3b:
97:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:78:BF:B6:A6:E7:65:B1:09:7C:09:10:3C:2B:1E:0A:9F:09:52:0D
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/6ni_tqbnZbEJfAkQPCseCp8JUg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.104.0/23
78.137.128.0/18
80.93.16.0/20
83.147.128.0/18
84.203.0.0/16
89.234.64.0/18
92.51.192.0/18
176.52.216.0-176.52.221.255
185.53.32.0/24
185.53.35.0/24
185.242.236.0/23
212.126.32.0/19
217.78.0.0/20
IPv6:
2001:1bb8::/32
2a00:15b8::/32
2a01:258::/32
2a01:8aa0::/32
2a02:220::/32
Signature Algorithm: sha256WithRSAEncryption
8c:89:d1:fe:97:a3:20:46:3a:5b:a6:d5:39:50:db:a6:16:56:
98:6e:d0:27:21:79:05:f9:03:33:6c:9f:1f:ab:43:46:c8:8f:
11:cb:43:8d:f5:a3:ef:90:5b:91:f0:04:f2:f8:d6:03:fd:8f:
a3:b6:6b:0e:80:10:51:32:00:b8:da:fd:0e:04:ad:7a:cb:46:
eb:30:ef:da:f3:bc:ec:5e:e8:23:88:5e:33:1d:76:8a:78:77:
44:ec:3e:79:d4:34:74:7b:af:e0:23:85:87:57:25:15:49:15:
eb:8d:96:bd:10:90:6c:71:d5:e2:94:a4:3e:30:cc:8e:51:e7:
25:e8:ad:b5:48:3d:ba:e7:da:70:34:a7:d7:0f:b4:8d:15:1a:
0c:57:01:17:5a:a2:29:3d:a8:b2:2c:f5:93:38:6f:8e:3a:56:
9d:f5:d9:ff:d7:96:d2:8d:4a:17:e7:9f:43:7a:0b:3a:56:be:
94:4b:1e:38:30:1b:ce:9b:30:26:1a:c8:6c:a4:f8:66:57:9f:
79:69:2f:d6:ec:27:d0:a6:a1:4e:57:cf:56:dc:1d:24:fa:2a:
db:ab:81:18:ae:8c:56:21:0e:04:9b:1b:51:dd:11:25:aa:e0:
51:28:97:0d:e6:55:7a:fa:8d:97:32:df:8d:e8:3d:db:24:ea:
0d:20:fa:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-ams.rpki-client.org