Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/6AMjjQXRJd8okDTM3L2Hk_K3Qkc.roa
File: 6AMjjQXRJd8okDTM3L2Hk_K3Qkc.roa (raw, json)
Hash identifier: G0WgTytx/s1bPOS7h+EVofEJ3nIAkv5DVNf2FtuSaX0=
Subject key identifier: E8:03:23:8D:05:D1:25:DF:28:90:34:CC:DC:BD:87:93:F2:B7:42:47
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 018570397B22388324439BF4DC830299089F
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/6AMjjQXRJd8okDTM3L2Hk_K3Qkc.roa
Signing time: Mon 02 Jan 2023 02:04:53 +0000
ROA not before: Mon 02 Jan 2023 02:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44408
IP address blocks: 194.54.13.0/24 maxlen: 24
194.54.12.0/23 maxlen: 23
194.54.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:7b:22:38:83:24:43:9b:f4:dc:83:02:99:08:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 2 02:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e803238d05d125df289034ccdcbd8793f2b74247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:07:86:3f:29:2d:27:4d:1e:e2:84:ef:a6:fb:
da:93:3e:02:b4:b9:a1:35:a0:16:e1:1e:ff:9c:b5:
06:71:9d:ee:4f:c4:c2:09:6d:87:46:cb:e3:4c:2d:
5c:18:46:20:05:cd:42:05:9a:d7:e4:b4:d5:4f:a1:
2b:c1:ef:df:4c:40:9b:63:87:b8:aa:05:f5:be:9f:
10:cc:bd:09:50:c4:e6:e2:0d:d3:5c:88:89:7e:96:
61:83:91:e3:35:5a:eb:8a:5d:a3:2e:f5:82:63:2a:
24:b1:0e:8f:5a:14:cc:7f:26:53:4f:5b:9e:65:bd:
c1:03:b3:c4:c6:75:9b:c1:ec:69:ab:61:69:3e:fe:
16:c7:e7:ca:34:e0:67:39:b0:7f:48:5d:87:68:f0:
ea:fc:13:54:af:6e:a2:42:09:67:29:d5:ee:b6:63:
64:e1:89:79:27:64:77:ff:9e:72:74:8d:d2:e9:1f:
b2:79:35:e3:b8:5c:d8:c0:94:77:4c:da:d4:35:85:
89:af:78:f4:05:ed:f7:5e:7e:9a:9a:d6:af:da:2b:
08:d1:41:76:39:48:0e:b9:0a:7c:6b:8f:ad:e3:dd:
dd:b4:ad:c1:02:6c:2d:14:75:98:e0:7d:45:ec:3d:
9f:d4:99:58:a0:3a:ba:80:e5:07:e8:c7:fc:29:a7:
4a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:03:23:8D:05:D1:25:DF:28:90:34:CC:DC:BD:87:93:F2:B7:42:47
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/6AMjjQXRJd8okDTM3L2Hk_K3Qkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.12.0/23
Signature Algorithm: sha256WithRSAEncryption
96:60:16:8b:eb:c7:c1:0f:97:28:eb:3b:c7:f4:15:51:e0:19:
52:b4:69:ee:2b:6f:10:e1:61:e3:e8:34:6d:ae:fb:67:58:7f:
84:fb:25:a3:e7:4b:6c:62:33:46:5e:51:2d:c3:8a:46:2b:f1:
5d:4c:7b:47:c0:34:fa:23:09:f1:44:46:99:94:f7:2f:52:d2:
4d:21:8e:fb:73:0b:36:25:b7:4f:4b:e5:9f:d2:91:21:bd:7d:
9b:14:90:07:9b:a2:91:2b:83:64:ed:4b:27:a5:9c:1e:43:48:
31:c6:bf:a9:b9:69:a5:88:8c:81:77:97:33:63:f7:1a:e1:de:
f7:55:f7:86:de:d9:83:c7:21:65:c7:32:78:52:8a:f4:d7:c5:
72:6f:f6:f4:4a:f1:66:34:53:b4:bd:19:20:f5:6e:e6:71:26:
97:ad:1d:99:90:ed:20:22:4b:8f:bd:20:02:81:a9:72:3a:bb:
dd:6d:94:0e:c7:e4:ed:43:81:fc:ad:6d:5f:ca:4a:d2:78:f2:
1d:a0:45:b5:c5:38:ca:8b:60:71:b8:c8:de:e7:8a:8b:50:75:
57:e1:ae:3a:59:26:e1:68:92:3b:1e:b2:18:9c:49:e3:06:4b:
bd:45:91:c1:6b:77:78:0d:01:3f:6c:b0:8d:d0:b5:5e:6e:db:
a4:fe:0f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:11 2025 by rpki-client