Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/6KhVUzgE9sKuAr_61_L6ybka2tg.roa
File: 6KhVUzgE9sKuAr_61_L6ybka2tg.roa (raw, json)
Hash identifier: pEEe+y7r9rCfHdSLQ7fOqPWfshBOsIiOkMldEQcOkI0=
Subject key identifier: E8:A8:55:53:38:04:F6:C2:AE:02:BF:FA:D7:F2:FA:C9:B9:1A:DA:D8
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17C5B26B
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/6KhVUzgE9sKuAr_61_L6ybka2tg.roa
Signing time: Sat 01 Jan 2022 04:54:24 +0000
ROA not before: Sat 01 Jan 2022 04:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 45.138.211.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398832235 (0x17c5b26b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8a855533804f6c2ae02bffad7f2fac9b91adad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:d3:21:30:8d:59:a8:c8:e4:84:1d:e6:d1:
0e:3a:17:94:57:0d:27:77:79:fc:2e:40:8a:65:61:
ed:1d:99:80:07:59:1f:9c:0f:21:3b:f5:b4:e7:c0:
90:f0:16:6b:92:65:8c:b3:8c:b2:d3:b8:c2:78:a1:
7e:59:14:71:d7:88:2c:b7:bd:7c:97:50:4e:2d:8f:
f3:3c:36:60:57:e2:fd:9b:79:37:d5:16:9d:36:05:
eb:f8:cb:ce:ec:c6:42:72:7f:3d:af:51:95:4f:d3:
ea:33:6e:88:62:12:fb:17:d6:84:41:fc:89:2c:1d:
1a:e3:dc:64:75:36:49:8a:6d:50:19:bc:7f:27:df:
25:aa:84:d9:f8:15:15:ae:19:0c:91:2c:14:b3:e6:
5e:72:08:78:2a:5e:09:f6:72:f5:8e:30:94:36:4d:
8c:fc:0c:f4:9a:35:b5:a6:10:b5:34:42:57:9e:54:
72:d1:d3:89:0d:51:87:22:fd:ad:ff:7d:cc:75:7e:
1e:ae:90:8f:4e:05:6d:dd:75:c0:9c:47:9e:79:d0:
91:5b:b2:eb:c7:5f:f7:81:a5:88:a9:79:2a:08:91:
e6:64:b5:1c:b1:0c:4e:1f:f9:35:1d:56:0a:04:5e:
78:a4:c9:62:42:1f:12:2c:dc:5e:73:e2:71:91:e0:
74:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A8:55:53:38:04:F6:C2:AE:02:BF:FA:D7:F2:FA:C9:B9:1A:DA:D8
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/6KhVUzgE9sKuAr_61_L6ybka2tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.211.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:d8:51:8b:b4:25:b1:37:e1:e2:12:db:e3:7e:11:fb:bb:ac:
0a:aa:21:bd:25:f2:0e:63:e5:be:69:71:34:74:3c:b2:02:6e:
8d:fa:a4:b6:23:00:09:c8:f3:1f:23:46:a6:3f:32:c6:8a:f0:
99:4e:0c:c0:05:4a:d9:b1:43:ac:fb:f0:2f:4c:83:a0:34:7b:
57:aa:83:ce:0d:2f:7f:00:24:17:e0:24:f0:09:bd:42:09:49:
54:31:a3:7c:15:79:06:1d:f6:a0:cd:ff:74:52:7b:e8:25:5b:
0f:59:28:25:dc:53:d6:c2:8e:22:c2:aa:ab:61:52:dc:e2:fa:
fa:6e:39:3a:e1:5c:9c:f3:ef:5d:62:37:9f:d8:91:13:ff:e0:
d0:3d:21:64:e3:d8:78:68:38:d8:63:4e:bb:bb:cc:06:b0:73:
ca:04:0d:c5:ed:36:9f:5e:17:a7:27:76:b5:a8:7a:d7:df:25:
58:85:ec:1e:d8:a8:d6:2e:37:93:14:0d:38:fe:0f:60:94:40:
e3:fc:71:37:ed:4f:8b:0d:2f:e1:0a:28:0c:8c:4e:9f:85:4c:
70:5f:ca:79:ba:01:17:5d:94:40:46:a6:95:ed:38:f8:30:30:
2b:8e:ff:4e:fd:a3:56:84:59:a1:cc:71:c9:1f:2f:10:76:b1:
7f:13:19:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org