Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/a6C3Vfcze5R4s2YFOO3j2uzSwVE.roa
File: a6C3Vfcze5R4s2YFOO3j2uzSwVE.roa (raw, json)
Hash identifier: Vpe3laSmPTE/JTEuEi8ZFMxnj1nMDJV/BvvsyeDcLN8=
Subject key identifier: 6B:A0:B7:55:F7:33:7B:94:78:B3:66:05:38:ED:E3:DA:EC:D2:C1:51
Certificate issuer: /CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Certificate serial: 018282C805231368EA85177772079E67744C
Authority key identifier: 58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/a6C3Vfcze5R4s2YFOO3j2uzSwVE.roa
Signing time: Tue 09 Aug 2022 13:25:22 +0000
ROA not before: Tue 09 Aug 2022 13:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49352
IP address blocks: 213.189.199.0/24 maxlen: 24
188.93.213.0/24 maxlen: 24
188.93.208.0/23 maxlen: 23
188.93.215.0/24 maxlen: 24
188.93.214.0/24 maxlen: 24
178.21.14.0/23 maxlen: 23
178.21.13.0/24 maxlen: 24
178.21.12.0/22 maxlen: 22
178.21.12.0/24 maxlen: 24
185.38.16.0/24 maxlen: 24
185.38.17.0/24 maxlen: 24
185.38.18.0/24 maxlen: 24
185.38.19.0/24 maxlen: 24
194.67.64.0/24 maxlen: 24
194.67.75.0/24 maxlen: 24
194.67.76.0/23 maxlen: 23
176.99.4.0/24 maxlen: 24
176.99.9.0/24 maxlen: 24
176.99.5.0/24 maxlen: 24
176.99.7.0/24 maxlen: 24
176.99.8.0/24 maxlen: 24
176.99.6.0/24 maxlen: 24
176.99.5.190/32 maxlen: 32
188.93.209.127/32 maxlen: 32
194.67.106.0/24 maxlen: 24
188.93.208.172/32 maxlen: 32
178.21.9.0/24 maxlen: 24
62.113.93.0/24 maxlen: 24
2a02:f20::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:82:c8:05:23:13:68:ea:85:17:77:72:07:9e:67:74:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Validity
Not Before: Aug 9 13:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ba0b755f7337b9478b3660538ede3daecd2c151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:42:3e:fe:a9:ec:7b:73:4c:f8:97:7b:15:f9:
36:05:de:f2:0d:72:51:70:28:d2:e3:0b:7b:e4:85:
d5:7d:d9:36:be:57:8e:6d:ab:58:1c:eb:bb:02:41:
60:4e:93:bb:fb:19:d0:57:c8:6d:48:a4:c0:0f:34:
c4:ad:b0:d2:e0:04:48:71:12:70:a0:14:47:f7:c2:
41:f0:6f:02:c3:fe:3d:b5:5d:03:a2:88:3c:66:ee:
82:07:25:8b:a9:3e:d6:28:37:61:16:d1:9e:a7:d8:
a2:3c:c7:06:de:80:76:ca:55:2d:29:47:89:7b:d2:
d1:bf:25:c6:bf:4a:ba:b3:00:b2:ee:00:d2:17:d2:
4c:77:c7:a8:72:05:73:3c:df:0b:35:fd:31:c0:8e:
65:15:b7:db:cb:53:51:ec:ef:92:14:19:47:d1:35:
16:f7:b5:3a:c6:87:bb:83:a7:43:e6:35:c1:c3:fe:
44:f5:51:34:28:17:23:b3:a7:e2:5e:77:72:b2:61:
77:bb:24:be:1a:80:ff:bf:5d:56:86:ea:e2:b9:86:
49:e1:e0:73:0f:52:2a:08:6f:69:cf:d2:1e:cd:57:
cf:d0:65:a6:cb:64:49:ea:63:d2:e2:1a:8c:7c:31:
5c:ef:d8:5f:49:ac:a5:83:3d:d3:86:8e:62:74:17:
8c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A0:B7:55:F7:33:7B:94:78:B3:66:05:38:ED:E3:DA:EC:D2:C1:51
X509v3 Authority Key Identifier:
keyid:58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/a6C3Vfcze5R4s2YFOO3j2uzSwVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/WDMpShzcE1ivxDnApyczsGWob4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.93.0/24
176.99.4.0-176.99.9.255
178.21.9.0/24
178.21.12.0/22
185.38.16.0/22
188.93.208.0/23
188.93.213.0-188.93.215.255
194.67.64.0/24
194.67.75.0-194.67.77.255
194.67.106.0/24
213.189.199.0/24
IPv6:
2a02:f20::/32
Signature Algorithm: sha256WithRSAEncryption
cc:1d:71:25:10:9d:33:6d:d1:4d:21:6a:57:d2:b8:27:f4:21:
68:81:40:ce:65:a1:d6:40:e9:04:2c:40:35:09:09:40:b1:6c:
32:b3:85:4c:5f:dd:fd:4d:33:18:3e:e9:e4:e8:a8:58:ef:3c:
3c:46:75:18:0a:67:4f:f8:e9:df:fb:f8:92:4b:23:14:6b:f1:
d2:18:8c:7c:da:da:1c:88:aa:8d:dc:e4:86:b0:00:ec:b9:ac:
67:59:95:d2:5c:46:30:18:cb:05:a2:d9:b1:b8:16:8c:d8:e3:
3b:d7:d3:ae:ff:52:1b:87:b2:5a:0d:ad:a2:1f:25:0b:a4:ff:
7c:13:98:96:15:c9:a1:8b:19:96:2a:ba:1e:84:34:2d:3a:78:
1e:2c:df:7e:db:83:a2:e7:8c:d8:d0:25:1a:2e:52:0e:a0:b3:
7d:06:11:cb:f0:a0:16:53:f7:ea:38:cf:39:ad:24:2c:22:b9:
c8:2c:a8:35:a4:db:64:68:b3:c6:f4:21:95:5b:28:3a:46:f2:
4c:f2:04:d4:fe:06:09:40:74:4d:9d:4d:97:6b:49:90:b8:f6:
7b:24:92:98:47:a5:d8:9e:91:81:1a:77:5b:5e:49:91:9e:95:
4e:ed:17:bf:d7:cd:21:af:16:b3:82:24:46:19:dc:75:a7:e8:
04:b6:dd:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org