Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/6f5X9bqCOHamfmvgX9qt8F0Wl5U.roa
File: 6f5X9bqCOHamfmvgX9qt8F0Wl5U.roa (raw, json)
Hash identifier: s3x5tDTQZtGlO3gkSFw7/w0DTaJx8H/xW2rfmhr8V+4=
Subject key identifier: E9:FE:57:F5:BA:82:38:76:A6:7E:6B:E0:5F:DA:AD:F0:5D:16:97:95
Certificate issuer: /CN=ecbbf2ba5b32e42e8b6c03b836d764f975b5898f
Certificate serial: 04AEF1AF
Authority key identifier: EC:BB:F2:BA:5B:32:E4:2E:8B:6C:03:B8:36:D7:64:F9:75:B5:89:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/6f5X9bqCOHamfmvgX9qt8F0Wl5U.roa
Signing time: Sat 01 Jan 2022 15:04:10 +0000
ROA not before: Sat 01 Jan 2022 15:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59456
IP address blocks: 185.71.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78573999 (0x4aef1af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecbbf2ba5b32e42e8b6c03b836d764f975b5898f
Validity
Not Before: Jan 1 15:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9fe57f5ba823876a67e6be05fdaadf05d169795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:63:72:b5:7a:6a:e4:5b:19:1d:28:72:a6:2a:
39:28:dc:ab:14:dd:80:75:d8:09:89:ed:83:a8:30:
9e:c1:7a:f8:13:e3:1f:11:56:75:77:e3:73:43:62:
aa:e5:5b:ca:5c:ac:63:2d:3a:a7:98:e9:2f:0b:2b:
c5:f4:ba:d4:e2:7d:5e:20:f3:13:88:be:3c:b2:92:
92:d2:bc:95:45:0f:84:77:b4:06:5c:e9:90:82:06:
e4:7b:98:2d:cc:2c:0b:9e:c2:ad:4a:04:b5:1b:25:
2c:9e:dc:a4:30:a4:b5:ee:34:f3:11:e1:8c:57:1c:
12:d8:6c:68:88:bc:02:b2:cb:68:e4:6d:46:8f:87:
44:90:36:1f:d3:6a:53:37:0d:0d:93:9c:9a:a9:67:
9e:10:60:37:1e:81:8d:23:95:1d:7f:61:69:6b:0e:
90:0b:ad:91:f8:b0:07:64:01:17:ff:31:64:f0:15:
d1:51:6c:f7:c5:bc:c0:80:0d:e4:a9:1b:8c:d3:59:
a0:58:4c:37:70:d9:49:dd:42:1d:33:76:75:97:1f:
63:dd:74:6c:49:04:e2:fe:16:b8:5f:62:47:72:47:
1b:4a:c5:eb:38:be:87:31:df:75:7b:c6:03:3e:21:
cd:0f:9f:6f:60:93:6c:a8:14:cd:7e:78:29:c1:c2:
48:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:FE:57:F5:BA:82:38:76:A6:7E:6B:E0:5F:DA:AD:F0:5D:16:97:95
X509v3 Authority Key Identifier:
keyid:EC:BB:F2:BA:5B:32:E4:2E:8B:6C:03:B8:36:D7:64:F9:75:B5:89:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/6f5X9bqCOHamfmvgX9qt8F0Wl5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.136.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4b:16:67:89:e2:27:5d:47:21:a8:88:cd:04:a8:cf:fb:7f:
a1:da:1e:37:ab:70:1f:38:a0:b0:f5:17:72:f5:fb:8f:b8:d6:
ab:c9:11:80:56:48:20:b3:a5:53:cd:46:0d:39:a4:b5:e4:2f:
c1:56:52:65:f1:66:64:34:3e:f8:5b:db:31:90:6e:f4:d8:0f:
a5:ba:7f:66:fe:63:66:66:71:ba:54:62:0f:14:c2:a3:c5:dc:
64:e0:7d:53:c1:8a:c2:88:74:4f:48:8a:b8:b9:5f:50:9a:a7:
81:88:ac:05:20:a9:bd:04:48:e2:07:31:d7:56:3b:5d:30:0b:
0e:a9:d1:e3:bc:8f:98:82:41:b8:e8:39:f4:b0:9f:fc:b7:a8:
08:9b:ab:30:85:47:ee:86:6d:88:8c:72:67:e1:dd:64:ae:2c:
83:19:a1:a1:e3:aa:cb:81:ad:0f:66:61:05:2d:9c:09:1b:a2:
c3:32:2e:c9:ec:de:0f:22:06:94:21:b5:49:83:5c:21:7c:63:
24:08:5c:8c:76:36:24:e5:58:d3:1f:f0:df:2f:dd:e6:99:3a:
2d:f9:5e:25:bb:aa:65:f5:3e:25:e6:cb:40:6d:99:59:f9:22:
df:0b:f1:3c:13:75:2a:24:64:7d:31:63:4c:2e:34:bc:6c:ea:
b6:45:67:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:08:58 2025 by rpki-client