Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/6n-Bof_2mh6taSog3Li4mYiewIE.roa
File: 6n-Bof_2mh6taSog3Li4mYiewIE.roa (raw, json)
Hash identifier: 96tylhjmdabfZKVq7mKbIJcD6P/C6tI0kDfvBVyqs3Y=
Subject key identifier: EA:7F:81:A1:FF:F6:9A:1E:AD:69:2A:20:DC:B8:B8:99:88:9E:C0:81
Certificate issuer: /CN=26bddae04dbcb1f82f55b078307ba4b084b994bb
Certificate serial: 0F91A755
Authority key identifier: 26:BD:DA:E0:4D:BC:B1:F8:2F:55:B0:78:30:7B:A4:B0:84:B9:94:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/6n-Bof_2mh6taSog3Li4mYiewIE.roa
Signing time: Sat 01 Jan 2022 10:03:28 +0000
ROA not before: Sat 01 Jan 2022 10:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43233
IP address blocks: 103.231.139.0/24 maxlen: 24
185.137.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261203797 (0xf91a755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26bddae04dbcb1f82f55b078307ba4b084b994bb
Validity
Not Before: Jan 1 10:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea7f81a1fff69a1ead692a20dcb8b899889ec081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f7:1e:d2:d3:e2:fa:f5:a5:ed:de:3d:74:eb:
73:b6:c7:3a:a3:c3:a3:0f:25:03:68:7f:f5:e8:4a:
e6:eb:b2:6b:71:39:e6:1f:d8:d5:93:36:8d:ad:84:
02:d7:fb:d9:9e:d2:b5:35:69:77:06:80:30:cb:19:
86:4e:33:07:19:59:02:f5:bb:7e:b8:dd:c1:28:e6:
35:28:6b:11:e2:2c:7f:f0:f5:b7:14:43:72:89:bc:
5f:8b:8a:42:f5:24:56:4e:7e:bb:e8:79:30:3c:cd:
10:b1:6a:a3:72:cc:38:a0:dd:4b:0e:22:23:71:de:
59:6c:b3:2e:16:49:22:52:b4:8e:11:fb:68:c2:47:
c8:3d:5f:11:04:56:90:03:f7:18:1e:72:00:03:d5:
e4:fe:6f:a5:ac:e3:12:c6:8b:18:ec:5a:e4:16:12:
3d:cf:ec:ce:88:0c:15:97:87:74:f8:6a:a1:a7:5b:
9a:aa:29:c6:2c:7f:16:02:c5:e0:55:af:27:e8:95:
de:28:f7:da:39:10:12:21:58:6f:5b:45:56:4f:e8:
e7:65:7f:d8:b9:b4:0c:f3:3a:1e:80:35:e6:f5:a5:
ce:98:c4:bc:95:8d:9e:3b:58:da:68:66:98:db:a6:
b5:b2:5b:26:e9:f9:46:9a:23:b4:0f:67:46:a8:0a:
66:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7F:81:A1:FF:F6:9A:1E:AD:69:2A:20:DC:B8:B8:99:88:9E:C0:81
X509v3 Authority Key Identifier:
keyid:26:BD:DA:E0:4D:BC:B1:F8:2F:55:B0:78:30:7B:A4:B0:84:B9:94:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jr3a4E28sfgvVbB4MHuksIS5lLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/6n-Bof_2mh6taSog3Li4mYiewIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/feb3ba-ee90-4f03-9e00-f6179a910b15/1/Jr3a4E28sfgvVbB4MHuksIS5lLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.231.139.0/24
185.137.111.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:75:48:e6:3c:0f:ff:48:de:36:a8:61:d6:32:f5:3e:ba:da:
ce:79:49:fb:ed:9a:eb:b0:3e:1e:14:36:12:1a:db:aa:7f:d2:
72:18:cb:3e:53:54:35:5d:fd:e6:2c:ee:06:25:6f:1a:34:e6:
00:b6:91:aa:19:da:5d:c2:8b:3f:71:b9:fa:ed:6b:06:bf:a5:
96:f9:35:2c:20:cb:a7:36:51:0c:c2:71:b9:2e:8f:cb:42:c1:
2c:34:68:d8:15:8d:f1:cd:5a:f7:ca:6f:73:ad:47:b6:26:ed:
ca:4d:bb:30:60:4e:62:f7:6d:35:50:74:ff:41:10:96:42:bd:
59:14:78:fe:cf:39:e0:c9:8f:ee:0c:80:8a:4d:62:2e:07:7b:
6c:bb:8c:30:44:21:c5:d6:aa:d9:58:ee:79:3a:a8:56:d1:ed:
da:68:1b:be:8b:bf:16:3a:eb:ca:33:f0:db:73:da:bc:c9:19:
e8:26:84:1e:af:5e:81:58:70:7c:a0:af:73:f5:62:21:e5:6b:
9b:bc:7c:dc:8d:a5:2e:d4:aa:4e:fa:aa:f5:b5:22:66:7f:c2:
46:7f:a9:13:b6:a6:6d:b8:d5:51:5b:d2:a5:16:97:2c:30:0b:
9c:5a:33:04:61:95:37:46:a6:4a:e0:aa:b4:25:db:db:4a:b0:
4c:9b:83:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:36 2024 by rpki-client on console-fra.rpki-client.org