Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6xO-8mqvLCdKyh6J-Rzd4DBCtYM.roa
File: 6xO-8mqvLCdKyh6J-Rzd4DBCtYM.roa (raw, json)
Hash identifier: 0uKEWNtkEnrpROuAFxN1d4p2GGJNX0rWxev84yYQY7c=
Subject key identifier: EB:13:BE:F2:6A:AF:2C:27:4A:CA:1E:89:F9:1C:DD:E0:30:42:B5:83
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 426208E1
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6xO-8mqvLCdKyh6J-Rzd4DBCtYM.roa
Signing time: Sat 01 Jan 2022 14:03:05 +0000
ROA not before: Sat 01 Jan 2022 14:03:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30893
IP address blocks: 194.71.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113721057 (0x426208e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb13bef26aaf2c274aca1e89f91cdde03042b583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ad:75:a3:95:78:12:76:b5:81:aa:e7:be:e7:
ae:f0:e5:a7:4b:80:16:4c:d3:f1:52:d9:fc:c0:d5:
7d:6a:a2:8d:2d:00:31:8f:d8:4f:f0:34:99:04:8e:
5c:c7:1d:2c:75:4a:a3:3b:7e:5c:f5:c9:23:fd:7f:
69:89:e0:6c:e6:f4:41:b6:81:c7:d0:3d:07:cc:11:
15:5d:a3:aa:d2:40:7e:d0:37:36:3d:91:a7:c5:4c:
7b:7a:db:45:c5:81:3b:9a:5b:06:1d:ec:0c:1d:cb:
1d:fd:70:aa:28:e0:02:aa:69:da:56:bd:fc:6a:67:
e7:f6:22:5e:74:52:c5:b3:78:6f:8a:84:31:63:2e:
82:42:ae:2a:10:4f:39:98:f1:a9:56:2a:13:d4:88:
0b:99:cc:2d:4d:83:45:b9:61:91:d3:1d:97:31:b9:
4b:19:45:35:3b:89:77:df:e3:87:59:e5:88:ce:bf:
c3:88:a7:e9:0c:0a:56:f3:8c:19:90:a3:80:14:cb:
0b:f7:d4:37:a4:8a:4d:a5:c4:e4:44:a3:d4:71:8b:
2f:7d:55:5d:b7:2e:25:bd:17:84:d1:37:73:e1:bf:
e0:f0:a0:17:f4:61:90:f6:9d:69:c9:86:89:99:b5:
20:2f:c0:a5:f3:8f:8f:a9:98:f5:80:9b:00:40:e3:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:13:BE:F2:6A:AF:2C:27:4A:CA:1E:89:F9:1C:DD:E0:30:42:B5:83
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6xO-8mqvLCdKyh6J-Rzd4DBCtYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.111.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:63:c5:4d:a3:09:81:ae:1b:5e:81:c3:fd:32:35:9d:ee:6e:
ff:0d:56:4a:2c:6e:26:e2:81:d3:38:68:d5:d7:da:f6:a7:f6:
fb:70:a9:18:19:41:49:b8:b9:58:ca:95:b7:e5:7e:0c:10:ad:
b7:65:e5:5c:5d:2c:c0:9c:d3:03:4e:36:57:67:fb:8e:c5:38:
ee:6a:7b:2d:18:d7:74:2c:3e:95:56:74:49:82:5f:75:05:e0:
36:24:bb:90:52:64:e9:2b:65:e7:c8:b3:c0:d3:b8:13:f7:5e:
22:4c:43:e2:a8:ea:cf:dc:2a:65:74:2b:f9:53:43:39:2c:15:
f6:db:a7:56:a7:bd:a5:ea:63:6d:03:d0:97:75:3c:d8:95:59:
bd:b6:ab:7a:81:0e:af:f6:b6:d3:c4:20:26:8f:a4:85:8e:28:
0d:a9:4b:ee:88:1b:4a:21:1c:c6:29:7c:1a:c6:e1:34:87:cf:
b0:54:89:46:2b:58:9e:92:7d:82:4c:3e:26:42:36:23:52:46:
45:d7:ff:6a:ff:b2:f5:54:0f:c3:da:4c:00:32:f9:78:3d:d7:
ca:41:19:3e:49:73:11:37:c7:bf:85:bf:fe:f4:0a:57:55:73:
f5:0e:45:4c:6d:fd:19:13:7e:9d:fa:70:b9:85:da:72:80:9e:
de:e2:1c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org