Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/6YR8hGc4Q1xb3Cs8hufixeAOWi0.roa
File: 6YR8hGc4Q1xb3Cs8hufixeAOWi0.roa (raw, json)
Hash identifier: 5r0Ewda6YDcgs1EW1E/wogjjy0qGSyNWiBK8O07qf+g=
Subject key identifier: E9:84:7C:84:67:38:43:5C:5B:DC:2B:3C:86:E7:E2:C5:E0:0E:5A:2D
Certificate issuer: /CN=854e8383e8208936802362a09f36085a50fcd85a
Certificate serial: 146ABC94
Authority key identifier: 85:4E:83:83:E8:20:89:36:80:23:62:A0:9F:36:08:5A:50:FC:D8:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hU6Dg-ggiTaAI2KgnzYIWlD82Fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/6YR8hGc4Q1xb3Cs8hufixeAOWi0.roa
Signing time: Sat 01 Jan 2022 13:04:31 +0000
ROA not before: Sat 01 Jan 2022 13:04:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 137.56.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342539412 (0x146abc94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854e8383e8208936802362a09f36085a50fcd85a
Validity
Not Before: Jan 1 13:04:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9847c846738435c5bdc2b3c86e7e2c5e00e5a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8e:e9:83:19:11:2e:17:60:53:24:0c:93:a8:
51:1c:66:df:39:82:a3:db:83:86:9e:21:ba:98:62:
c5:6e:f8:24:5b:28:95:8a:5d:88:d0:a8:31:e3:0b:
c2:19:7f:b6:d6:8e:36:3f:77:bb:ff:88:bd:5f:65:
ca:28:75:8b:3e:48:c6:d5:b2:3f:f8:94:fb:e4:75:
98:c2:25:10:75:ae:0c:9c:52:84:e0:15:43:dc:aa:
2f:4a:3c:f8:f0:d0:90:9b:0f:ad:59:a5:13:5e:ef:
c6:5c:c3:81:22:6c:56:27:0b:f2:e5:ec:2c:70:20:
05:f2:29:8c:34:be:45:d6:4b:79:e6:3f:00:7b:82:
34:3a:14:ec:23:07:3b:13:e6:e4:a7:2d:09:14:45:
bf:82:43:b2:35:41:d8:89:d5:2b:fb:98:d7:b6:8e:
db:73:32:7e:82:29:c9:6b:20:e2:2d:27:f0:10:f5:
94:27:46:ce:a5:21:64:2f:54:31:e7:3a:a0:f1:4a:
ca:d3:9f:50:f7:63:96:18:bc:d1:ce:ec:2d:1c:63:
1e:19:9e:29:dc:fe:d6:fd:59:fe:55:8c:a3:02:97:
3c:b0:aa:0b:e1:c6:ff:56:1c:62:54:50:4f:fb:a1:
de:a3:97:ee:78:b2:fc:c4:0b:4a:be:68:4e:d4:9a:
a3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:84:7C:84:67:38:43:5C:5B:DC:2B:3C:86:E7:E2:C5:E0:0E:5A:2D
X509v3 Authority Key Identifier:
keyid:85:4E:83:83:E8:20:89:36:80:23:62:A0:9F:36:08:5A:50:FC:D8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hU6Dg-ggiTaAI2KgnzYIWlD82Fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/6YR8hGc4Q1xb3Cs8hufixeAOWi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e1edab-2439-4a7c-984c-e6ff7ca3ecef/1/hU6Dg-ggiTaAI2KgnzYIWlD82Fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:2b:c3:c4:17:e7:b0:44:ff:b2:03:35:45:e2:34:53:00:44:
ff:54:b1:ee:1c:02:cc:27:51:90:44:b5:67:82:bf:ef:39:53:
d7:04:dc:c2:40:83:55:a3:1a:6a:2a:73:1d:a1:ca:7f:f8:2e:
26:55:91:68:2e:74:6f:58:74:db:64:05:49:be:fa:b5:40:ff:
c4:06:56:19:cd:6d:c6:10:5c:70:86:c1:59:f4:44:37:64:4d:
2d:39:37:2f:da:3a:13:23:2a:99:e5:4d:20:23:57:e4:a0:19:
7c:57:c6:5b:42:13:a2:98:02:e0:2c:81:9c:86:d3:44:2d:21:
bb:6b:9c:55:93:a6:f0:63:b2:ff:cd:ab:00:13:5c:bd:e4:57:
01:25:11:36:c3:9a:49:8c:5d:54:f0:2a:51:3a:e1:1e:7f:24:
4c:df:c6:e9:dd:cf:5a:6d:dd:e9:ec:e6:10:37:eb:04:61:bd:
86:13:cd:45:7e:eb:05:64:57:d2:77:31:62:1d:fe:89:b9:0d:
b1:70:f0:be:f8:bb:46:b1:ec:30:2e:07:4d:e3:93:e7:49:d7:
fb:84:01:95:78:e9:6b:6d:60:9e:c0:93:b6:d8:05:62:04:88:
9b:a8:58:00:a7:49:6a:bf:40:03:e3:3d:c0:d3:ec:cd:e3:5f:
58:11:f9:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:39 2024 by rpki-client on console-ams.rpki-client.org