Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/6nqRqVllmkBzocB-NXAsCVb5psA.roa
File: 6nqRqVllmkBzocB-NXAsCVb5psA.roa (raw, json)
Hash identifier: ebG761AXYuLRtUL22D1VQpwdliwDicZm1cu0O4UccLw=
Subject key identifier: EA:7A:91:A9:59:65:9A:40:73:A1:C0:7E:35:70:2C:09:56:F9:A6:C0
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0B9FF016
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/6nqRqVllmkBzocB-NXAsCVb5psA.roa
Signing time: Sat 01 Jan 2022 14:59:02 +0000
ROA not before: Sat 01 Jan 2022 14:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202354
IP address blocks: 194.127.110.0/24 maxlen: 24
194.127.111.0/24 maxlen: 24
194.127.108.0/24 maxlen: 24
194.127.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195031062 (0xb9ff016)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: Jan 1 14:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea7a91a959659a4073a1c07e35702c0956f9a6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5e:c1:20:80:2d:f9:7b:83:ad:3f:7d:fd:e7:
31:d8:23:af:66:59:19:14:9b:6f:91:69:e5:93:d7:
53:a6:69:34:64:0f:c6:93:16:fb:9c:38:41:8a:6a:
94:24:5a:96:de:2b:6c:40:aa:85:ee:8e:06:cc:5b:
34:b4:24:43:d7:85:76:71:cd:fb:53:d4:49:c0:9a:
33:cf:c7:fd:9a:a6:f5:79:1b:ca:3a:fa:bd:bb:ac:
9f:9e:24:fa:d5:60:f0:4e:26:d8:43:1d:d0:7c:4c:
69:24:58:e3:36:f7:02:1e:3d:50:7f:3b:ef:b0:b8:
a6:94:9f:72:9b:4f:cf:90:43:42:3d:bb:17:82:fd:
f0:d6:19:47:b9:55:55:f2:08:41:5f:78:ed:fb:01:
14:0b:be:3e:a5:6a:f2:18:8a:84:f0:04:c8:2a:26:
23:ca:0d:64:70:d0:c6:cf:49:a2:55:e5:ce:1a:59:
30:fc:7c:80:e7:c4:40:2c:16:ab:14:c3:cf:2c:d8:
08:41:f6:63:72:33:3c:d4:4a:be:42:e4:4b:10:0d:
ee:99:0f:4b:c6:a7:58:53:df:51:46:f9:a7:9b:62:
f9:d0:13:c3:b3:0e:ac:d9:4c:80:bf:69:24:6c:ad:
33:35:e8:f9:f3:7a:0d:02:70:90:29:2e:95:d9:ae:
e5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7A:91:A9:59:65:9A:40:73:A1:C0:7E:35:70:2C:09:56:F9:A6:C0
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/6nqRqVllmkBzocB-NXAsCVb5psA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.108.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:6b:7e:b9:b0:76:e7:2f:ce:77:38:9f:dc:68:4f:a2:3f:d4:
12:4c:1b:12:a1:d9:bf:d3:9a:e2:26:6a:12:f3:2b:30:f9:4a:
29:79:60:2b:4f:ec:95:2e:e8:1b:c2:0f:ac:bf:eb:a1:b0:df:
f7:25:b1:e3:43:8f:63:6e:be:a2:0b:89:88:aa:80:1c:09:f0:
97:2f:3b:dd:84:64:16:a6:49:9d:3f:63:71:07:d1:74:42:dd:
5d:2c:2f:6e:6b:d1:e8:2a:2e:7f:f6:4b:70:c2:38:06:f0:86:
9e:39:d4:c2:d0:6b:4b:da:c8:1a:8e:16:fa:cd:6e:fe:e2:b4:
7d:0d:b1:c3:5b:37:c4:ef:45:63:3f:51:7d:55:23:e5:0e:fb:
b2:df:f3:15:13:99:18:5d:1d:62:21:4b:1b:62:84:a1:88:62:
80:b4:71:82:d0:60:bc:a3:88:72:6c:d5:2a:31:5b:4d:b2:a4:
fc:2c:ee:71:d9:4e:28:ca:a0:df:8b:6c:96:14:9b:9d:2e:47:
81:b1:81:4e:88:a8:95:f5:16:0a:bf:01:a6:8d:8b:c4:56:18:
4b:c4:2f:0b:3e:04:1f:df:1c:8d:8b:38:51:34:ea:b6:cf:92:
ef:7d:c4:2e:cc:d2:31:bd:b1:ec:c7:97:53:07:d9:ba:98:8f:
8a:53:b5:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org