Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b278e3-32ef-46b7-897d-2344b3681d9e/1/6s_fxhL9ito80cLfccPVnvtnLUE.roa
File: 6s_fxhL9ito80cLfccPVnvtnLUE.roa (raw, json)
Hash identifier: 0V0Hf+B2gcYzgRtEZMx7IoUtF3Yfak+7zU3erFUQJZE=
Subject key identifier: EA:CF:DF:C6:12:FD:8A:DA:3C:D1:C2:DF:71:C3:D5:9E:FB:67:2D:41
Certificate issuer: /CN=ec11155016bd29a00d20b844edade3b8b63d84c8
Certificate serial: 5B7991
Authority key identifier: EC:11:15:50:16:BD:29:A0:0D:20:B8:44:ED:AD:E3:B8:B6:3D:84:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7BEVUBa9KaANILhE7a3juLY9hMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b278e3-32ef-46b7-897d-2344b3681d9e/1/6s_fxhL9ito80cLfccPVnvtnLUE.roa
Signing time: Sat 01 Jan 2022 00:50:20 +0000
ROA not before: Sat 01 Jan 2022 00:50:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60889
IP address blocks: 185.234.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5994897 (0x5b7991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec11155016bd29a00d20b844edade3b8b63d84c8
Validity
Not Before: Jan 1 00:50:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eacfdfc612fd8ada3cd1c2df71c3d59efb672d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:95:da:5a:2d:e7:c3:4f:6a:41:b0:71:d9:35:
a6:e7:aa:17:f1:6a:6f:95:5e:ca:f3:26:3b:7b:c7:
48:04:7a:5c:31:aa:c1:db:8d:87:2d:94:b7:0b:0b:
da:e0:e4:99:c0:6c:72:a9:f9:5d:71:fc:da:f4:81:
85:a6:10:4b:a0:4b:fc:a0:cc:32:b9:6f:7c:63:f9:
9b:09:46:8f:63:28:19:43:66:00:5a:4d:78:71:35:
16:1a:c3:a9:4f:ad:f8:30:64:bd:89:b1:57:3e:e7:
d4:2a:33:b8:56:e0:86:ed:7e:1f:49:ca:01:78:e2:
7a:8e:cd:a9:fa:16:71:82:f0:2d:b6:f2:b9:1d:c7:
2a:d9:5a:8c:aa:2e:7d:55:09:3d:89:c1:a3:d1:e6:
79:fb:7f:f5:f8:80:42:ea:b7:d6:60:e8:03:34:17:
c2:70:87:94:65:35:66:2d:b4:79:c0:ab:3d:a5:0a:
f8:18:b4:2b:a0:41:14:ac:46:ad:05:34:f1:15:e2:
b6:0d:46:dc:06:fa:0d:30:7e:aa:81:c6:3e:f2:97:
50:2c:8a:23:98:b6:0a:20:67:fb:e6:52:2c:3b:01:
fd:61:87:5d:49:bb:e0:a5:2f:56:d7:a0:ff:7a:74:
aa:e1:f5:ab:85:8c:55:8d:0d:67:9a:0d:94:19:df:
f8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:CF:DF:C6:12:FD:8A:DA:3C:D1:C2:DF:71:C3:D5:9E:FB:67:2D:41
X509v3 Authority Key Identifier:
keyid:EC:11:15:50:16:BD:29:A0:0D:20:B8:44:ED:AD:E3:B8:B6:3D:84:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7BEVUBa9KaANILhE7a3juLY9hMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b278e3-32ef-46b7-897d-2344b3681d9e/1/6s_fxhL9ito80cLfccPVnvtnLUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b278e3-32ef-46b7-897d-2344b3681d9e/1/7BEVUBa9KaANILhE7a3juLY9hMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.216.0/24
Signature Algorithm: sha256WithRSAEncryption
36:fa:b7:6f:95:3a:d3:03:70:7d:d0:0f:ae:50:36:4d:2b:c7:
2d:cf:13:59:b1:e7:29:92:57:85:1c:58:7d:8e:ff:ee:5e:cc:
91:7f:7b:b5:9c:6f:ca:f1:4d:83:11:c7:61:c3:26:11:ff:f7:
db:23:c9:5b:c6:28:4c:c0:62:9c:50:f8:b4:4c:e5:ef:30:d6:
eb:30:48:65:1d:60:a7:ef:3b:51:c7:f8:12:60:72:11:2d:af:
0e:c3:47:46:dd:52:85:ed:3b:1c:5c:4d:fa:44:ae:1d:d2:b2:
e8:8c:d6:40:72:b9:8d:b2:ec:ac:a4:6a:d2:7a:c5:d1:aa:38:
4f:a0:14:6e:49:7b:d6:24:2b:b8:07:bf:f8:1b:03:5c:6e:be:
08:8f:82:9d:cb:c4:20:2b:a6:40:5e:96:d5:84:9d:29:2c:6a:
6b:49:2b:e6:c2:b1:6f:69:0c:68:d6:45:16:46:ea:6c:a3:74:
86:8b:21:1c:98:b8:4c:d9:a0:87:bc:05:e1:80:c2:05:da:ec:
04:ae:cf:8f:fa:4b:a8:31:7d:97:30:64:c2:c8:a5:54:c6:99:
4e:40:f2:d3:5a:c5:9d:9b:3e:ab:1c:d4:7c:6d:4f:78:d0:a8:
1e:54:10:ed:7d:a1:d7:55:59:0e:10:a5:61:e4:2d:63:28:dc:
df:25:a1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:53 2023 by rpki-client on console-ams.rpki-client.org