Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/6RD_A1f6Ax-UHbR6vEjAqWfDJUc.roa
File: 6RD_A1f6Ax-UHbR6vEjAqWfDJUc.roa (raw, json)
Hash identifier: E/7zOHfGNT2FR00BOxbu4cRU2f/zVtymK4fJ3oqxYi0=
Subject key identifier: E9:10:FF:03:57:FA:03:1F:94:1D:B4:7A:BC:48:C0:A9:67:C3:25:47
Certificate issuer: /CN=3dc23e8a8ec9396b1b54cffb271c55766d949199
Certificate serial: 02686B74
Authority key identifier: 3D:C2:3E:8A:8E:C9:39:6B:1B:54:CF:FB:27:1C:55:76:6D:94:91:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PcI-io7JOWsbVM_7JxxVdm2UkZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/6RD_A1f6Ax-UHbR6vEjAqWfDJUc.roa
Signing time: Sat 01 Jan 2022 10:54:42 +0000
ROA not before: Sat 01 Jan 2022 10:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211994
IP address blocks: 185.233.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40397684 (0x2686b74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3dc23e8a8ec9396b1b54cffb271c55766d949199
Validity
Not Before: Jan 1 10:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e910ff0357fa031f941db47abc48c0a967c32547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c6:a2:e5:05:71:08:30:e7:61:64:ac:9d:8f:
a9:9c:06:b0:f5:3a:f5:f7:95:28:33:00:c4:13:d5:
55:45:02:e3:12:55:50:7b:30:c7:5a:0b:ed:2e:88:
37:38:89:a6:da:1a:0c:af:3d:68:bb:3d:1f:b2:5a:
25:3a:cc:b1:15:10:48:77:76:9d:b4:38:b8:f6:d8:
2c:bc:7e:80:f4:1f:ab:84:ba:f1:a6:1b:f6:aa:a6:
94:5b:d3:f5:b2:8c:f2:1f:65:89:20:54:91:b3:4c:
8e:a5:bc:d0:12:3a:b0:b9:67:93:71:02:b9:96:f8:
42:df:32:f7:fa:47:9e:9f:e6:35:77:6e:b9:89:78:
35:1d:e5:42:85:6c:16:9d:28:b1:58:42:cd:dc:e9:
d8:33:bb:b8:9c:e2:3c:3f:48:bb:1e:b2:33:04:67:
39:1e:02:5f:ff:3d:83:ba:e7:01:62:6f:65:23:ee:
45:da:37:e7:9d:83:88:23:47:c0:06:c0:ad:b3:e9:
e0:5d:48:3b:3c:c5:f3:55:2f:db:35:8e:b0:4f:2e:
7a:04:da:03:4e:8c:e1:da:20:d5:e2:31:2b:e0:3a:
65:d7:6f:a4:08:8a:19:69:ff:f6:df:6a:35:d0:7a:
db:75:98:cf:79:aa:4e:65:46:f3:0b:35:26:67:81:
80:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:10:FF:03:57:FA:03:1F:94:1D:B4:7A:BC:48:C0:A9:67:C3:25:47
X509v3 Authority Key Identifier:
keyid:3D:C2:3E:8A:8E:C9:39:6B:1B:54:CF:FB:27:1C:55:76:6D:94:91:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PcI-io7JOWsbVM_7JxxVdm2UkZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/6RD_A1f6Ax-UHbR6vEjAqWfDJUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/PcI-io7JOWsbVM_7JxxVdm2UkZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.64.0/24
Signature Algorithm: sha256WithRSAEncryption
85:26:9e:76:25:35:37:50:a4:d4:9e:b5:7b:c8:ad:0e:0c:46:
9e:07:bd:98:ef:5e:20:4a:e0:32:e9:22:9d:0d:00:1b:9a:a1:
ff:4c:f5:19:6b:30:59:43:f7:a9:60:e9:89:df:aa:b5:c0:a9:
b1:c7:f0:b0:bc:c7:cd:3f:07:6c:6f:63:b0:14:01:79:11:30:
bf:ac:a5:d3:e9:75:6f:09:1b:70:8e:63:13:ad:ed:05:86:75:
fd:db:c1:3f:7e:85:51:01:4d:1b:cb:1b:1c:79:a7:5b:55:80:
f7:ba:46:91:73:d7:8c:1e:e4:9f:06:54:9d:e9:0c:0b:6d:e2:
04:14:14:28:ef:7b:69:6a:f0:4f:4d:bb:de:db:b5:d8:8b:1c:
aa:64:c3:e7:f7:cf:79:6e:cc:17:8a:11:b9:20:75:65:a9:51:
c5:28:2f:6c:bd:ca:d1:b2:9a:1d:d9:57:d2:79:d6:67:f4:3e:
75:0a:ef:6f:b2:0a:3d:bf:15:16:95:55:1d:b8:4a:28:4d:b6:
e7:3b:08:61:cc:ff:18:37:68:27:2a:91:41:9d:fe:33:27:9e:
dd:d7:49:78:6b:9a:37:24:67:b9:6e:22:10:e2:70:74:16:6e:
d4:57:af:b7:8b:c0:93:aa:06:ed:be:37:ea:29:ee:87:9c:c3:
02:fa:c4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:03 2025 by rpki-client