Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/6mHeWSvo0L19biyA3I49O757KHs.roa
File: 6mHeWSvo0L19biyA3I49O757KHs.roa (raw, json)
Hash identifier: VCDp1ZGg683DS5tPRbMasbjKqCeKAx5KeLV82xiD0bc=
Subject key identifier: EA:61:DE:59:2B:E8:D0:BD:7D:6E:2C:80:DC:8E:3D:3B:BE:7B:28:7B
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 018B6CA5CAA1C6991A8F58B5877E142AF088
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/6mHeWSvo0L19biyA3I49O757KHs.roa
Signing time: Thu 26 Oct 2023 15:41:26 +0000
ROA not before: Thu 26 Oct 2023 15:41:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198203
IP address blocks: 185.142.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:a5:ca:a1:c6:99:1a:8f:58:b5:87:7e:14:2a:f0:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Oct 26 15:41:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea61de592be8d0bd7d6e2c80dc8e3d3bbe7b287b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f9:85:73:55:2e:86:5d:f5:77:07:12:9b:62:
e6:b1:33:6d:50:c2:21:1a:36:0e:03:28:d1:2d:66:
23:d7:02:7a:ef:f8:6a:7f:2b:2c:bd:35:bc:14:0e:
f9:e9:20:18:f6:2a:a3:6a:b2:80:34:42:1c:b4:a8:
66:b9:ee:f1:5d:f8:60:a3:33:cd:9c:f5:65:40:a1:
a9:43:ea:6b:bd:58:5c:14:e4:ab:be:ce:a0:72:fc:
39:0a:6a:2c:d2:67:25:16:a8:fb:54:8b:c0:9a:8b:
a9:1d:50:9d:f5:1a:fa:b3:eb:27:76:ee:2d:a6:31:
b7:37:17:13:d8:2b:c1:67:05:fc:ca:cf:3e:f3:dd:
93:44:d1:5f:a6:e5:2e:9c:cc:17:23:5a:84:14:38:
0f:14:c6:46:b7:18:f8:65:ac:11:33:b7:4e:3b:f9:
c6:8c:e7:65:61:d2:d4:68:43:5e:9a:b5:1d:f3:be:
64:82:c7:43:71:85:fc:4f:a9:f2:75:b5:b5:5d:35:
51:0c:37:34:27:a6:c8:52:04:28:30:a1:21:f9:f5:
d5:b9:2c:ac:1b:32:95:8f:63:52:b1:a6:07:06:35:
fa:55:4c:d8:81:ca:c4:e1:ce:4e:ab:97:3d:0a:c5:
51:72:c4:e0:89:d6:0c:9c:e9:bd:e2:ef:3c:46:0f:
59:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:61:DE:59:2B:E8:D0:BD:7D:6E:2C:80:DC:8E:3D:3B:BE:7B:28:7B
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/6mHeWSvo0L19biyA3I49O757KHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.76.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:ca:97:35:e3:b5:56:d8:b8:f8:eb:f8:e7:97:80:a8:c1:eb:
9d:9c:fb:66:6b:73:70:59:25:c0:79:f4:fa:96:f5:3c:f3:a9:
c0:e1:a2:9f:ae:7d:d6:cc:6a:46:4e:53:92:20:60:95:c4:a6:
4d:d5:28:01:97:a9:c2:e9:00:43:cd:de:b2:84:44:57:cf:b8:
50:36:d2:5e:74:c9:3c:96:e7:21:d7:4e:ce:ba:59:d9:b7:00:
eb:69:df:3c:c7:88:f8:9c:58:cd:8f:ed:0c:a1:3a:15:a6:95:
c9:8d:70:9c:7a:0c:18:15:f3:a1:b2:21:b9:8e:8c:a4:19:4f:
d7:b3:31:97:37:3d:10:62:76:9c:21:93:54:73:29:ff:5e:62:
3a:fe:09:0a:88:52:e6:a0:d5:f7:0c:09:5c:19:2f:75:b2:3e:
ea:fa:db:6a:a7:70:48:4b:46:1d:c5:5a:04:2f:3d:64:1d:d4:
91:b6:34:f2:25:6e:c0:3c:c0:bf:e4:d4:72:53:dc:87:ae:71:
e0:33:59:8c:3c:c7:ed:e5:ac:90:cf:cd:a0:8c:f2:02:2e:91:
11:bd:f5:f0:38:09:16:14:7f:70:03:fa:1a:7a:5c:de:f2:89:
a9:19:cd:e0:24:22:40:eb:f6:82:6c:db:d0:e1:8e:bc:a5:81:
71:28:e0:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:59 2025 by rpki-client