Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/6mp24CHcLbIktwyDLQWwHst7NuE.roa
File: 6mp24CHcLbIktwyDLQWwHst7NuE.roa (raw, json)
Hash identifier: FqhhGykSSOmbQZhMFbKU5b8MhFS65YtswdsKQwCJnek=
Subject key identifier: EA:6A:76:E0:21:DC:2D:B2:24:B7:0C:83:2D:05:B0:1E:CB:7B:36:E1
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 198BDEBE
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/6mp24CHcLbIktwyDLQWwHst7NuE.roa
Signing time: Tue 22 Mar 2022 17:13:29 +0000
ROA not before: Tue 22 Mar 2022 17:13:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
51.144.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
193.149.64.0/19 maxlen: 24
192.100.104.0/21 maxlen: 21
51.116.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
51.136.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
51.132.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
51.120.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
51.51.0.0/16 maxlen: 16
2a01:111::/32 maxlen: 32
2a01:111:4000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:f000::/36 maxlen: 36
2a01:111:4004::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428596926 (0x198bdebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Mar 22 17:13:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea6a76e021dc2db224b70c832d05b01ecb7b36e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:97:59:fb:b4:1f:25:7b:a2:14:79:14:bc:5c:
af:7d:5f:55:72:42:d0:3c:d0:28:88:97:fc:9d:57:
e0:51:a2:01:f6:c7:0c:14:53:70:e9:66:ac:82:2c:
04:68:05:f2:3b:31:03:5b:70:14:95:54:5f:4f:25:
1f:6e:31:57:c5:1f:0c:f0:7f:ca:28:34:38:d8:49:
e5:65:b3:7e:2e:51:0b:16:4d:f3:cc:a3:7b:86:7e:
89:29:5e:d6:af:7a:48:40:ec:4c:0f:83:6e:14:34:
c3:e7:66:b6:ee:f2:9f:f8:b6:de:5b:ee:4c:04:cc:
e5:64:39:02:af:61:2f:3e:41:6b:ae:66:47:aa:dd:
e8:f4:9b:33:1e:47:85:9f:2f:9d:d9:a6:79:75:be:
fc:8a:cf:b9:e7:da:d3:ec:72:e5:d0:39:b6:cf:9d:
2b:d6:5a:1d:d5:50:ec:5e:8c:e8:7c:31:45:60:82:
de:82:40:b5:83:2e:f1:68:2c:f1:7d:b3:fe:a8:c0:
7b:44:bc:1a:95:ee:17:09:b0:80:3e:c2:39:8e:2c:
2b:6d:d9:2b:3d:cf:7a:e7:48:8d:a5:c4:8b:8b:5a:
fa:73:09:fe:2f:44:de:e2:ef:87:02:f6:2b:7e:53:
72:0a:1b:0d:d9:a7:02:b6:8b:71:68:67:82:dd:3f:
39:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6A:76:E0:21:DC:2D:B2:24:B7:0C:83:2D:05:B0:1E:CB:7B:36:E1
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/6mp24CHcLbIktwyDLQWwHst7NuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
94.245.64.0/18
147.243.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
213.199.128.0/18
IPv6:
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
8e:fa:3a:cd:16:31:a4:c2:87:7d:c7:2a:8d:c7:6f:52:52:ff:
5b:f8:57:80:ba:de:7f:e7:50:ef:d8:87:72:4c:50:c8:56:8d:
74:b5:3c:b1:66:db:5f:90:98:6f:19:77:f9:7f:38:b5:74:50:
7b:17:ec:fd:0f:16:d2:a8:cd:0d:ee:35:b7:60:68:3e:f3:13:
dc:7c:dd:2d:de:07:7e:42:7c:7d:a4:c5:b8:31:ed:0b:f8:fa:
4f:3b:96:2f:10:bc:1f:c2:a4:52:f9:34:51:1a:95:59:ad:2b:
a4:9c:73:e6:84:40:b7:93:21:4f:1a:d7:d3:c5:37:48:0c:ba:
0d:21:06:89:55:d2:e3:97:a8:94:f2:a9:96:c4:b9:af:c5:c1:
47:41:63:7b:63:81:26:64:60:15:0b:79:0a:3b:4c:79:0b:40:
8f:1c:26:db:4a:f3:06:c0:a4:13:6b:0b:0f:47:c7:9c:c8:a5:
44:20:c5:3b:ac:44:05:8d:c0:08:2d:67:dc:bd:4c:31:37:fc:
0c:18:ae:df:94:46:a9:58:67:77:0d:69:ec:37:e8:31:1e:4e:
b5:a6:62:5f:47:62:b9:45:f6:8c:f7:1d:e7:0d:b8:ed:b2:e4:
4f:58:77:49:6e:f6:4c:a7:5e:c8:09:41:fe:3e:ad:3f:56:88:
74:f1:5c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org