Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/b6nXEe6L_sOmnyy20Pc00_rw9QA.roa
File: b6nXEe6L_sOmnyy20Pc00_rw9QA.roa (raw, json)
Hash identifier: UU9lO9Qgm7wyKMMuQBrqxQYuM53Glcnh7yyOAV1KAek=
Subject key identifier: 6F:A9:D7:11:EE:8B:FE:C3:A6:9F:2C:B6:D0:F7:34:D3:FA:F0:F5:00
Certificate issuer: /CN=a6aa9cade93be6ba7c8abb3238318076317d607d
Certificate serial: 01863BF5778EDF97A0B09E19883D08A9414C
Authority key identifier: A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/b6nXEe6L_sOmnyy20Pc00_rw9QA.roa
Signing time: Fri 10 Feb 2023 15:33:08 +0000
ROA not before: Fri 10 Feb 2023 15:33:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42927
IP address blocks: 194.53.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:f5:77:8e:df:97:a0:b0:9e:19:88:3d:08:a9:41:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6aa9cade93be6ba7c8abb3238318076317d607d
Validity
Not Before: Feb 10 15:33:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fa9d711ee8bfec3a69f2cb6d0f734d3faf0f500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:39:60:2d:9a:3e:ab:97:27:03:04:20:4a:3e:
40:d5:b4:df:ae:4f:49:c3:61:ee:ec:87:9f:86:82:
a3:06:7c:42:df:44:03:b6:18:57:db:b7:b7:b4:65:
c1:4b:c9:65:cb:ed:c5:24:bc:f7:46:e9:18:45:f5:
e0:2f:96:a3:f7:9f:92:43:72:1d:4b:70:f9:61:eb:
f2:4e:ae:f8:fc:fe:5f:54:3a:3b:21:7e:06:71:d9:
60:ab:ab:01:4c:22:db:c9:21:2f:d2:33:c8:53:5b:
f8:cd:38:ef:1f:41:b6:9e:b9:fa:ed:20:05:88:63:
e6:75:ac:3c:db:60:dc:1f:35:46:c8:0f:ba:d2:2e:
c2:07:29:ef:a2:75:ea:6d:30:7f:dd:e0:5d:99:7a:
ff:3e:cd:74:3f:58:d9:e3:7a:41:8e:f0:e5:66:16:
0c:7f:84:ce:49:91:3d:4b:f2:7a:31:82:53:a4:c2:
d3:1e:85:13:d2:76:2d:3f:13:00:cc:f1:98:04:46:
eb:3b:2b:70:48:bf:a5:93:06:6e:ea:b5:25:e9:11:
e4:36:aa:84:3b:a9:48:d7:77:91:33:5d:4f:7f:fe:
eb:dc:50:fc:6b:68:3b:f4:5f:9f:14:84:95:0e:29:
76:1f:2e:a4:d8:d9:58:87:6a:71:9a:ba:ca:4d:ae:
58:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A9:D7:11:EE:8B:FE:C3:A6:9F:2C:B6:D0:F7:34:D3:FA:F0:F5:00
X509v3 Authority Key Identifier:
keyid:A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/b6nXEe6L_sOmnyy20Pc00_rw9QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.192.0/24
Signature Algorithm: sha256WithRSAEncryption
06:56:d1:c5:f2:c3:20:64:ff:b5:94:0a:eb:68:a6:d5:e2:12:
c6:85:9e:4d:68:ed:75:7d:76:cd:41:4f:f8:d4:7d:b1:2d:0e:
0e:b3:6a:98:6e:b5:ac:57:c8:e4:57:31:32:7a:e9:b5:4c:28:
4e:37:9f:f4:d6:43:34:d6:72:b4:aa:8f:9b:0d:e3:1d:e6:8d:
0f:e3:26:67:7a:b5:33:af:d2:47:63:e8:3e:2f:68:f8:f3:d3:
fd:d3:b8:ae:1b:4e:b8:8b:4a:f0:72:9b:83:40:9b:7a:5a:0d:
38:b8:0f:ac:5c:3d:4a:74:00:b2:52:d7:fd:da:cb:5f:4f:b9:
ea:70:ea:1b:cb:98:38:f9:90:5e:c3:66:8a:bb:6b:44:9c:84:
b1:10:f8:3e:b8:92:ad:bb:c4:8c:95:3c:07:38:05:49:66:72:
b1:7b:e4:38:93:fa:52:24:6b:82:bd:e5:0c:a2:b1:4e:e9:44:
bd:0e:12:1e:5f:f5:3b:aa:53:5b:06:c0:c8:ee:17:23:06:65:
f8:ef:3a:b9:a8:0a:57:a2:b4:01:0b:63:6f:5a:31:8f:b0:84:
98:93:7c:51:f3:38:b6:73:2e:c1:54:ed:40:5b:65:f8:22:83:
1f:a7:ca:fb:b5:cc:fd:c4:aa:67:2f:4d:7e:91:57:bc:6a:fc:
52:c1:e5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:35 2025 by rpki-client