Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/6oJkP07-pCYm3IXgOTzSALOwfbs.roa
File: 6oJkP07-pCYm3IXgOTzSALOwfbs.roa (raw, json)
Hash identifier: +f3w2XOCp9ugkJpYXyOOd2a+l6MYcDJ4wOhXzUP1EwA=
Subject key identifier: EA:82:64:3F:4E:FE:A4:26:26:DC:85:E0:39:3C:D2:00:B3:B0:7D:BB
Certificate issuer: /CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Certificate serial: 0186A311A0AC4B5D5165E757CDDEC3BEB9FB
Authority key identifier: F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/6oJkP07-pCYm3IXgOTzSALOwfbs.roa
Signing time: Thu 02 Mar 2023 16:04:46 +0000
ROA not before: Thu 02 Mar 2023 16:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31263
IP address blocks: 80.88.160.0/20 maxlen: 20
45.142.184.0/22 maxlen: 22
31.44.160.0/20 maxlen: 20
45.67.40.0/22 maxlen: 22
31.193.144.0/20 maxlen: 20
80.68.176.0/20 maxlen: 20
45.94.0.0/22 maxlen: 22
77.241.12.0/22 maxlen: 22
84.247.208.0/20 maxlen: 20
84.247.224.0/19 maxlen: 19
193.135.15.0/24 maxlen: 24
79.133.100.0/22 maxlen: 22
119.12.32.0/20 maxlen: 20
193.135.24.0/24 maxlen: 24
92.62.80.0/20 maxlen: 20
77.240.224.0/20 maxlen: 20
77.241.0.0/21 maxlen: 21
84.247.192.0/18 maxlen: 18
77.241.10.0/24 maxlen: 24
77.241.10.0/23 maxlen: 23
77.241.11.0/24 maxlen: 24
178.238.48.0/20 maxlen: 20
185.5.196.0/22 maxlen: 22
93.91.128.0/20 maxlen: 20
185.229.172.0/22 maxlen: 22
178.175.192.0/18 maxlen: 18
2a07:5ec0::/29 maxlen: 29
2a07:55c0::/29 maxlen: 29
2a07:580::/29 maxlen: 29
2a07:4f00::/29 maxlen: 29
2a02:600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a3:11:a0:ac:4b:5d:51:65:e7:57:cd:de:c3:be:b9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Validity
Not Before: Mar 2 16:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea82643f4efea42626dc85e0393cd200b3b07dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d0:fb:04:42:54:fc:6b:5f:47:d9:b4:1c:94:
a1:c5:20:d1:22:c3:ea:34:67:f7:a1:04:87:a9:86:
14:c5:8b:66:49:b0:b6:0f:8b:83:80:3c:10:1b:0e:
b5:6d:46:69:06:e8:05:f9:23:2f:e5:3f:00:a2:8d:
e1:9b:96:09:54:20:40:1c:be:b0:51:1d:c2:38:91:
39:f7:65:eb:85:8f:05:80:41:a5:35:c5:b4:7e:30:
67:59:62:71:56:4b:e9:33:03:a8:d5:b1:19:fc:24:
56:6e:ac:1d:e0:0a:69:d4:1e:f2:5c:c3:b3:a6:5f:
44:07:e2:19:91:f8:04:43:bb:b9:99:e1:1d:d3:01:
93:93:cb:df:77:06:2a:14:78:32:6e:b1:82:6c:e9:
70:e7:88:df:b9:7a:ee:f7:08:9c:50:a0:ed:30:45:
7c:36:33:db:64:92:4e:bb:4a:19:a8:6e:5d:bb:8b:
4b:bc:9e:a4:df:89:84:60:b1:16:6f:cc:a7:2c:e6:
9f:14:98:96:24:3d:df:9c:89:2e:11:b9:09:c0:b4:
6c:b4:ee:75:58:ca:77:74:4a:f2:f3:db:7a:b5:0f:
53:5e:68:30:87:05:71:01:77:26:32:d5:6d:7e:2e:
69:75:c6:ae:40:43:e7:73:35:df:bf:33:e9:79:60:
c9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:82:64:3F:4E:FE:A4:26:26:DC:85:E0:39:3C:D2:00:B3:B0:7D:BB
X509v3 Authority Key Identifier:
keyid:F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/6oJkP07-pCYm3IXgOTzSALOwfbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/9u6hCvrPOpwm6hsexIjpVeTfoGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.160.0/20
31.193.144.0/20
45.67.40.0/22
45.94.0.0/22
45.142.184.0/22
77.240.224.0/20
77.241.0.0/21
77.241.10.0-77.241.15.255
79.133.100.0/22
80.68.176.0/20
80.88.160.0/20
84.247.192.0/18
92.62.80.0/20
93.91.128.0/20
119.12.32.0/20
178.175.192.0/18
178.238.48.0/20
185.5.196.0/22
185.229.172.0/22
193.135.15.0/24
193.135.24.0/24
IPv6:
2a02:600::/29
2a07:580::/29
2a07:4f00::/29
2a07:55c0::/29
2a07:5ec0::/29
Signature Algorithm: sha256WithRSAEncryption
99:5b:be:99:fd:20:ed:05:4d:86:33:ae:ff:a1:6b:8b:17:07:
3f:32:1c:80:a5:be:c9:27:9e:f1:66:bd:84:f9:60:b1:e2:9c:
5d:67:4d:d2:fe:7a:57:a1:fa:f3:88:e4:ab:5e:dc:a9:f4:a8:
d6:f3:a7:00:f4:60:b6:fb:40:14:39:04:39:ff:22:c5:25:28:
a6:58:58:91:fe:ee:bb:ad:7d:21:d2:25:8b:cd:1c:99:dc:f9:
1b:9a:d2:50:c6:61:03:4e:e1:44:60:77:7f:85:8f:af:b5:22:
8b:fe:71:1e:d4:72:bc:54:95:fc:05:50:14:a5:b7:57:64:63:
b3:d7:07:26:a7:5f:70:df:7f:f9:58:69:19:d6:f1:9b:d2:60:
23:1f:fe:35:05:18:16:bf:33:66:ab:11:7e:8b:cb:44:8d:74:
47:1c:80:30:09:d7:a2:e4:54:07:8e:c7:33:04:73:f3:a0:53:
49:47:d7:0d:17:76:62:1f:58:19:c8:31:a8:a5:78:48:3f:89:
de:06:25:ff:54:7a:5a:b7:c2:67:15:2c:d7:83:6d:06:ce:ca:
c1:ac:ad:07:21:96:96:1f:f4:d2:9b:b1:60:b3:99:2d:a0:bb:
df:51:c7:b8:1b:00:7e:db:76:8c:55:f3:f3:75:3c:ab:cc:82:
6c:40:b5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:53 2025 by rpki-client