Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/6IzN_iK8tQJTtwaT8oE_S0YRUVY.roa
File: 6IzN_iK8tQJTtwaT8oE_S0YRUVY.roa (raw, json)
Hash identifier: lkUbWo6fyMfaaXvTgoogVbkyogjCKi62nRfv7+nHzvI=
Subject key identifier: E8:8C:CD:FE:22:BC:B5:02:53:B7:06:93:F2:81:3F:4B:46:11:51:56
Certificate issuer: /CN=eb51359c9989b963e9594c1929c820367de322dd
Certificate serial: 018A80CB28345954D65CD7D3CBB2FE817269
Authority key identifier: EB:51:35:9C:99:89:B9:63:E9:59:4C:19:29:C8:20:36:7D:E3:22:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61E1nJmJuWPpWUwZKcggNn3jIt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/6IzN_iK8tQJTtwaT8oE_S0YRUVY.roa
Signing time: Sun 10 Sep 2023 20:31:52 +0000
ROA not before: Sun 10 Sep 2023 20:31:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60339
IP address blocks: 92.41.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:80:cb:28:34:59:54:d6:5c:d7:d3:cb:b2:fe:81:72:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb51359c9989b963e9594c1929c820367de322dd
Validity
Not Before: Sep 10 20:31:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e88ccdfe22bcb50253b70693f2813f4b46115156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1f:e2:f1:f4:c6:4d:90:ef:06:5b:58:f9:7d:
71:19:7c:f3:e0:a1:05:c4:83:d9:cd:7b:a2:f4:ba:
73:7d:36:08:a2:f3:7e:52:c1:3d:76:ed:37:ec:ae:
5b:4a:87:60:2c:1b:35:ac:5e:0f:38:2f:f5:f1:ff:
7b:9a:f6:46:76:fd:28:49:b2:9a:94:92:8a:f0:c8:
5d:c3:12:88:9c:d2:fa:57:3d:04:cf:87:a3:77:b4:
74:0a:50:47:a9:98:4f:d5:5f:c2:13:f5:d1:b7:eb:
9f:4a:f9:64:99:cb:d2:43:0f:c6:04:7c:5b:99:ff:
58:40:7d:31:b3:67:15:e4:2e:fe:0c:21:b2:2a:71:
fc:6b:45:c4:b6:54:34:71:3b:ce:a4:40:a1:f6:b2:
91:ca:8d:04:54:7d:94:0d:45:be:f5:d2:46:20:34:
47:03:df:ea:dd:f8:45:e7:d4:99:79:a2:82:f7:2e:
fc:a2:6b:56:ae:3c:ac:b2:6f:04:41:42:12:e3:af:
46:29:be:fa:35:cf:09:ca:36:de:6c:bc:89:3f:29:
22:59:85:7b:2a:9f:9d:66:56:af:dc:8b:0f:17:a7:
db:30:a6:d5:43:35:ac:7d:98:28:8c:68:e6:1e:7f:
c9:5c:1d:2a:d6:69:f7:50:d0:f3:8f:b0:ad:68:2d:
02:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:8C:CD:FE:22:BC:B5:02:53:B7:06:93:F2:81:3F:4B:46:11:51:56
X509v3 Authority Key Identifier:
keyid:EB:51:35:9C:99:89:B9:63:E9:59:4C:19:29:C8:20:36:7D:E3:22:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61E1nJmJuWPpWUwZKcggNn3jIt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/6IzN_iK8tQJTtwaT8oE_S0YRUVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/61E1nJmJuWPpWUwZKcggNn3jIt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.41.255.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ca:2b:63:1b:ae:b7:37:26:df:a6:bd:d7:cb:07:1b:8b:7a:
c6:27:50:cc:8a:f4:29:47:9b:72:7f:59:dc:8d:72:96:2a:49:
88:bb:ec:29:86:05:a6:c7:a4:fa:0d:a4:a5:80:e2:24:be:e7:
29:6b:aa:b7:34:0c:c8:f3:1b:0a:ef:4d:5e:d0:04:02:9e:c1:
7d:cc:8f:58:07:4b:89:59:93:de:bb:cb:e4:46:1c:04:75:97:
22:b3:42:e9:15:7b:92:24:f6:fa:80:93:ca:3f:78:e0:1e:de:
ed:03:73:49:b1:02:ad:8c:23:72:bd:f2:42:b7:3c:68:0d:c2:
3c:1b:6b:bb:c4:15:29:ba:7e:fe:a7:6d:0b:fd:36:f1:18:62:
a8:91:ea:09:e4:8b:6e:c4:87:32:37:15:23:45:f3:3e:bb:be:
dc:fa:b2:cd:88:5f:4b:29:ff:46:98:00:62:cb:30:c5:53:1e:
da:82:e9:41:0c:a4:76:9a:61:d0:1b:06:c4:ce:ae:fc:7a:c6:
29:72:e5:09:c8:50:8b:fc:ac:06:56:cf:9e:3e:ff:a8:2b:dc:
f9:7a:84:86:60:b9:e0:e4:2d:7f:f9:a5:0f:11:4f:d6:d7:8f:
8e:37:3f:84:93:e2:0e:53:81:d2:1b:3c:02:19:e0:4b:b1:b4:
4f:b1:ef:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:20 2025 by rpki-client