Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2cab1a-df66-4187-b182-703cab4d0598/1/M9Fv2GmblFA7olgJ4k7r1ttyW6U.roa
File: M9Fv2GmblFA7olgJ4k7r1ttyW6U.roa (raw, json)
Hash identifier: eB47i1Jm1dO/AvfZ4LSinVfxz0libWTJB6Lk1/p7HZ0=
Subject key identifier: 33:D1:6F:D8:69:9B:94:50:3B:A2:58:09:E2:4E:EB:D6:DB:72:5B:A5
Certificate issuer: /CN=6894e1b8da80cac2ad1a2f3f09bf9db5a12486a4
Certificate serial: 380F1736
Authority key identifier: 68:94:E1:B8:DA:80:CA:C2:AD:1A:2F:3F:09:BF:9D:B5:A1:24:86:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJThuNqAysKtGi8_Cb-dtaEkhqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2cab1a-df66-4187-b182-703cab4d0598/1/M9Fv2GmblFA7olgJ4k7r1ttyW6U.roa
Signing time: Sat 01 Jan 2022 08:02:00 +0000
ROA not before: Sat 01 Jan 2022 08:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206610
IP address blocks: 46.29.176.0/21 maxlen: 24
185.28.204.0/22 maxlen: 24
2a02:2290::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940513078 (0x380f1736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6894e1b8da80cac2ad1a2f3f09bf9db5a12486a4
Validity
Not Before: Jan 1 08:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33d16fd8699b94503ba25809e24eebd6db725ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9c:9b:01:88:d3:b8:29:91:26:a0:0f:c9:84:
29:37:ba:16:f9:39:2e:08:13:88:96:37:af:76:eb:
a2:2c:8d:04:8d:15:7a:7a:e8:b8:e3:2f:97:eb:bd:
a9:00:8d:48:33:f9:85:54:69:f5:5e:5f:73:44:a2:
34:69:92:ab:79:18:f5:37:aa:f0:45:86:34:b2:f2:
6f:fc:b4:50:f4:a3:b0:1d:0a:6f:9b:a7:36:44:67:
a2:e9:fc:88:9f:d0:bf:b5:78:d5:8f:2b:b5:c6:36:
93:12:a1:de:e4:d3:5c:39:89:83:7d:0e:dc:aa:a0:
b9:8e:9c:03:de:4d:25:d3:ad:e3:80:01:7f:f0:50:
b1:98:36:9e:f7:df:a0:f9:27:a8:49:42:32:bc:cc:
ed:85:af:75:7d:e6:29:c8:4c:97:42:27:75:b6:5e:
3f:bd:ba:d3:2a:99:88:30:7e:42:35:bf:ab:7f:9c:
4a:f4:69:ff:d9:81:8d:fd:d9:e1:e8:91:d1:e7:a8:
20:c8:53:a0:e6:f9:1f:74:6a:2d:24:f7:2f:11:10:
de:4a:2b:be:3a:20:9c:80:73:5b:21:8d:38:55:35:
8e:46:13:8c:70:68:4f:39:15:27:a8:b4:37:16:c0:
54:84:5f:53:3a:b8:29:5b:5b:2d:11:23:9b:b8:71:
97:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D1:6F:D8:69:9B:94:50:3B:A2:58:09:E2:4E:EB:D6:DB:72:5B:A5
X509v3 Authority Key Identifier:
keyid:68:94:E1:B8:DA:80:CA:C2:AD:1A:2F:3F:09:BF:9D:B5:A1:24:86:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJThuNqAysKtGi8_Cb-dtaEkhqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2cab1a-df66-4187-b182-703cab4d0598/1/M9Fv2GmblFA7olgJ4k7r1ttyW6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2cab1a-df66-4187-b182-703cab4d0598/1/aJThuNqAysKtGi8_Cb-dtaEkhqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.176.0/21
185.28.204.0/22
IPv6:
2a02:2290::/29
Signature Algorithm: sha256WithRSAEncryption
28:14:89:b5:3a:89:4e:5b:f2:98:3e:97:23:f1:39:e3:8f:e5:
b9:a6:c2:30:91:7f:0e:9a:4c:21:01:52:2e:f9:6d:3e:00:b3:
44:de:7b:67:4a:e6:36:5d:b7:b2:a1:10:f0:ab:10:1e:4f:bb:
62:2e:f4:e2:3a:94:b4:c7:a4:e1:dd:d4:1d:13:d8:1a:36:3d:
02:d7:84:ff:e4:54:51:d3:47:7e:30:4d:df:23:78:09:50:9a:
bb:62:79:2f:b3:91:44:84:b0:68:94:ce:84:42:76:33:09:26:
06:07:d2:f8:25:f6:d7:8a:82:08:5c:6f:a5:ad:00:0e:f3:b1:
8a:30:cc:fe:f6:af:92:ae:82:2f:af:65:85:92:97:61:dd:95:
f5:b3:17:09:43:db:d7:c8:6b:c2:cf:45:cb:16:02:95:3e:12:
d9:7e:f2:7d:4b:4c:fe:53:28:ac:ca:7e:d0:29:b4:22:62:57:
50:37:3c:8b:d0:f3:42:be:f6:e5:57:fa:8f:19:a9:85:11:50:
b3:b3:98:20:a3:82:46:9f:ce:d6:a9:8c:a0:9d:2a:e8:1e:32:
1e:70:1d:2c:de:e2:7f:3e:cd:2b:6a:da:3f:13:18:29:2e:6b:
b9:13:c5:66:13:f5:c6:63:3e:dc:51:96:4f:02:c0:27:79:ac:
db:dc:37:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:53 2024 by rpki-client on console-fra.rpki-client.org