Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/6KIxk_Q1hFhEdS3CHaz4Mpo5ACc.roa
File: 6KIxk_Q1hFhEdS3CHaz4Mpo5ACc.roa (raw, json)
Hash identifier: k8JTGyu2AktCwMWooqC5Iluw2GojlXC47AOV5UixxTM=
Subject key identifier: E8:A2:31:93:F4:35:84:58:44:75:2D:C2:1D:AC:F8:32:9A:39:00:27
Certificate issuer: /CN=af935603e52e831537716d458b360192f99a3689
Certificate serial: 05AEE3
Authority key identifier: AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/6KIxk_Q1hFhEdS3CHaz4Mpo5ACc.roa
Signing time: Wed 26 Jan 2022 12:01:11 +0000
ROA not before: Wed 26 Jan 2022 12:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.49.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372451 (0x5aee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af935603e52e831537716d458b360192f99a3689
Validity
Not Before: Jan 26 12:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8a23193f435845844752dc21dacf8329a390027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:25:77:ac:f1:f9:d2:eb:2f:b1:09:86:fc:5b:
96:46:78:f7:64:48:cb:43:c6:2f:cd:4e:51:f0:1a:
26:51:58:ec:b9:0b:c9:9b:09:3c:d4:3d:cb:28:21:
66:fc:59:26:56:15:9d:4c:9c:68:21:52:58:12:df:
f5:b6:8b:c9:fc:20:32:86:f4:98:85:8b:cc:8a:5d:
f3:9f:b6:52:00:c9:70:1f:35:73:98:19:6d:7e:86:
4c:d1:86:d1:2e:77:9a:4e:c9:66:d0:05:6e:b7:a9:
a4:1e:2d:c5:f2:f6:7f:63:58:a8:7e:85:02:0b:7d:
9c:43:0b:09:26:08:58:cd:14:6f:ce:8b:79:3b:40:
67:9f:f2:7f:23:ff:4c:c4:65:7e:45:8a:5a:cf:1e:
6e:ad:95:e5:85:e8:a0:8a:da:15:39:10:d9:12:59:
ae:ec:28:ef:a8:16:b6:52:06:9c:d3:50:1c:46:9b:
05:c1:5e:54:71:a5:ad:8a:89:36:dd:e7:82:74:ce:
8d:a2:3e:5b:c2:a2:7b:bb:e6:79:dc:ec:ec:a7:ce:
6e:85:4f:a8:01:67:62:e2:49:7f:df:28:b6:e5:dd:
56:12:7d:6b:45:a9:2b:e1:32:3c:1b:2b:e1:70:a3:
6c:1e:ed:96:c8:65:66:74:04:6b:b9:01:a4:23:fc:
d6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A2:31:93:F4:35:84:58:44:75:2D:C2:1D:AC:F8:32:9A:39:00:27
X509v3 Authority Key Identifier:
keyid:AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/6KIxk_Q1hFhEdS3CHaz4Mpo5ACc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/r5NWA-UugxU3cW1FizYBkvmaNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.132.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:fc:54:d7:c8:f6:e2:28:a0:86:a8:31:d2:d1:84:23:2a:df:
f6:2b:6f:db:32:b7:41:4a:26:82:0d:33:f4:49:85:18:0e:c6:
99:aa:2f:37:56:37:82:2f:0b:44:64:ab:e8:cc:43:d4:ae:ac:
28:ec:1d:07:9c:b0:16:fe:fa:d4:51:24:00:35:42:1b:5b:13:
e9:b8:22:54:b5:ad:39:31:c5:39:42:12:43:e3:4b:8d:4d:4f:
e7:1e:43:f0:ba:b4:2a:b2:47:09:6d:f1:2d:fd:35:9c:72:6d:
43:d6:79:1e:b7:49:f4:ca:a8:7d:1d:89:cf:42:5c:df:5d:94:
ac:28:c6:3d:2e:48:24:17:a1:36:a0:89:b8:e9:22:1d:59:35:
46:3b:0a:4c:7c:37:f0:0b:63:13:af:e9:c6:d2:57:3b:a6:5d:
79:14:39:af:7f:8c:51:b3:c6:ed:b4:6f:99:9a:c5:31:99:01:
48:ba:a5:12:d3:dc:cf:59:3e:51:f3:61:ad:53:4d:e8:59:59:
76:03:73:c4:27:7d:b6:f1:91:6e:17:ef:bf:2b:88:26:7a:13:
84:39:cb:1e:d7:75:6b:c8:70:59:a4:77:6c:a3:49:4a:69:26:
64:3a:31:6e:44:4d:83:66:d6:d7:e2:18:fe:4b:ef:44:5d:fa:
5b:43:2d:36
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDBa7jMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGFm
OTM1NjAzZTUyZTgzMTUzNzcxNmQ0NThiMzYwMTkyZjk5YTM2ODkwHhcNMjIwMTI2
MTIwMTExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlOGEyMzE5M2Y0MzU4
NDU4NDQ3NTJkYzIxZGFjZjgzMjlhMzkwMDI3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA8iV3rPH50usvsQmG/FuWRnj3ZEjLQ8YvzU5R8BomUVjsuQvJ
mwk81D3LKCFm/FkmVhWdTJxoIVJYEt/1tovJ/CAyhvSYhYvMil3zn7ZSAMlwHzVz
mBltfoZM0YbRLneaTslm0AVut6mkHi3F8vZ/Y1iofoUCC32cQwsJJghYzRRvzot5
O0Bnn/J/I/9MxGV+RYpazx5urZXlheigitoVORDZElmu7CjvqBa2Ugac01AcRpsF
wV5UcaWtiok23eeCdM6Noj5bwqJ7u+Z53Ozsp85uhU+oAWdi4kl/3yi25d1WEn1r
Rakr4TI8GyvhcKNsHu2WyGVmdARruQGkI/zWPwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFOiiMZP0NYRYRHUtwh2s+DKaOQAnMB8GA1UdIwQYMBaAFK+TVgPlLoMVN3Ft
RYs2AZL5mjaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cjVOV0EtVXVneFUzY1cxRml6WUJrdm1hTm9rLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mYy8zMDAxYWQtZGU5MC00MzYwLTgxMWYtMGEwZDA1ZWQwYzZiLzEv
NktJeGtfUTFoRmhFZFMzQ0hhejRNcG81QUNjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8z
MDAxYWQtZGU5MC00MzYwLTgxMWYtMGEwZDA1ZWQwYzZiLzEvcjVOV0EtVXVneFUz
Y1cxRml6WUJrdm1hTm9rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuTGEMA0GCSqGSIb3DQEBCwUAA4IB
AQAu/FTXyPbiKKCGqDHS0YQjKt/2K2/bMrdBSiaCDTP0SYUYDsaZqi83VjeCLwtE
ZKvozEPUrqwo7B0HnLAW/vrUUSQANUIbWxPpuCJUta05McU5QhJD40uNTU/nHkPw
urQqskcJbfEt/TWccm1D1nket0n0yqh9HYnPQlzfXZSsKMY9LkgkF6E2oIm46SId
WTVGOwpMfDfwC2MTr+nG0lc7pl15FDmvf4xRs8bttG+ZmsUxmQFIuqUS09zPWT5R
82GtU03oWVl2A3PEJ3228ZFuF++/K4gmehOEOcse13VryHBZpHdso0lKaSZkOjFu
RE2DZtbX4hj+S+9EXfpbQy02
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:43 2024 by rpki-client on console-fra.rpki-client.org