Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/4291a2-03a9-4195-b1a7-3f40547e52d1/1/6j_4het7N54GJDxIbHXXp0LQwOo.roa
File: 6j_4het7N54GJDxIbHXXp0LQwOo.roa (raw, json)
Hash identifier: ojHVB/YMXZTPtBueFG2f0bZzw09DH/nRWaYdSzoHlzM=
Subject key identifier: EA:3F:F8:85:EB:7B:37:9E:06:24:3C:48:6C:75:D7:A7:42:D0:C0:EA
Certificate issuer: /CN=b38b25ad7c96589e4a8caa5fa4892cc4dfcc7b53
Certificate serial: 07E50235
Authority key identifier: B3:8B:25:AD:7C:96:58:9E:4A:8C:AA:5F:A4:89:2C:C4:DF:CC:7B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4slrXyWWJ5KjKpfpIksxN_Me1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/4291a2-03a9-4195-b1a7-3f40547e52d1/1/6j_4het7N54GJDxIbHXXp0LQwOo.roa
Signing time: Sat 01 Jan 2022 06:04:22 +0000
ROA not before: Sat 01 Jan 2022 06:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39053
IP address blocks: 193.176.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132448821 (0x7e50235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38b25ad7c96589e4a8caa5fa4892cc4dfcc7b53
Validity
Not Before: Jan 1 06:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea3ff885eb7b379e06243c486c75d7a742d0c0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d7:a6:05:14:b1:69:7a:76:8b:82:97:e0:8e:
d8:6d:65:0f:7e:83:43:a2:aa:c5:72:4a:fc:c9:cf:
2d:bc:3f:51:fa:4b:92:61:5f:e5:6b:25:7c:94:c1:
f9:46:10:21:c8:2b:96:1c:23:3a:34:05:90:6c:d6:
e4:e7:9c:3b:33:6e:b4:80:88:23:d6:d2:ef:a8:6d:
c1:77:9e:68:5b:ad:47:70:ec:45:24:2e:4f:64:05:
e6:12:e8:95:5c:d2:d6:d7:ec:a4:ce:fa:35:85:e1:
dd:d3:14:5e:71:2a:81:db:5c:17:89:c8:0a:22:d3:
29:4a:c9:55:df:2d:20:2d:26:08:e8:d7:b2:e1:45:
87:45:0a:7b:ef:4c:6a:82:af:3b:27:ab:56:34:23:
9b:80:7c:89:50:4b:1a:1b:5e:f8:42:a4:32:75:35:
0e:32:ec:a4:45:f6:98:fd:41:73:38:bf:c8:6d:c8:
e2:8c:40:35:96:90:95:d7:41:37:8c:52:0f:7d:92:
9d:db:a8:6f:92:cb:a0:36:c4:02:82:e3:5f:14:08:
f2:7a:5f:2b:ed:a0:82:10:ba:fd:bd:95:be:79:50:
c6:0b:8d:39:34:1f:50:a0:3a:17:b6:c1:27:8c:64:
a7:6b:38:bc:63:fd:25:6d:ed:51:85:9c:7f:e0:49:
a0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:3F:F8:85:EB:7B:37:9E:06:24:3C:48:6C:75:D7:A7:42:D0:C0:EA
X509v3 Authority Key Identifier:
keyid:B3:8B:25:AD:7C:96:58:9E:4A:8C:AA:5F:A4:89:2C:C4:DF:CC:7B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4slrXyWWJ5KjKpfpIksxN_Me1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4291a2-03a9-4195-b1a7-3f40547e52d1/1/6j_4het7N54GJDxIbHXXp0LQwOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4291a2-03a9-4195-b1a7-3f40547e52d1/1/s4slrXyWWJ5KjKpfpIksxN_Me1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.68.0/22
Signature Algorithm: sha256WithRSAEncryption
68:98:45:6d:8f:4a:e5:21:e6:db:5e:53:6b:a6:e0:2a:d0:90:
7a:bc:e0:9d:97:5e:e1:0d:6e:45:ac:d1:f6:7f:0f:24:31:01:
54:9f:d6:1c:56:0c:6a:3d:43:07:ef:f3:72:48:dd:36:14:66:
72:d0:4f:b0:a6:9f:3b:8c:17:13:0f:32:00:f7:41:c9:d0:44:
cc:d4:0b:d1:5a:6e:d0:86:ba:84:28:32:bc:21:80:22:73:cc:
a7:e4:bd:83:64:e3:28:c4:c8:c4:27:22:2e:7d:59:70:cb:eb:
ee:2c:40:b3:a0:a3:65:ad:e9:65:f8:b3:1b:fb:72:63:ad:bd:
0b:5e:c6:dc:a6:24:2c:7a:b4:00:27:d4:4a:62:ae:f9:91:90:
a5:75:b2:2b:31:23:50:8b:d9:0e:c0:fa:16:96:29:10:d9:c6:
74:49:77:f7:e6:36:ff:46:48:05:22:e3:f1:13:67:7a:31:cf:
3a:cd:11:f1:a0:f6:b6:c6:96:c3:52:43:d8:39:a1:79:ac:7f:
b3:34:9d:fa:14:0c:70:93:df:4b:aa:bb:ba:97:14:fb:56:2c:
df:aa:b8:30:b9:06:08:b4:b5:e6:8e:1f:a5:a9:19:62:10:9e:
91:18:1d:7b:a3:6d:10:3a:d9:bc:49:59:1f:a9:b0:f0:fd:b7:
24:36:eb:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:01 2023 by rpki-client on console.sobornost.net