Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/9dd5e3-576f-44a1-a5cc-6509cb5f27f8/1/k-jUJkN-Qu-VInicqfLMzLM6Mak.roa
File: k-jUJkN-Qu-VInicqfLMzLM6Mak.roa (raw, json)
Hash identifier: 67BsW29jL04vjjFVOhfaWcsMNKJcIYvueTQ2PbE9bVE=
Subject key identifier: 93:E8:D4:26:43:7E:42:EF:95:22:78:9C:A9:F2:CC:CC:B3:3A:31:A9
Certificate issuer: /CN=6fa104f6a8978bb16cd05314f98a786e0d0d9564
Certificate serial: 0647D2FE
Authority key identifier: 6F:A1:04:F6:A8:97:8B:B1:6C:D0:53:14:F9:8A:78:6E:0D:0D:95:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6EE9qiXi7Fs0FMU-Yp4bg0NlWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/9dd5e3-576f-44a1-a5cc-6509cb5f27f8/1/k-jUJkN-Qu-VInicqfLMzLM6Mak.roa
Signing time: Sat 01 Jan 2022 08:01:56 +0000
ROA not before: Sat 01 Jan 2022 08:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41327
IP address blocks: 171.22.208.0/22 maxlen: 22
2a09:3e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105370366 (0x647d2fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa104f6a8978bb16cd05314f98a786e0d0d9564
Validity
Not Before: Jan 1 08:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93e8d426437e42ef9522789ca9f2ccccb33a31a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d3:90:cd:c6:fa:b8:d0:d2:ca:03:2b:be:97:
66:b9:20:ca:d7:1a:4a:bd:3e:04:08:b6:fc:42:98:
18:18:10:30:13:e6:7e:75:9e:be:ba:f1:52:8b:a0:
23:6c:5e:84:f7:91:6d:6e:85:79:71:cd:6e:cd:f1:
92:2d:69:3c:2e:59:ce:e4:a0:51:91:1e:00:e3:24:
9a:75:59:86:87:66:a7:70:50:df:ea:ff:9c:f6:76:
a2:25:2a:cb:cf:f4:70:83:14:22:c6:b6:18:fb:87:
15:95:ff:c9:38:ec:cd:69:3b:40:5f:2a:4a:a4:4f:
13:ea:51:3a:70:67:63:12:8e:1e:bb:d0:db:78:61:
16:ba:ca:af:68:c4:e3:a5:c0:70:80:7c:96:d4:22:
17:85:84:37:c7:ad:75:86:9f:83:86:b4:5e:d0:b8:
0b:bb:a2:9e:86:34:ad:60:61:c5:13:34:5a:96:b2:
66:5f:0e:6a:5e:39:ad:b0:76:25:f2:a7:52:12:bd:
82:5e:c9:9d:5b:df:2f:30:e0:53:8d:2e:7e:6a:39:
80:2e:f8:22:6d:8c:ec:59:95:8e:73:a5:e4:cd:76:
10:bc:ab:d3:a8:38:71:b8:a3:5e:65:46:db:c3:95:
51:51:31:2f:c3:ab:78:1d:6e:5a:d8:82:7d:e8:9d:
4d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E8:D4:26:43:7E:42:EF:95:22:78:9C:A9:F2:CC:CC:B3:3A:31:A9
X509v3 Authority Key Identifier:
keyid:6F:A1:04:F6:A8:97:8B:B1:6C:D0:53:14:F9:8A:78:6E:0D:0D:95:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6EE9qiXi7Fs0FMU-Yp4bg0NlWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/9dd5e3-576f-44a1-a5cc-6509cb5f27f8/1/k-jUJkN-Qu-VInicqfLMzLM6Mak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/9dd5e3-576f-44a1-a5cc-6509cb5f27f8/1/b6EE9qiXi7Fs0FMU-Yp4bg0NlWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.208.0/22
IPv6:
2a09:3e40::/29
Signature Algorithm: sha256WithRSAEncryption
5a:7a:ee:cf:df:81:cc:e9:d4:3a:1e:98:bd:7e:64:ed:aa:20:
4b:2b:7b:ae:38:e4:98:e9:c3:f8:5d:67:a6:f0:96:54:00:44:
57:9f:ca:f9:aa:29:76:fd:db:70:36:1f:f1:0d:f7:92:85:19:
ba:79:60:8b:c0:ae:26:06:a0:b5:53:fb:4f:64:b0:85:e3:43:
25:6b:4e:b5:a5:d9:30:23:63:1f:37:92:30:49:e4:b5:e7:88:
38:44:99:11:04:e5:ba:6f:43:ba:ce:25:0f:27:aa:6b:8c:c9:
d4:9e:bc:a1:3e:1c:e6:e4:ca:63:e6:2c:49:bd:81:2f:59:99:
7c:a4:b7:3b:7b:6f:d0:e8:67:36:df:0d:14:6c:39:c9:d7:a7:
25:22:ac:d6:b4:0f:7e:ca:46:ae:07:b0:7d:28:c0:55:f5:b0:
e6:12:cc:67:c3:c0:69:42:2a:f1:0c:d1:19:f3:66:83:e1:25:
09:93:69:3e:76:a8:7e:82:bd:af:d2:c5:03:e4:8a:50:2c:34:
30:71:55:17:33:f0:d2:8e:56:41:64:ff:66:ca:7c:d0:2d:95:
f0:ff:aa:41:57:12:9c:3a:5e:e6:09:e7:fa:e5:d2:b5:36:8c:
65:1d:76:3f:41:4f:6b:6d:60:91:68:3e:c0:15:41:c1:82:d3:
53:56:cc:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:53 2023 by rpki-client on console.sobornost.net