Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/Eb30He4PWUV2_fitczGzuIrEq6Q.roa
File: Eb30He4PWUV2_fitczGzuIrEq6Q.roa (raw, json)
Hash identifier: CR48TWVnJAfHYbk9YZnfQrX3IcwAEqxaj1MdWczoZLs=
Subject key identifier: 11:BD:F4:1D:EE:0F:59:45:76:FD:F8:AD:73:31:B3:B8:8A:C4:AB:A4
Certificate issuer: /CN=99d3a2d6fad651678e96d24e24d19d71fe380409
Certificate serial: 01847A452A8C077CB333C5888F5AEAE6B93A
Authority key identifier: 99:D3:A2:D6:FA:D6:51:67:8E:96:D2:4E:24:D1:9D:71:FE:38:04:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdOi1vrWUWeOltJOJNGdcf44BAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/Eb30He4PWUV2_fitczGzuIrEq6Q.roa
Signing time: Tue 15 Nov 2022 07:51:03 +0000
ROA not before: Tue 15 Nov 2022 07:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12349
IP address blocks: 164.59.128.0/23 maxlen: 24
164.59.136.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:45:2a:8c:07:7c:b3:33:c5:88:8f:5a:ea:e6:b9:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d3a2d6fad651678e96d24e24d19d71fe380409
Validity
Not Before: Nov 15 07:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11bdf41dee0f594576fdf8ad7331b3b88ac4aba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3f:61:42:4d:88:da:72:4b:17:36:c0:37:82:
c9:6f:e2:cd:e5:1b:b2:cb:1e:17:98:7c:1e:99:85:
c6:68:24:13:eb:6a:1e:91:aa:7b:66:7e:15:2c:a0:
30:46:98:0e:13:81:7a:60:26:e5:6c:e3:5f:2f:90:
8c:ac:36:7b:8f:11:94:68:65:ab:fd:a1:53:3e:14:
fd:3a:57:cf:4c:3f:61:bf:8c:7f:81:6b:61:2c:8f:
e3:6d:61:2a:36:3f:c1:51:58:19:9d:00:f6:02:9c:
ac:1a:a6:59:9d:17:74:5c:2c:12:ec:5e:e0:41:1f:
37:05:64:a3:40:16:65:3e:30:91:42:d9:63:a9:e1:
f7:85:a2:d6:12:e0:95:ec:ae:1e:34:37:e5:54:9c:
0c:fb:e5:8f:54:48:59:3e:b7:80:d0:53:bf:e6:34:
b3:7b:ae:40:86:99:5f:b4:30:17:dd:25:bc:09:e2:
2a:71:79:c3:18:26:5a:d9:81:31:da:e9:3e:91:bc:
45:44:1c:ff:b6:8b:1f:55:a7:ad:67:ae:c5:4f:a5:
a4:55:12:56:9f:f7:d6:13:47:cb:68:b3:ec:a0:52:
15:e3:ca:03:e3:ca:27:00:52:4e:d0:6c:63:de:77:
8f:22:41:f1:62:cd:59:ab:72:ac:fb:14:3f:43:9d:
e5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BD:F4:1D:EE:0F:59:45:76:FD:F8:AD:73:31:B3:B8:8A:C4:AB:A4
X509v3 Authority Key Identifier:
keyid:99:D3:A2:D6:FA:D6:51:67:8E:96:D2:4E:24:D1:9D:71:FE:38:04:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdOi1vrWUWeOltJOJNGdcf44BAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/Eb30He4PWUV2_fitczGzuIrEq6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/410d94-af78-4397-adfe-48d738c5947d/1/mdOi1vrWUWeOltJOJNGdcf44BAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.59.128.0/23
164.59.136.0/21
Signature Algorithm: sha256WithRSAEncryption
38:6a:53:d5:43:84:33:05:7b:57:44:6f:3f:45:42:25:4e:f8:
4f:08:83:eb:1d:13:ec:2b:e2:91:f2:f7:60:69:95:7f:53:61:
02:53:93:78:44:13:3f:55:f9:75:1c:1b:3a:42:90:88:ad:46:
dc:20:70:5a:d7:42:48:df:92:f1:cc:ed:2c:e3:c4:c2:03:27:
7d:1a:c8:03:2d:44:6b:df:78:89:cd:23:57:6a:86:70:f8:cf:
9f:db:0b:30:6a:7e:9a:f9:eb:39:35:19:ec:c4:5b:73:5a:4f:
38:4c:70:9d:44:95:ef:4d:82:d8:03:26:a1:1d:83:1e:14:83:
9d:15:91:74:6a:13:93:d6:8f:4e:48:cc:bf:0f:47:68:dc:f4:
2a:85:8d:4b:92:07:0d:23:6e:67:0a:1c:2f:8a:bb:42:f0:41:
3b:05:50:9a:b5:8f:cb:03:ab:78:a2:c7:a3:22:29:a7:3b:93:
db:6f:57:50:7c:f6:ec:54:9a:0d:39:08:cf:7d:49:6b:d9:08:
3d:9d:28:ab:86:d2:bc:6b:1c:a3:b1:be:c4:2e:69:70:9b:ac:
4c:59:da:5a:50:06:1a:72:6c:05:bc:e8:82:72:d9:c9:66:04:
6e:bf:3f:ad:12:c7:67:7d:b6:3c:44:d5:ce:d3:3b:f5:71:dd:
45:0d:97:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:33 2024 by rpki-client on console-ams.rpki-client.org