Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/Eh8s6EwUHR-qPtW85CWsM505qeo.roa
File: Eh8s6EwUHR-qPtW85CWsM505qeo.roa (raw, json)
Hash identifier: aWZptO6TT1KRNveuy6we0ZHKOvT2EQYLCS9l6WeFCGM=
Subject key identifier: 12:1F:2C:E8:4C:14:1D:1F:AA:3E:D5:BC:E4:25:AC:33:9D:39:A9:EA
Certificate issuer: /CN=a7112b35c77a4b16fbeb56121c974d59d566784b
Certificate serial: 0756D59E
Authority key identifier: A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/Eh8s6EwUHR-qPtW85CWsM505qeo.roa
Signing time: Sat 01 Jan 2022 04:51:16 +0000
ROA not before: Sat 01 Jan 2022 04:51:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31086
IP address blocks: 193.17.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123131294 (0x756d59e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7112b35c77a4b16fbeb56121c974d59d566784b
Validity
Not Before: Jan 1 04:51:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=121f2ce84c141d1faa3ed5bce425ac339d39a9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4d:13:63:a1:ac:6c:49:c1:20:d0:fc:60:27:
d4:19:46:d9:17:d6:90:1a:3b:f7:d8:43:25:12:30:
3d:f2:98:66:41:e2:b8:a3:8d:cc:3d:6a:85:3d:06:
67:b7:07:a0:40:23:1e:82:9d:b6:6d:d6:e2:d5:fb:
b7:1b:69:fa:83:d1:04:63:cb:43:30:67:36:08:43:
38:07:ba:37:32:d0:d1:95:d6:3f:c3:2f:17:f6:02:
83:d5:5f:d1:56:ee:7b:3f:97:29:32:ac:2d:a4:f4:
31:00:53:68:5c:45:94:ff:7b:ae:7c:a2:6a:39:a9:
49:03:72:f7:01:e6:2d:38:73:3b:c7:a8:70:66:9a:
fa:ae:31:e5:87:f4:a2:fd:6d:e5:33:d8:4d:a5:66:
56:61:78:94:8c:bc:54:6e:d3:8e:0f:a1:41:0f:07:
2e:30:66:3c:16:6f:57:95:25:ca:8f:d6:0c:73:e1:
26:4a:71:18:d5:7d:1f:87:26:5e:68:4d:f6:2f:fd:
12:39:d8:5a:de:49:a7:69:cf:85:e0:b7:61:4f:f1:
a6:01:be:64:eb:3f:cf:2b:75:61:53:c9:0a:1e:25:
60:9a:94:71:41:05:ec:c6:f6:6a:6b:dc:d5:41:fc:
2d:02:df:03:41:a4:bb:d8:e1:3a:36:ee:6e:4e:cd:
aa:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1F:2C:E8:4C:14:1D:1F:AA:3E:D5:BC:E4:25:AC:33:9D:39:A9:EA
X509v3 Authority Key Identifier:
keyid:A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/Eh8s6EwUHR-qPtW85CWsM505qeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.45.0/24
Signature Algorithm: sha256WithRSAEncryption
26:81:fa:45:a5:10:7f:6d:0a:fe:a1:7e:9e:84:01:c4:cb:9c:
19:03:fb:61:22:50:52:f0:7a:8c:30:8b:31:17:4a:6e:73:2f:
b0:86:79:60:a1:1e:bf:bb:d5:88:1a:94:e5:4a:bf:89:ec:29:
be:4c:d4:b6:eb:c0:e2:db:ab:c9:0b:32:16:0d:dc:90:bd:05:
12:ad:5a:58:58:e6:1c:2c:ac:19:72:3d:2f:ec:f9:99:a6:47:
b3:67:37:f8:11:a5:bf:67:76:aa:99:c1:59:48:58:33:88:a0:
a4:e7:97:4e:8d:bf:5f:2c:b8:64:63:dd:2f:df:6c:8f:e5:50:
5a:b1:cf:54:98:0b:08:be:ac:02:cc:f3:28:f3:38:0e:71:41:
22:ac:b5:60:b2:46:ee:fb:98:ea:4f:ae:06:2d:97:2e:9d:79:
12:e7:b6:c9:14:9e:b9:17:08:99:df:e7:34:d6:ae:8f:d9:b0:
c5:eb:6c:81:be:ce:c7:34:1a:89:51:e7:39:0b:a5:73:f5:de:
1f:31:d2:d8:59:32:6a:54:b7:dd:06:91:31:13:3a:f5:5d:bf:
0d:5c:63:99:b5:d9:49:3f:8e:31:a5:49:cf:83:35:2f:a4:82:
59:ac:e9:ef:3b:52:fe:5d:be:cb:cc:72:f5:52:48:39:0f:d2:
7a:bf:d9:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB1bVnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NzExMmIzNWM3N2E0YjE2ZmJlYjU2MTIxYzk3NGQ1OWQ1NjY3ODRiMB4XDTIyMDEw
MTA0NTExNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTIxZjJjZTg0YzE0
MWQxZmFhM2VkNWJjZTQyNWFjMzM5ZDM5YTllYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOBNE2OhrGxJwSDQ/GAn1BlG2RfWkBo799hDJRIwPfKYZkHi
uKONzD1qhT0GZ7cHoEAjHoKdtm3W4tX7txtp+oPRBGPLQzBnNghDOAe6NzLQ0ZXW
P8MvF/YCg9Vf0Vbuez+XKTKsLaT0MQBTaFxFlP97rnyiajmpSQNy9wHmLThzO8eo
cGaa+q4x5Yf0ov1t5TPYTaVmVmF4lIy8VG7Tjg+hQQ8HLjBmPBZvV5Ulyo/WDHPh
JkpxGNV9H4cmXmhN9i/9EjnYWt5Jp2nPheC3YU/xpgG+ZOs/zyt1YVPJCh4lYJqU
cUEF7Mb2amvc1UH8LQLfA0Gku9jhOjbubk7NqvMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQSHyzoTBQdH6o+1bzkJawznTmp6jAfBgNVHSMEGDAWgBSnESs1x3pLFvvr
VhIcl01Z1WZ4SzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3B4RXJOY2Q2U3hiNzYxWVNISmROV2RWbWVFcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmYvNzFjYmU1LTRhMjktNDU2Ny1hMWZhLTc4ODg0MjgyMjViNC8x
L0VoOHM2RXdVSFItcVB0Vzg1Q1dzTTUwNXFlby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmYv
NzFjYmU1LTRhMjktNDU2Ny1hMWZhLTc4ODg0MjgyMjViNC8xL3B4RXJOY2Q2U3hi
NzYxWVNISmROV2RWbWVFcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMERLTANBgkqhkiG9w0BAQsFAAOC
AQEAJoH6RaUQf20K/qF+noQBxMucGQP7YSJQUvB6jDCLMRdKbnMvsIZ5YKEev7vV
iBqU5Uq/iewpvkzUtuvA4turyQsyFg3ckL0FEq1aWFjmHCysGXI9L+z5maZHs2c3
+BGlv2d2qpnBWUhYM4igpOeXTo2/Xyy4ZGPdL99sj+VQWrHPVJgLCL6sAszzKPM4
DnFBIqy1YLJG7vuY6k+uBi2XLp15Eue2yRSeuRcImd/nNNauj9mwxetsgb7OxzQa
iVHnOQulc/XeHzHS2FkyalS33QaRMRM69V2/DVxjmbXZST+OMaVJz4M1L6SCWazp
7ztS/l2+y8xy9VJIOQ/Ser/Z2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:12 2024 by rpki-client on console-fra.rpki-client.org