Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/8eCo11r_MC95cHRYaFduyQxnW5k.roa
File: 8eCo11r_MC95cHRYaFduyQxnW5k.roa (raw, json)
Hash identifier: OBBro1LVFM+ura1VYBI3xNsKXYYXYOgpibCX3GIENkg=
Subject key identifier: F1:E0:A8:D7:5A:FF:30:2F:79:70:74:58:68:57:6E:C9:0C:67:5B:99
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 0942D503
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/8eCo11r_MC95cHRYaFduyQxnW5k.roa
Signing time: Thu 21 Apr 2022 13:50:57 +0000
ROA not before: Thu 21 Apr 2022 13:50:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208099
IP address blocks: 194.124.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155374851 (0x942d503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Apr 21 13:50:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1e0a8d75aff302f7970745868576ec90c675b99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:b1:0f:39:40:0d:aa:7e:a8:fc:97:40:7e:
f1:f6:dd:3d:a3:9b:ba:8d:28:2e:77:bd:41:ec:f0:
c9:1f:61:bb:f1:09:fc:dc:22:66:3b:25:5a:80:77:
ad:79:b2:48:ce:ea:52:8c:ab:63:89:49:31:c5:d7:
fc:0a:7d:78:8d:01:ae:bc:20:9b:61:19:60:1d:f2:
4e:f9:13:17:c3:be:c3:8e:28:92:82:ad:90:1c:4f:
91:09:fa:36:59:42:4c:d7:89:c7:01:26:02:46:1c:
c2:31:ad:bf:1c:80:43:ec:82:4a:4c:b0:38:37:46:
83:87:66:11:33:83:ad:ea:2d:4c:ee:81:a3:4d:59:
82:a0:c5:75:de:c3:d9:0a:cd:a8:ad:43:63:bb:20:
42:bc:e6:8e:0d:43:c4:49:3c:a9:04:53:8a:8c:c0:
f9:47:3f:40:12:c4:aa:a9:a0:9c:82:7d:e7:b6:23:
da:4d:6f:8c:33:41:11:c6:c7:e7:46:b5:44:9f:e4:
1b:1c:4b:1d:ba:b3:4d:5d:e0:ff:69:5c:da:d2:97:
2e:3b:ab:76:02:c2:55:15:fb:fa:fc:0a:4d:39:f0:
65:27:77:1a:c3:ad:29:c2:88:25:2e:01:bd:5c:77:
8f:4f:24:86:e5:fa:d5:f2:4a:f1:92:9b:49:74:f6:
7c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E0:A8:D7:5A:FF:30:2F:79:70:74:58:68:57:6E:C9:0C:67:5B:99
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/8eCo11r_MC95cHRYaFduyQxnW5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.39.0/24
Signature Algorithm: sha256WithRSAEncryption
84:8f:e4:e9:64:21:10:88:15:d9:c7:b6:b7:2d:fc:a0:0a:38:
0c:86:02:b9:3e:0d:44:c9:0c:c0:04:91:ec:50:53:a7:f4:a9:
8a:29:6d:cd:d7:ec:4f:3c:40:2c:ed:11:d8:4a:5f:e5:48:87:
d8:0e:12:2e:db:6e:24:7f:84:e2:3d:43:a2:f1:16:b8:51:7f:
a7:79:9a:2c:3b:07:7f:46:23:4d:1e:95:3a:e4:94:8c:b6:9b:
89:25:53:79:87:d6:e0:f3:cf:86:6a:d1:e4:24:c0:fe:30:17:
ad:92:4e:02:bf:7c:12:2e:73:49:3d:4d:c5:de:d5:94:96:16:
fb:26:88:50:55:83:2f:8e:73:af:a1:9b:5d:fe:b7:c2:49:0f:
8a:02:4d:40:0e:a3:10:69:b6:a4:70:cd:f3:8a:70:16:2c:c5:
c9:6d:66:ff:ba:9d:5b:29:2b:50:cf:42:f1:78:4f:b2:52:9e:
e3:38:e5:a1:ad:31:ea:ec:85:26:e6:d5:e0:4a:a8:20:e5:b1:
b7:c5:cf:a8:12:c3:29:20:10:c4:bf:71:42:2d:17:b5:70:be:
97:55:b7:68:27:dc:ee:9b:0d:92:7b:50:f0:cf:46:dd:4a:e1:
2d:a6:70:36:dd:ae:85:54:83:0d:11:03:07:49:af:72:3c:6e:
87:9c:a6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org