Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/EGLFdFMFbHfJs3gcUlw6RDcUU_I.roa
File: EGLFdFMFbHfJs3gcUlw6RDcUU_I.roa (raw, json)
Hash identifier: 9QDMzxDhy4JGcMVRn+fqfgWpHxusCmGrpnXZHd1wI5g=
Subject key identifier: 10:62:C5:74:53:05:6C:77:C9:B3:78:1C:52:5C:3A:44:37:14:53:F2
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1871DB3C
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/EGLFdFMFbHfJs3gcUlw6RDcUU_I.roa
Signing time: Wed 09 Feb 2022 16:28:39 +0000
ROA not before: Wed 09 Feb 2022 16:28:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4755
IP address blocks: 212.5.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410114876 (0x1871db3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Feb 9 16:28:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1062c57453056c77c9b3781c525c3a44371453f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ab:18:49:3b:6f:27:fb:68:96:3f:9a:db:9b:
d2:ae:9c:42:1e:30:39:fc:8d:ac:cb:36:ea:34:ff:
a2:6a:38:37:13:42:05:28:ad:29:f4:f5:fb:46:29:
8d:97:f2:b5:61:6a:4c:ac:77:70:55:e3:8b:6d:4e:
d1:13:ee:9d:3d:de:79:2f:dd:1e:74:58:8e:2e:92:
f5:19:54:d0:b5:16:f3:e4:11:02:ff:2e:98:85:a3:
0b:fe:37:08:92:87:9d:92:67:72:a7:05:58:f0:08:
bb:58:e6:4e:27:da:89:1e:4f:f6:8a:f7:49:1d:23:
fc:d3:cb:ef:3f:32:6c:62:b5:91:6a:da:3d:0c:59:
9f:bf:20:a9:55:58:47:14:7a:b2:9b:21:32:53:9b:
01:8b:a1:52:a8:1d:f6:40:93:d9:c5:ef:39:bc:37:
7b:0c:f1:ee:4b:f3:97:53:ee:80:75:4c:fc:78:cb:
44:43:74:a6:72:72:e1:fb:e8:fc:44:ca:e6:3d:91:
94:d9:25:08:ef:fa:83:ad:46:62:26:eb:d0:5c:5d:
0e:87:2b:c1:d1:bc:bc:28:15:2d:ea:43:c6:e9:1b:
84:58:b8:85:53:5f:9d:7b:cf:38:e8:57:f6:b9:3c:
bb:3d:fc:a1:b6:9a:e3:8c:37:a3:15:82:a0:9e:92:
a4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:62:C5:74:53:05:6C:77:C9:B3:78:1C:52:5C:3A:44:37:14:53:F2
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/EGLFdFMFbHfJs3gcUlw6RDcUU_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.156.0/24
Signature Algorithm: sha256WithRSAEncryption
90:60:98:7b:2d:8b:b2:58:14:ba:ca:0e:1c:77:96:35:23:92:
a6:a5:74:45:86:7a:14:2d:ca:e9:9c:69:a3:da:f9:90:fd:5f:
cc:e5:89:d5:41:a8:13:7a:0c:4c:f6:de:64:14:01:57:54:0b:
55:38:1b:52:08:d6:48:c9:fa:28:46:1d:49:26:dd:ae:2b:7a:
80:ee:1b:25:64:14:a1:59:86:b4:54:b0:9f:ef:45:84:7b:9e:
af:0a:a9:5c:2b:2f:58:c6:ba:1a:b0:b4:d5:6c:3f:58:01:c8:
66:0e:9b:53:3f:87:fb:4b:99:2f:b0:5b:68:11:d7:a2:06:0c:
b0:95:2c:ba:61:01:0b:4b:78:4e:d4:b1:80:b1:a8:e2:46:db:
be:26:b3:7c:da:2d:2d:7a:20:1c:6e:0d:3d:fb:6f:f1:08:a1:
18:26:79:8d:e5:71:fb:24:d3:b3:fe:7d:3b:26:f1:63:bd:1f:
49:cf:9b:50:ef:62:79:60:79:9f:a2:99:56:b6:35:a5:d8:e1:
b9:e6:38:f6:86:af:76:79:fe:5e:cb:41:9f:ae:ec:3d:a5:9c:
df:2b:5a:73:ac:0a:6c:5b:60:c8:29:31:75:89:ba:fe:06:50:
9d:90:9a:2a:35:0f:22:96:f0:b3:14:9e:64:cb:11:4f:72:b9:
07:b3:92:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org