Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/EJ14RY5MPWxXPKTbmrUvEQgsYZo.roa
File: EJ14RY5MPWxXPKTbmrUvEQgsYZo.roa (raw, json)
Hash identifier: 04/mQCx/Sh1RLo0w5NyATayZzJkk0pM49NmWCGs+Z6Y=
Subject key identifier: 10:9D:78:45:8E:4C:3D:6C:57:3C:A4:DB:9A:B5:2F:11:08:2C:61:9A
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C98884
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/EJ14RY5MPWxXPKTbmrUvEQgsYZo.roa
Signing time: Sat 01 Jan 2022 07:04:35 +0000
ROA not before: Sat 01 Jan 2022 07:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 193.38.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147425412 (0x8c98884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=109d78458e4c3d6c573ca4db9ab52f11082c619a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8b:f0:20:1f:63:bc:5c:db:c7:d8:f9:f9:5a:
3c:81:22:0c:4b:04:fa:b6:1b:ce:64:37:0f:92:a7:
aa:51:f9:48:04:46:e0:a3:c3:05:a9:0f:18:30:f1:
a2:5a:a1:48:d0:70:bb:01:85:41:db:45:80:16:a8:
87:e1:89:b7:e0:f5:4c:93:04:b0:5c:3b:66:cd:bb:
25:3e:9b:89:51:0b:36:6f:1c:cf:5d:7c:66:76:8c:
db:b7:e6:e2:67:f3:c4:54:b6:f6:d2:09:c3:91:95:
36:fb:7d:b2:b1:eb:ab:70:bb:9d:37:e9:af:ad:60:
31:2c:b8:99:9f:1a:dc:da:bf:e9:18:15:0b:de:a4:
71:89:12:47:bb:be:6e:0d:18:62:6c:13:52:99:3b:
c5:f6:dc:ff:14:c7:f2:e5:d3:da:ea:8d:e8:b2:43:
b5:0c:d2:b6:f9:97:de:7c:2c:a6:b2:ee:9a:bc:8e:
7b:46:e6:2a:11:a2:8b:51:9e:57:00:4f:bc:68:a6:
e6:74:09:41:49:cf:a7:3a:6b:e1:5a:cf:f1:46:24:
ee:92:72:89:28:37:5d:fe:d3:56:c4:e1:be:97:5e:
d0:af:90:9f:7b:4f:fd:b7:17:fb:a1:97:eb:97:a4:
d7:c0:84:6a:02:1e:a4:31:75:c9:48:18:56:04:7f:
a5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9D:78:45:8E:4C:3D:6C:57:3C:A4:DB:9A:B5:2F:11:08:2C:61:9A
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/EJ14RY5MPWxXPKTbmrUvEQgsYZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.250.0/24
Signature Algorithm: sha256WithRSAEncryption
78:4e:4b:ef:d7:0f:08:b3:a8:7c:95:d5:5a:e8:df:96:06:08:
12:46:8a:f9:21:a3:db:e9:61:0c:48:a0:88:f5:3c:48:dd:d9:
43:69:10:93:dd:68:8b:db:83:91:15:43:55:d2:f3:8d:69:c6:
21:5f:7a:66:03:64:eb:d0:e3:53:cd:dc:c3:15:36:09:5c:cb:
48:a1:c0:aa:ca:26:26:7a:ac:ae:5a:04:73:ce:8e:8f:aa:83:
a1:c6:f6:2f:b6:fc:4b:42:bd:43:7f:32:0d:6d:00:f3:f7:bd:
c4:14:bf:5a:0d:fa:42:7b:ad:3c:c2:17:87:9f:04:d3:de:2c:
c0:99:1f:a1:eb:27:d4:f2:9b:69:fc:8c:96:a5:2d:10:54:e7:
d8:0e:ee:b9:ce:1c:65:03:af:65:a9:b1:3f:2c:e3:b0:ee:77:
91:4a:2e:15:b2:67:72:57:e5:9c:a4:1c:e6:7a:7e:3e:5f:4c:
17:6f:80:90:df:8b:e1:3c:dd:91:93:54:e6:95:fb:06:8e:28:
01:03:a8:34:8e:b9:f8:40:ad:2d:84:f9:c7:f5:4c:d7:55:d9:
36:8e:4b:56:54:02:a7:fa:82:87:ce:02:ed:7c:0d:92:c1:e1:
8f:9f:d3:f7:c5:db:78:80:db:e0:bb:1a:4c:f4:43:d0:b1:88:
0a:64:77:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org