Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/EckJUmgykCMroW2GtUsOr3NQSnA.roa
File: EckJUmgykCMroW2GtUsOr3NQSnA.roa (raw, json)
Hash identifier: 2dZuSCVj74vQWfHhZz64aWYEW+NWCQR6FX4BFARJ5Es=
Subject key identifier: 11:C9:09:52:68:32:90:23:2B:A1:6D:86:B5:4B:0E:AF:73:50:4A:70
Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36
Certificate serial: 01207160
Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/EckJUmgykCMroW2GtUsOr3NQSnA.roa
Signing time: Sat 01 Jan 2022 07:03:36 +0000
ROA not before: Sat 01 Jan 2022 07:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210875
IP address blocks: 87.236.160.0/24 maxlen: 24
2a11:4c80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18903392 (0x1207160)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36
Validity
Not Before: Jan 1 07:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11c90952683290232ba16d86b54b0eaf73504a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9e:57:b4:f7:76:f4:42:04:8d:24:02:c9:c9:
0e:4c:cc:c2:d0:d7:5e:32:b0:ef:b8:21:54:93:76:
48:15:19:55:96:2c:8b:10:9e:97:7f:9e:52:3a:59:
75:ba:da:27:4b:ae:57:20:3d:5c:3f:3e:87:5c:7b:
7a:87:90:11:12:03:23:34:a5:26:c0:d4:84:e0:cb:
f5:af:94:ac:69:c2:06:51:63:16:fe:38:3c:e9:c3:
a5:c2:6e:72:86:eb:b2:05:bb:89:c8:58:a3:09:f9:
5f:dd:14:50:90:ef:56:bc:0c:b5:be:63:59:0a:e7:
68:4f:16:54:b6:5c:1a:37:3e:ac:05:2a:1a:cb:09:
72:8f:60:5d:9c:88:74:34:35:9e:f5:33:c2:77:a0:
d0:8a:c1:1e:15:86:47:dc:ce:36:ae:d1:dd:ac:a6:
27:79:ba:ce:fb:fc:3f:e6:98:c7:b6:1a:a7:40:b4:
47:25:51:8c:20:23:d1:1a:1e:d3:47:b0:53:ff:ff:
06:c6:39:d9:2b:9e:1b:ea:dc:83:37:4c:97:2b:6a:
cb:5b:10:2b:ab:d6:6a:0f:de:10:11:45:8a:a7:b6:
d3:ee:fc:28:2c:97:d2:22:5a:0f:69:cb:4e:19:ad:
38:86:ab:15:ad:9e:07:9e:48:b7:0c:da:ce:da:6b:
b0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C9:09:52:68:32:90:23:2B:A1:6D:86:B5:4B:0E:AF:73:50:4A:70
X509v3 Authority Key Identifier:
keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/EckJUmgykCMroW2GtUsOr3NQSnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.160.0/24
IPv6:
2a11:4c80::/29
Signature Algorithm: sha256WithRSAEncryption
24:2a:b8:d1:49:72:d4:97:97:d3:c9:62:3a:85:b7:2d:8b:7a:
0f:89:8d:af:17:48:c6:5d:4e:82:3f:5e:c2:e0:0c:4e:f6:c8:
dd:b9:c2:80:77:9a:0c:4b:32:30:2e:ed:b8:42:60:ce:bb:10:
06:1b:10:d3:ae:22:2e:9d:7f:c4:39:bd:cb:34:fb:6c:a5:99:
cf:e0:d1:ea:70:04:10:ce:c7:7f:24:71:32:57:10:37:7f:33:
8c:ad:94:da:74:4d:c0:61:35:47:e0:9d:88:eb:20:2c:55:11:
1c:64:9b:f7:ee:17:25:fb:b0:b4:d3:eb:60:3d:9d:23:30:8f:
5d:1e:c1:b8:f8:e2:6c:12:1d:b9:a8:ab:56:b1:49:b5:49:9a:
da:9a:fb:77:0a:70:82:6c:1d:a8:f4:23:82:ff:f9:26:22:6e:
14:86:06:0c:fd:d0:a7:00:b9:89:a7:e1:ff:11:85:40:80:a8:
32:6a:c3:82:38:88:cf:31:23:95:73:f9:82:ab:72:77:90:b2:
b5:e9:6e:71:15:8f:25:cb:ee:cc:d4:8e:20:98:46:1a:8e:a6:
50:53:7a:e9:e9:63:65:09:b7:3e:f5:ca:83:12:4f:8b:93:98:
41:f1:7e:fc:d7:a7:63:16:ce:ca:02:d2:af:48:01:f2:94:f1:
0b:8e:20:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:33 2023 by rpki-client on console-fra.rpki-client.org