Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EKp9Bezyob17acNbhsAKFOnRQLg.roa
File: EKp9Bezyob17acNbhsAKFOnRQLg.roa (raw, json)
Hash identifier: 6L1A6JW1ZAq7gSH2q/qI38n1BLKYa3LjgFqFhwLJC3g=
Subject key identifier: 10:AA:7D:05:EC:F2:A1:BD:7B:69:C3:5B:86:C0:0A:14:E9:D1:40:B8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C70909C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EKp9Bezyob17acNbhsAKFOnRQLg.roa
Signing time: Sat 01 Jan 2022 01:02:36 +0000
ROA not before: Sat 01 Jan 2022 01:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49882
IP address blocks: 87.120.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477139100 (0x1c70909c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10aa7d05ecf2a1bd7b69c35b86c00a14e9d140b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ad:f6:19:51:7e:7f:b5:5c:0c:9a:28:f3:fd:
9c:13:ad:b7:d8:1e:c4:e5:0d:f8:26:ed:0a:12:de:
a9:c7:bf:75:ac:b3:78:30:98:a2:4c:a6:aa:04:68:
dc:3e:d6:8f:f8:3d:dd:e0:8a:19:d2:ad:97:a1:42:
fa:08:27:5b:cd:41:d8:10:95:1f:4a:7c:ab:98:83:
99:6a:b0:fe:13:1d:4d:59:94:e0:f3:ec:5e:34:8b:
e9:4d:a3:f1:73:a8:e0:5c:de:b3:04:35:8b:f8:89:
59:bd:6b:bd:e7:51:a3:39:1d:8a:6c:2d:0e:d8:88:
3f:74:4a:f0:0f:73:53:37:b3:83:7e:da:32:70:76:
08:d5:cf:17:ce:eb:da:39:97:e6:bb:48:ee:cd:1c:
69:31:cf:ac:12:cd:45:5e:50:63:da:47:77:c0:22:
6e:9f:cf:ac:b6:fc:a2:2a:d8:11:41:ed:d9:e3:8d:
54:81:ad:55:37:7a:d2:c4:cf:2e:3f:0e:cf:a3:ca:
91:b1:b3:f5:39:0e:8f:59:3f:9c:e8:9e:a7:ed:1a:
85:dd:48:ff:d6:52:57:ee:85:3b:b6:cd:a6:0e:14:
b6:a4:05:95:57:a3:af:c2:94:33:e0:70:76:a5:2d:
d4:0f:64:3b:a3:aa:77:2a:60:6d:be:34:38:9a:76:
b2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AA:7D:05:EC:F2:A1:BD:7B:69:C3:5B:86:C0:0A:14:E9:D1:40:B8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EKp9Bezyob17acNbhsAKFOnRQLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.141.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1e:fe:34:74:84:80:38:01:18:bc:c3:9e:d1:5d:89:66:ff:
9a:b3:53:2e:3d:10:1c:80:db:a4:3a:4e:bd:f6:8c:2b:58:ab:
28:64:69:04:b6:79:eb:2c:b4:a2:ad:a2:07:dc:ec:df:23:3f:
0c:88:f1:5b:7e:79:61:8e:0c:ac:46:b6:ed:b0:ac:c2:e7:4b:
30:b1:ec:6b:90:b5:fa:0d:c1:5b:bd:ea:88:4b:c5:64:86:b4:
2b:6c:81:5e:fc:b5:ca:2e:62:0e:56:20:88:e8:43:73:e5:d5:
b1:93:24:00:56:42:c6:a5:9d:64:08:ff:89:92:7a:5b:de:7e:
87:13:d6:69:33:8e:60:0b:ce:0f:6e:69:95:6d:7c:dd:59:c8:
ac:54:b0:52:65:9b:e2:84:db:a6:4d:3d:c8:89:71:21:18:dd:
ed:e5:52:f8:5c:b3:81:ef:43:0d:58:83:ab:00:e8:87:e3:0e:
49:ad:82:90:0f:dc:55:5d:a0:63:f9:d1:4f:fd:e5:b0:2e:1b:
9e:bc:c9:40:9d:3c:d8:eb:8a:15:30:08:d8:da:65:49:e9:03:
3e:dc:53:bd:64:7c:a0:77:98:a9:f0:b9:c3:b2:b8:63:71:4e:
cf:ba:04:2a:e4:41:5b:3c:76:b4:b2:6a:66:1f:9a:b1:64:79:
27:f6:b4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:33 2023 by rpki-client on console-ams.rpki-client.org