Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/eqBjQOGgPArLsiFjDLWRPJiAVBE.roa
File: eqBjQOGgPArLsiFjDLWRPJiAVBE.roa (raw, json)
Hash identifier: E3gXdsxjYXMtUVxHvrS/Fi8IyDo0YiIaIyfRH0yKnjg=
Subject key identifier: 7A:A0:63:40:E1:A0:3C:0A:CB:B2:21:63:0C:B5:91:3C:98:80:54:11
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 38111A95
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/eqBjQOGgPArLsiFjDLWRPJiAVBE.roa
Signing time: Sat 01 Jan 2022 02:57:33 +0000
ROA not before: Sat 01 Jan 2022 02:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39419
IP address blocks: 195.141.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940645013 (0x38111a95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jan 1 02:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aa06340e1a03c0acbb221630cb5913c98805411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bf:38:df:78:77:1c:3d:02:4e:c8:eb:af:f1:
37:63:be:50:35:d6:41:ae:d3:4f:6d:a5:33:2a:f5:
d8:92:e3:9a:7d:c9:a4:eb:e6:8f:0a:01:18:45:ee:
fa:1c:d6:54:22:1c:95:f1:dc:48:91:9d:c5:a3:24:
86:e4:58:b9:6f:07:c5:19:65:8c:1b:2e:be:ad:6b:
7d:0b:20:55:c0:49:b2:8a:65:a1:2c:72:05:15:9d:
0c:75:7b:92:d7:c0:6b:9d:f0:66:7b:e5:ce:05:bd:
e7:92:c3:5d:9e:92:ee:9b:13:13:c0:66:31:45:84:
50:9f:93:8d:c3:68:79:c5:49:20:65:7a:56:a9:32:
f7:7a:6b:f5:19:69:83:9e:ce:9e:f2:eb:7e:8f:df:
3a:13:72:4c:cd:22:a5:f0:ac:02:b5:28:ed:a4:7e:
e1:ac:51:da:77:32:60:77:36:34:db:7d:47:11:b8:
b2:40:a5:9e:29:07:78:1c:fd:9d:ca:cc:0e:ec:80:
aa:4a:4c:a5:9c:94:96:16:b2:f7:a2:de:d7:f6:b7:
d5:99:02:54:fd:fc:53:0b:5e:71:87:ea:45:77:9e:
40:9b:f7:79:23:8e:17:d4:7d:e4:7d:42:3f:05:2e:
87:1e:18:61:cb:c3:04:99:20:f5:ed:c6:42:3f:52:
27:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A0:63:40:E1:A0:3C:0A:CB:B2:21:63:0C:B5:91:3C:98:80:54:11
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/eqBjQOGgPArLsiFjDLWRPJiAVBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.141.249.0/24
Signature Algorithm: sha256WithRSAEncryption
66:12:08:91:22:5f:a2:98:04:6a:de:be:14:41:ab:ed:13:71:
0e:ba:c7:40:10:9e:91:a8:26:5d:ad:dd:15:f1:cc:3e:cc:86:
2c:b0:0b:b9:d3:1d:21:0c:f2:6e:aa:65:d7:b6:5c:b5:8c:72:
39:17:e3:68:f4:c2:5d:c7:97:a8:fa:e8:09:24:b3:d7:ac:a3:
22:73:58:d1:fe:dc:2c:57:7a:c8:20:e0:4c:8b:ab:1f:72:70:
7e:64:c7:75:ab:9c:b0:14:34:05:43:e8:ac:54:f8:ce:bc:32:
94:7d:8d:5a:26:48:2f:8c:de:f8:4b:c2:57:9d:a7:5b:07:76:
3b:c7:3f:48:ab:1d:2f:54:95:30:19:10:f6:d6:8d:00:c8:79:
ce:95:79:62:06:52:f5:d2:cf:29:90:a2:62:e5:88:29:a0:5a:
d4:2b:50:33:14:b0:cb:81:76:ba:89:f5:35:81:12:0c:2c:3c:
12:7b:ef:4c:bd:38:70:ee:25:29:87:24:9c:52:5b:7b:bd:97:
98:39:aa:63:03:eb:56:19:5e:5c:bb:27:84:b6:be:79:8f:73:
2c:c1:c9:41:5a:2f:88:ad:bd:11:60:70:f5:19:ea:a7:e7:89:
34:94:76:c6:4e:b8:cb:c3:6d:d2:ea:11:eb:b1:95:bf:4c:f8:
69:64:fa:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:53 2024 by rpki-client on console-ams.rpki-client.org