Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/eiGixRHqI7JjRQwVf5Dr-Wvc6Ps.roa
File: eiGixRHqI7JjRQwVf5Dr-Wvc6Ps.roa (raw, json)
Hash identifier: Xjj32DMVQiboRSF5rDG2XkVg30JJ38vG6K2claFKLOI=
Subject key identifier: 7A:21:A2:C5:11:EA:23:B2:63:45:0C:15:7F:90:EB:F9:6B:DC:E8:FB
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA85DAF73F7B05193D21EE246169C4
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/eiGixRHqI7JjRQwVf5Dr-Wvc6Ps.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200088
IP address blocks: 217.149.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:85:da:f7:3f:7b:05:19:3d:21:ee:24:61:69:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a21a2c511ea23b263450c157f90ebf96bdce8fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:2c:8a:37:92:42:2c:84:cb:d7:42:50:96:
6a:a4:39:ac:e1:7f:fa:be:75:e1:f6:e2:68:3d:a5:
55:f1:84:80:5d:e9:c2:03:da:8d:e2:14:0b:bc:fd:
b4:a7:03:b4:dc:69:30:ed:ed:2e:fa:e1:6e:23:37:
20:6e:95:38:cd:5e:a6:a0:c5:a9:45:31:7c:76:e7:
0c:1d:07:34:d7:63:a0:b6:a1:7a:0f:e7:ed:9f:5a:
16:3e:a2:06:ff:29:7b:4e:7f:db:aa:cb:d1:74:07:
e7:ed:cd:fd:a4:19:78:e3:30:d1:cf:c3:dc:1f:d9:
f1:26:4f:35:5c:e3:9d:e1:55:2d:d4:92:97:80:8b:
7b:0d:ca:2f:75:9d:58:ee:66:78:7b:a4:f5:b5:31:
b9:19:f9:74:63:46:a4:cb:f7:26:20:69:11:29:fc:
56:12:93:66:e6:a7:23:34:56:3a:fc:f8:1d:49:7e:
a7:4e:fc:9d:82:bd:db:8a:a0:c9:6c:e2:28:82:e7:
20:7e:ab:30:8e:25:92:10:f3:17:0b:12:aa:62:86:
19:87:3a:c3:81:1b:f3:58:6a:e6:c4:44:18:9a:8d:
36:30:dc:86:3e:84:86:44:9b:ec:17:a3:5d:90:72:
49:55:86:b2:08:19:fc:d6:9d:4c:32:94:7a:f3:08:
07:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:21:A2:C5:11:EA:23:B2:63:45:0C:15:7F:90:EB:F9:6B:DC:E8:FB
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/eiGixRHqI7JjRQwVf5Dr-Wvc6Ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.149.240.0/24
Signature Algorithm: sha256WithRSAEncryption
94:c3:51:22:48:d9:03:69:c0:60:e2:d8:2b:e1:bb:7a:f8:3e:
64:c8:8e:f2:ac:b5:57:ac:e8:d4:b6:82:e1:ea:51:54:51:99:
f0:d9:70:d1:ac:d6:5a:fc:06:2c:1b:37:17:3d:40:15:c0:e7:
9f:7e:94:8b:11:ee:72:37:69:ca:aa:1c:82:fc:9a:9f:29:d3:
5f:0f:a1:f3:55:d5:dc:d2:61:bf:ea:8d:23:d9:58:0c:9c:25:
94:cd:b9:3a:5b:28:44:39:b9:94:7c:cd:0d:32:ac:01:db:2e:
68:05:2a:36:4a:f3:ac:3a:cb:42:2a:0c:17:7e:67:4a:5f:bb:
ee:d6:f0:f5:0f:4d:0c:ef:4b:88:77:7e:4b:46:1c:0a:a8:1c:
7f:d4:d2:4b:44:22:53:78:38:36:41:ca:71:8a:c2:46:9f:78:
82:3e:38:37:df:50:b2:49:97:aa:03:ee:30:9a:05:6c:37:cd:
9c:69:00:d6:98:4e:d4:51:85:8c:d2:61:01:eb:40:ac:9b:13:
fc:f8:11:7a:ea:73:f5:1c:f4:1f:4f:35:86:7e:7f:a6:02:f9:
62:20:3e:e8:76:1e:cb:40:19:14:13:df:75:bc:06:34:c2:2c:
0b:0c:32:f4:f6:49:68:87:f5:1b:f4:b7:33:43:cb:5a:49:e3:
a4:4f:91:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:14 2025 by rpki-client