Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b910f-dcc1-41db-96cd-092e89d59fa8/1/EZL66ZfdRjwCV1e1_2hDbx-Ki5I.roa
File: EZL66ZfdRjwCV1e1_2hDbx-Ki5I.roa (raw, json)
Hash identifier: Utfon8FSEf+5iB99F+pV3JatDMKQxZ4Do2Dl+zesgEk=
Subject key identifier: 11:92:FA:E9:97:DD:46:3C:02:57:57:B5:FF:68:43:6F:1F:8A:8B:92
Certificate issuer: /CN=0a2d71c0d145ef27804710927b943c67e50ae7ab
Certificate serial: 03C1A084
Authority key identifier: 0A:2D:71:C0:D1:45:EF:27:80:47:10:92:7B:94:3C:67:E5:0A:E7:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ci1xwNFF7yeARxCSe5Q8Z-UK56s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b910f-dcc1-41db-96cd-092e89d59fa8/1/EZL66ZfdRjwCV1e1_2hDbx-Ki5I.roa
Signing time: Sat 01 Jan 2022 15:04:22 +0000
ROA not before: Sat 01 Jan 2022 15:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57609
IP address blocks: 193.222.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63021188 (0x3c1a084)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a2d71c0d145ef27804710927b943c67e50ae7ab
Validity
Not Before: Jan 1 15:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1192fae997dd463c025757b5ff68436f1f8a8b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8b:0e:53:c2:f4:02:29:c4:bd:7d:2f:78:f7:
a1:25:ab:0b:64:e3:fb:c6:15:ac:1d:ca:ed:dc:4f:
52:3b:75:e3:82:c1:b0:f3:3b:3c:df:30:95:4b:88:
31:34:e7:7e:a2:71:c3:74:e9:36:f8:f0:3d:d4:9d:
e1:b4:a0:31:29:66:61:e0:08:da:a5:c3:21:96:e7:
fb:3a:f4:6c:f8:dd:01:db:e2:e8:17:5f:5f:b5:ed:
0c:61:10:f9:09:20:07:e8:ca:4e:ef:a3:a9:e4:97:
d9:f9:b0:85:a8:82:3f:3a:4a:99:d3:66:45:4a:83:
18:67:d4:c6:62:26:ab:1a:55:34:93:ce:09:08:66:
cd:6d:ec:b6:da:78:90:07:78:2a:05:b5:22:91:14:
f0:64:7c:4a:0d:d0:d2:a5:8c:20:0b:a9:61:be:b2:
99:d9:70:8b:9e:51:f2:b2:6c:a1:cb:4e:55:9b:e7:
df:e2:a9:39:c8:a3:f3:7e:b4:b4:b0:08:af:fb:6f:
26:74:ef:b4:bd:93:93:74:91:67:d6:10:40:55:31:
f4:bd:6c:5e:a3:90:bf:a1:15:d9:3e:83:53:8a:ce:
57:ae:7d:4d:bc:57:02:db:ae:17:a6:79:6c:3b:8d:
41:e4:ea:7c:5c:57:9f:68:06:77:de:02:66:ec:91:
37:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:92:FA:E9:97:DD:46:3C:02:57:57:B5:FF:68:43:6F:1F:8A:8B:92
X509v3 Authority Key Identifier:
keyid:0A:2D:71:C0:D1:45:EF:27:80:47:10:92:7B:94:3C:67:E5:0A:E7:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ci1xwNFF7yeARxCSe5Q8Z-UK56s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b910f-dcc1-41db-96cd-092e89d59fa8/1/EZL66ZfdRjwCV1e1_2hDbx-Ki5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b910f-dcc1-41db-96cd-092e89d59fa8/1/Ci1xwNFF7yeARxCSe5Q8Z-UK56s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.58.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:59:f9:17:99:be:9b:ce:36:6e:00:22:ab:2e:3f:21:2f:23:
bc:95:51:6a:df:d9:0b:ca:49:06:a7:96:4f:7d:b4:5e:5a:4d:
7d:86:66:97:e1:4a:34:3a:e7:86:8e:4c:88:ff:74:c7:d9:7a:
e4:ca:fb:5c:16:c7:10:2b:da:03:ce:c8:75:1d:67:fd:ca:ee:
00:1b:65:f7:e0:56:c5:88:9b:ff:91:7a:df:bb:56:0b:10:72:
8d:7f:68:ef:1c:10:93:3e:d7:48:bd:de:07:20:ad:37:5f:87:
00:67:40:d3:d7:96:3d:2a:8c:54:b5:24:3b:a5:64:43:a6:61:
1e:20:16:1b:0b:85:c7:0d:6c:14:7c:05:df:d1:07:c4:cb:1e:
f5:49:f7:67:89:d2:47:d1:a6:1c:0c:5e:64:9b:03:f4:7a:77:
ed:4d:f8:a0:82:c0:6d:fb:b9:51:74:5e:26:8e:76:5d:aa:e2:
35:24:49:19:d5:9a:2a:47:2b:2e:cf:7a:f1:d6:7f:a8:88:cc:
de:12:d0:fc:82:21:94:c7:42:c8:55:51:7a:3f:80:cc:9c:45:
3d:e3:34:af:a9:eb:19:69:ee:b2:4b:01:2b:0f:cb:55:33:60:
3a:a7:99:6e:22:36:ac:b5:02:9d:33:0f:ac:2e:a0:7a:f0:36:
eb:4e:1b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:02 2023 by rpki-client on console-fra.rpki-client.org