Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/EE45pvCUO_nx4hRPrrlDs-edaJo.roa
File: EE45pvCUO_nx4hRPrrlDs-edaJo.roa (raw, json)
Hash identifier: EvkGrTUwmeYFaDRh17HoDO2fiVsNj0F/4m76AIFhuuY=
Subject key identifier: 10:4E:39:A6:F0:94:3B:F9:F1:E2:14:4F:AE:B9:43:B3:E7:9D:68:9A
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 3EA2B9
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/EE45pvCUO_nx4hRPrrlDs-edaJo.roa
Signing time: Tue 22 Mar 2022 12:03:32 +0000
ROA not before: Tue 22 Mar 2022 12:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133944
IP address blocks: 160.19.92.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4104889 (0x3ea2b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 22 12:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=104e39a6f0943bf9f1e2144faeb943b3e79d689a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:eb:a6:8c:f7:17:6d:57:bc:74:36:d1:36:a6:
00:e0:5e:12:31:41:c1:1f:eb:80:3a:a9:84:55:2e:
67:b9:09:a3:b4:84:06:69:cc:16:4a:7b:6f:70:9b:
d6:ac:91:60:7e:30:b3:ff:22:e2:38:e7:fd:03:ef:
21:da:1f:49:23:ef:f2:fd:6f:ce:26:dc:e4:8d:08:
2e:13:01:7f:fa:b6:eb:ca:25:55:8e:0c:3e:2f:15:
da:29:a9:df:14:35:05:fe:79:2f:d3:d4:39:00:d5:
81:29:74:d3:68:7b:6f:1d:a9:66:22:c5:f4:fa:e1:
30:9b:b7:53:e3:f1:71:a1:fc:84:8e:e5:30:e6:dd:
3a:b4:2b:4e:a2:de:8b:e9:81:d1:98:62:a8:52:87:
44:02:77:00:36:71:0d:3a:5b:13:f0:64:7d:46:d2:
8f:4e:68:8d:9a:c1:5e:d4:28:28:a6:81:1a:1f:70:
e1:f2:21:0b:b4:fa:d8:4d:4a:6a:a3:b9:c6:4f:3e:
52:91:d1:af:ec:c3:60:e6:2f:fc:63:36:6b:b2:07:
79:3c:28:39:ad:73:a9:32:d7:a5:85:a5:2f:96:96:
21:16:64:f5:2a:d7:76:e6:47:e7:83:a2:0b:03:bc:
fe:2e:98:63:90:46:6d:6f:f2:24:0e:52:a9:9a:07:
25:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4E:39:A6:F0:94:3B:F9:F1:E2:14:4F:AE:B9:43:B3:E7:9D:68:9A
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/EE45pvCUO_nx4hRPrrlDs-edaJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.92.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:cc:22:e8:a8:79:90:07:a2:b3:28:38:6f:96:92:b4:ff:6c:
b1:b7:af:0d:ff:d1:7b:1f:06:bc:e0:0b:b3:06:47:a2:76:ce:
fe:c9:08:40:fd:b0:35:95:1b:1f:a5:81:fd:19:39:0d:4e:cb:
87:35:d1:db:2a:f2:f8:ef:05:61:1f:75:5e:e9:2c:98:72:83:
4c:e4:83:13:20:e4:56:b6:9e:6c:2d:71:50:d9:ec:0c:ae:c2:
dc:8c:ce:a5:1c:f1:93:3b:f4:b3:3e:8e:79:60:6c:48:19:52:
43:c5:12:b6:7e:09:7e:69:83:44:df:d7:15:51:ec:5e:93:ae:
0c:c4:c6:c6:44:f8:fe:cf:23:f6:e8:b8:e5:7d:33:20:1c:5f:
f5:09:fc:d5:3f:1f:92:ae:94:65:5e:96:f6:b5:d8:e5:4d:bb:
8a:68:35:08:54:c4:d4:7b:14:9d:54:25:f8:f7:94:8d:ef:76:
3f:f5:07:63:fb:60:22:fb:4f:61:de:a0:e6:1a:4c:34:67:34:
eb:fb:be:4a:af:1f:e7:34:bb:d8:dd:c6:ba:53:be:98:8e:c2:
8b:7f:96:6d:77:03:49:9e:00:eb:64:9e:ff:1e:ea:6e:10:02:
21:2a:1d:94:78:9d:8d:30:f0:ff:69:15:df:9e:aa:c2:d7:3f:
7f:2e:5a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org