Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f60502-2704-4834-9d68-30466dec3905/1/ePkl3IyRZUy61wncGgX4k9MWq_E.roa
File: ePkl3IyRZUy61wncGgX4k9MWq_E.roa (raw, json)
Hash identifier: L/FteTIJbjNQ+LMJ4chtXkBYrmpmxcZuuL+Vg9dcYhs=
Subject key identifier: 78:F9:25:DC:8C:91:65:4C:BA:D7:09:DC:1A:05:F8:93:D3:16:AB:F1
Certificate issuer: /CN=fcee32279c16dacdb5349f1b87c57d74c50ea539
Certificate serial: 06FA1360
Authority key identifier: FC:EE:32:27:9C:16:DA:CD:B5:34:9F:1B:87:C5:7D:74:C5:0E:A5:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_O4yJ5wW2s21NJ8bh8V9dMUOpTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f60502-2704-4834-9d68-30466dec3905/1/ePkl3IyRZUy61wncGgX4k9MWq_E.roa
Signing time: Sat 01 Jan 2022 10:58:27 +0000
ROA not before: Sat 01 Jan 2022 10:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207975
IP address blocks: 194.32.166.0/23 maxlen: 23
194.32.204.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117052256 (0x6fa1360)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcee32279c16dacdb5349f1b87c57d74c50ea539
Validity
Not Before: Jan 1 10:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78f925dc8c91654cbad709dc1a05f893d316abf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:34:9e:42:ac:3d:71:dd:fa:93:1d:c6:42:a6:
9e:f5:06:de:76:c2:16:4c:a3:e9:06:a7:66:34:77:
e9:e0:85:40:d0:24:9a:bd:ec:f2:36:b9:d5:d2:fe:
ba:ec:4c:d7:02:5a:af:ef:1f:af:af:98:3f:63:fb:
e9:01:71:90:3b:6f:f1:76:92:4b:fa:9c:69:39:a3:
86:d7:77:7f:63:0d:67:b6:6c:bb:a1:e4:56:82:48:
b1:38:0e:08:1e:98:f5:a1:0f:a6:32:ac:5d:65:2c:
20:13:ba:3e:08:ec:20:e0:ae:6d:35:7d:b3:35:37:
c5:0f:b5:6a:c4:62:0a:80:65:68:44:7d:61:f6:b4:
95:73:61:d6:35:b1:b4:15:3c:e6:de:bd:46:aa:2f:
5b:f8:b1:a1:29:8b:1b:a8:ce:ac:10:3a:48:3b:60:
13:e2:ef:bf:87:93:52:9d:95:d5:03:02:fb:11:eb:
0b:b9:ca:7d:15:3b:eb:ab:9f:9b:ea:9d:0f:93:66:
98:22:27:37:94:ac:48:32:13:f7:b2:c5:22:7b:35:
9f:16:ed:c3:1b:6d:e6:ee:c0:7f:c9:3a:37:09:54:
3a:88:d6:87:f0:1a:49:3d:68:30:ff:8d:43:f1:90:
0a:d8:f6:6a:db:02:d3:cc:23:79:ee:57:a8:e8:ed:
e7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F9:25:DC:8C:91:65:4C:BA:D7:09:DC:1A:05:F8:93:D3:16:AB:F1
X509v3 Authority Key Identifier:
keyid:FC:EE:32:27:9C:16:DA:CD:B5:34:9F:1B:87:C5:7D:74:C5:0E:A5:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_O4yJ5wW2s21NJ8bh8V9dMUOpTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f60502-2704-4834-9d68-30466dec3905/1/ePkl3IyRZUy61wncGgX4k9MWq_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f60502-2704-4834-9d68-30466dec3905/1/_O4yJ5wW2s21NJ8bh8V9dMUOpTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.166.0/23
194.32.204.0/23
Signature Algorithm: sha256WithRSAEncryption
26:c4:c0:cf:97:ce:7a:1b:67:20:c8:3c:6d:7d:bc:99:b6:f6:
2d:9d:75:b3:0b:cf:a9:72:a4:b4:ca:7e:2d:87:82:f8:6c:db:
21:27:0c:30:9a:3f:e1:53:6e:77:98:55:f8:18:09:47:57:02:
7a:5b:95:c0:c1:4f:7f:2b:58:08:4e:62:ed:6e:05:53:06:9b:
85:2d:68:33:1d:27:8c:e9:b0:dd:f1:49:59:79:c4:be:f3:a7:
04:8d:a2:2c:ad:d5:23:35:69:d4:3f:1f:7d:00:35:45:dc:45:
e2:48:38:88:0f:55:65:08:19:a6:57:68:0e:d9:4a:1c:06:0f:
24:d4:4c:77:da:89:26:7f:ff:a5:53:c9:c8:6f:6a:a6:b4:2c:
b5:41:b4:31:f5:9f:9d:bb:fb:38:a5:11:7b:7e:6f:7b:e4:e6:
59:9b:6b:05:2b:2b:58:e5:c3:64:25:f2:7c:2c:b1:20:b9:b7:
a0:40:8b:0c:b3:36:8e:5d:d6:7f:6a:67:73:2d:ec:18:29:91:
90:af:cb:21:dc:5b:71:d9:e0:eb:0a:51:36:84:86:0d:ed:2a:
22:2f:53:a7:fb:77:c6:43:50:1c:7d:f1:db:08:81:94:50:25:
29:4e:75:43:d4:f5:3e:04:b4:fa:ce:3e:aa:8b:07:70:85:b6:
4b:0a:21:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:13 2025 by rpki-client