Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/11EG6oQQ1CYB8OpzFpmy0oyr5Ns.roa
File: 11EG6oQQ1CYB8OpzFpmy0oyr5Ns.roa (raw, json)
Hash identifier: VgSEa00U+pvo//Jou1f5sTLzOQ9Y6yelQbuVcSHeF4U=
Subject key identifier: D7:51:06:EA:84:10:D4:26:01:F0:EA:73:16:99:B2:D2:8C:AB:E4:DB
Certificate issuer: /CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Certificate serial: 0184DA241659EDF0B737BF175103A69D577A
Authority key identifier: 28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/11EG6oQQ1CYB8OpzFpmy0oyr5Ns.roa
Signing time: Sat 03 Dec 2022 22:38:28 +0000
ROA not before: Sat 03 Dec 2022 22:38:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44547
IP address blocks: 194.147.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:da:24:16:59:ed:f0:b7:37:bf:17:51:03:a6:9d:57:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Validity
Not Before: Dec 3 22:38:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d75106ea8410d42601f0ea731699b2d28cabe4db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:41:a6:b6:30:65:fe:4a:14:31:3f:35:d8:75:
ae:cb:f4:4b:af:0e:81:1d:3a:0e:25:4e:6d:ae:ee:
f2:7d:b2:8c:fa:07:84:d7:a0:cc:88:26:c5:91:80:
24:06:c1:79:66:29:85:a0:d1:86:cf:f4:fa:70:e4:
e1:42:af:ea:c1:03:75:3b:0c:94:87:5c:d6:83:89:
70:b9:d4:e2:73:63:5f:d5:1b:dd:41:9f:3c:8a:29:
40:60:7c:20:93:a7:5c:bc:7d:85:6a:8b:83:4f:89:
c7:a8:1a:2c:da:10:0d:20:68:e0:52:78:74:ca:ed:
76:4e:a4:83:16:6d:87:76:a2:8d:8e:7d:98:3f:6e:
a6:c4:c1:51:52:37:20:0c:9d:06:eb:7d:cc:c1:30:
aa:6f:a7:4e:64:ae:e7:0c:79:47:13:73:b0:d6:cf:
bd:ba:d7:c1:7a:c2:cb:43:cd:94:a7:d1:bc:d4:a8:
d0:a2:0a:16:2b:cf:3c:53:ef:65:41:b6:82:4c:9b:
79:d6:a7:44:04:62:6f:05:32:8a:c9:e2:b0:9f:ff:
b7:ca:dd:60:7c:7b:25:da:fb:ad:27:e0:f5:62:5c:
b9:c5:96:10:bf:34:55:f7:43:52:0c:dc:15:73:b8:
a8:24:4d:60:eb:c9:d2:e0:02:70:ea:d0:fc:c9:6d:
ca:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:51:06:EA:84:10:D4:26:01:F0:EA:73:16:99:B2:D2:8C:AB:E4:DB
X509v3 Authority Key Identifier:
keyid:28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/11EG6oQQ1CYB8OpzFpmy0oyr5Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/KP1m5DoQRjOye6xTm5i9-Ov6ya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.216.0/24
Signature Algorithm: sha256WithRSAEncryption
36:bc:28:b3:60:99:a9:41:76:57:72:1b:b9:62:b3:2e:db:93:
a4:23:79:e2:30:d8:0a:c0:e4:9c:5a:c4:80:6c:c5:37:3d:e7:
28:a4:16:e9:d9:ad:0c:70:9f:a7:8b:d3:8c:fe:6f:b6:97:a4:
42:60:ef:df:b0:ac:35:9b:aa:b2:3b:86:70:bd:aa:64:71:72:
26:9a:b6:1c:a2:66:0b:78:e9:8d:33:57:8c:b9:a5:9e:76:6b:
97:a7:4a:5c:29:16:1d:cd:33:aa:e6:6f:c6:fe:24:e8:7b:d4:
51:6f:d1:d2:9e:39:dc:7f:9a:45:4e:1a:4c:55:6c:0b:d6:43:
9f:bf:62:ec:6f:d3:bc:7f:01:a6:06:49:d8:4c:da:49:e3:ef:
31:b4:e8:74:1d:ec:70:4a:25:62:f0:29:05:c3:c2:82:bf:be:
7f:75:f7:dd:6f:32:64:62:97:e1:82:df:d9:1e:c5:b4:f6:87:
6c:6c:6d:c2:1c:e9:77:31:08:4f:6d:75:8f:6c:ca:f8:85:ad:
0d:bc:e0:43:e7:6d:62:ae:89:97:a4:b6:a7:72:32:21:dc:f6:
2e:0e:8e:1f:13:1c:32:3e:e5:30:ba:dd:72:59:38:cb:44:4f:
d6:5b:66:1a:7e:ce:38:65:7d:cc:17:b3:43:de:38:c6:87:70:
2b:f4:e6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:01 2023 by rpki-client on console-ams.rpki-client.org