Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/e1SNs-aGPSIs3AXj29whnUr5i58.roa
File: e1SNs-aGPSIs3AXj29whnUr5i58.roa (raw, json)
Hash identifier: MyrfEeoGwHhWFj8dx6HYnxRGMWhK+mEvYi3wRJN8oW0=
Subject key identifier: 7B:54:8D:B3:E6:86:3D:22:2C:DC:05:E3:DB:DC:21:9D:4A:F9:8B:9F
Certificate issuer: /CN=e32bcd40c6774677d2c3702ef59edf49d0b36c6c
Certificate serial: 183CACFC
Authority key identifier: E3:2B:CD:40:C6:77:46:77:D2:C3:70:2E:F5:9E:DF:49:D0:B3:6C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/e1SNs-aGPSIs3AXj29whnUr5i58.roa
Signing time: Sat 01 Jan 2022 10:58:43 +0000
ROA not before: Sat 01 Jan 2022 10:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5146
IP address blocks: 84.255.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406629628 (0x183cacfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32bcd40c6774677d2c3702ef59edf49d0b36c6c
Validity
Not Before: Jan 1 10:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b548db3e6863d222cdc05e3dbdc219d4af98b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:19:2d:80:7a:18:68:ba:b4:97:e1:5d:f2:eb:
9e:a5:2c:78:1b:8b:5f:e2:7d:69:69:0e:37:a2:56:
a8:14:4c:72:67:cf:f7:13:37:3b:d9:02:59:75:45:
6b:c8:6c:4e:8f:9d:ea:e0:65:4e:45:7a:54:af:6d:
cf:62:1c:a3:cf:10:e8:5e:4f:67:17:52:78:45:03:
fe:74:40:8b:35:62:8e:a0:ae:b3:ef:33:5c:11:53:
46:c4:ef:b6:67:bf:e0:a0:4d:95:30:4f:2f:08:a0:
e6:87:e3:6c:31:1a:2b:08:f3:1e:a0:6b:11:f8:fc:
fd:28:3e:25:d3:46:bc:47:dd:73:58:b8:93:90:15:
64:03:73:7a:81:b8:c4:19:2a:fe:e4:52:0c:b1:55:
67:e7:79:e1:2b:67:a6:aa:4c:f2:75:e9:94:dd:e9:
96:93:11:1c:8f:7b:24:55:06:cc:00:2f:4f:56:74:
41:66:d3:b0:90:0e:9b:6d:00:1c:cc:39:8d:15:92:
df:da:ed:05:62:fb:d3:e9:1f:f0:43:6c:17:7a:14:
8a:00:20:e8:af:8b:e0:8c:16:15:44:11:76:96:9d:
69:8a:fa:e2:56:f1:64:1f:bf:0e:20:80:e5:67:f9:
21:a1:b5:b3:63:23:b9:d9:7e:59:d1:9b:34:ef:08:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:54:8D:B3:E6:86:3D:22:2C:DC:05:E3:DB:DC:21:9D:4A:F9:8B:9F
X509v3 Authority Key Identifier:
keyid:E3:2B:CD:40:C6:77:46:77:D2:C3:70:2E:F5:9E:DF:49:D0:B3:6C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/e1SNs-aGPSIs3AXj29whnUr5i58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.255.168.0/21
Signature Algorithm: sha256WithRSAEncryption
10:4d:e8:23:c9:5e:5d:11:2b:35:d2:fc:02:7f:c2:96:24:23:
0f:9a:15:f1:c8:41:de:07:70:a7:39:a7:aa:6e:e3:2b:2b:ea:
d5:c7:34:b6:10:14:b3:a8:72:32:24:cb:de:ec:d9:3e:ca:16:
51:f8:7d:b4:8e:8f:da:3d:36:cb:b9:56:23:ad:ef:74:3f:56:
a3:c5:b3:55:33:0b:2f:3b:78:f7:ec:83:ef:af:7b:c8:17:40:
64:43:8e:d8:66:c9:56:88:91:61:72:2f:4c:df:45:41:d3:df:
a7:8e:9a:9c:db:ce:91:10:8e:87:58:7b:2e:2f:e3:aa:b6:4e:
c9:f8:95:f6:0d:08:7f:34:f3:c8:95:ad:a8:d0:83:b1:31:2d:
c7:32:42:dd:7f:21:c2:2b:35:8f:35:0f:e9:07:3b:ab:6f:34:
99:b3:d6:e2:c6:05:c6:e5:69:07:22:a4:25:30:98:a2:aa:ac:
94:43:6e:c6:db:94:c5:9b:95:d8:81:3a:64:32:3d:8a:fc:ad:
7a:1e:31:5a:43:0b:8b:95:e5:a1:a7:85:2a:a9:0a:8f:a4:21:
c2:fc:06:73:12:9e:58:ad:84:c6:44:9b:28:1f:af:91:89:fd:
eb:d3:5c:5a:e8:23:70:1f:d3:8a:4d:cd:88:97:c0:99:b7:52:
9c:93:03:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-fra.rpki-client.org