Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/AFFAdeEivO6686II6AgYdPAGxmE.roa
File: AFFAdeEivO6686II6AgYdPAGxmE.roa (raw, json)
Hash identifier: w61dcqjCvppoa2VeSQXphIHVFbpL73Dvbm7A1i6+wlY=
Subject key identifier: 00:51:40:75:E1:22:BC:EE:BA:F3:A2:08:E8:08:18:74:F0:06:C6:61
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 057849F4
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/AFFAdeEivO6686II6AgYdPAGxmE.roa
Signing time: Sat 01 Jan 2022 02:51:37 +0000
ROA not before: Sat 01 Jan 2022 02:51:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 94.154.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91769332 (0x57849f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 1 02:51:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00514075e122bceebaf3a208e8081874f006c661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:38:fd:81:a7:62:a3:aa:c9:d2:4f:16:23:e3:
12:00:cc:c8:b0:42:00:64:db:6b:8a:31:03:ea:46:
0a:78:cb:e8:18:be:09:8e:64:f2:72:56:c1:2e:fa:
d9:12:9e:fd:ad:13:c5:37:72:35:fb:5f:d0:02:8f:
23:bb:96:2b:45:f3:56:3d:8c:ac:db:c6:ff:18:2f:
8f:c0:0f:a5:ea:22:f1:46:3f:da:47:c1:e2:0d:7e:
3b:23:5e:44:8e:4c:44:4f:39:53:e5:af:d5:b1:99:
a6:cc:94:7c:ab:7b:bf:ef:ea:ad:24:8a:cc:5c:40:
c4:a6:d1:59:4c:a1:52:26:3c:c7:a8:8e:0e:4e:c6:
83:06:df:9b:fb:44:5d:b1:42:4c:04:d0:cb:4a:e2:
2e:d3:49:b9:ba:ff:e4:b3:b9:24:1b:7f:2f:ce:9b:
d2:09:6a:a8:11:20:a2:ff:e4:17:d6:20:76:35:42:
b5:46:4c:e8:75:fb:85:fb:68:18:4c:a8:a1:fa:9c:
11:c9:7e:4a:58:c3:51:cd:68:65:f7:47:7f:6d:58:
41:ca:3b:48:90:65:4f:8f:9c:61:2e:41:4b:99:f3:
c1:34:e3:d0:dd:ad:be:98:f7:ec:3a:28:6b:59:4d:
af:15:fc:c9:05:da:ba:79:a4:43:b6:58:54:7b:91:
b7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:51:40:75:E1:22:BC:EE:BA:F3:A2:08:E8:08:18:74:F0:06:C6:61
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/AFFAdeEivO6686II6AgYdPAGxmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.37.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:e8:c1:6f:46:64:39:7c:cf:4f:cc:68:27:3e:3e:2a:16:a5:
65:79:11:a3:4c:0e:53:fd:46:11:0c:e9:80:ea:96:a8:d7:d2:
f4:b2:94:60:06:eb:36:ac:9f:25:8b:60:30:b4:0f:ea:29:57:
52:92:46:12:30:f0:c2:6e:6f:f5:62:3f:90:2d:a1:78:4c:07:
1d:11:85:a8:38:a9:f4:38:37:34:6e:06:35:76:7f:fa:29:7c:
ca:13:94:ba:bf:60:4a:b4:b6:a1:f9:ea:bc:76:40:fa:a9:76:
fc:1f:fd:1b:b0:06:a8:33:ec:49:a4:f7:51:c8:ba:b7:53:83:
75:ee:54:64:bb:05:95:d9:22:58:81:68:29:dc:14:db:d7:ca:
2f:58:70:44:97:7d:42:34:d2:e7:49:a4:d6:d1:78:14:5a:3f:
ba:a2:bf:16:66:20:84:77:24:0a:d6:c3:c6:b1:c6:df:24:d0:
54:24:89:84:35:69:1f:eb:09:02:28:96:e6:c5:a3:91:d1:68:
24:94:18:4e:4e:dd:ca:9a:0e:89:f0:d5:9d:90:3a:47:28:67:
f5:ca:e7:c4:7b:7e:c5:5d:1d:db:1f:7d:79:30:25:35:c7:eb:
54:60:0d:b4:f9:b2:ee:7c:b8:fb:c3:8b:0d:15:79:29:4e:2c:
cd:d9:d2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org