Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/EpREiKKgrkjdY86SPrjC7koNW5I.roa
File: EpREiKKgrkjdY86SPrjC7koNW5I.roa (raw, json)
Hash identifier: 61CXqGOaAkhlC7R8KzQoT90S/SyogZL/jbzSs5u5KC0=
Subject key identifier: 12:94:44:88:A2:A0:AE:48:DD:63:CE:92:3E:B8:C2:EE:4A:0D:5B:92
Certificate issuer: /CN=1bdba013655b9bb0caa285d75c142c1ee30f8854
Certificate serial: 0512D3AE
Authority key identifier: 1B:DB:A0:13:65:5B:9B:B0:CA:A2:85:D7:5C:14:2C:1E:E3:0F:88:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9ugE2Vbm7DKooXXXBQsHuMPiFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/EpREiKKgrkjdY86SPrjC7koNW5I.roa
Signing time: Sat 01 Jan 2022 03:51:21 +0000
ROA not before: Sat 01 Jan 2022 03:51:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62054
IP address blocks: 193.176.252.0/24 maxlen: 24
193.176.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85119918 (0x512d3ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bdba013655b9bb0caa285d75c142c1ee30f8854
Validity
Not Before: Jan 1 03:51:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12944488a2a0ae48dd63ce923eb8c2ee4a0d5b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c5:86:8c:47:4a:87:33:91:63:4d:ec:7a:44:
1d:71:ab:d5:a6:c8:7b:68:b5:db:c0:c1:f9:ac:61:
51:e9:e6:45:a6:67:56:f5:5d:b2:3b:c2:76:4d:e9:
59:4b:a1:44:ca:c6:51:0d:91:70:6a:3c:ca:d3:85:
66:86:d4:dc:83:d3:d2:9c:20:02:4f:72:58:0d:c9:
50:bd:cd:8d:b0:92:fb:45:83:c3:89:a3:03:4a:81:
64:43:54:4e:dd:9c:7f:b1:c5:ff:20:8f:c3:87:75:
8f:45:a2:f0:50:a8:12:62:b7:91:6f:38:90:e7:65:
30:0d:cf:d9:22:ef:ef:f3:31:be:83:9c:c9:50:81:
dc:e9:93:89:aa:1b:57:a7:86:9d:4b:be:be:99:fc:
a7:b0:82:ae:f4:25:d1:16:8a:e6:57:fd:c1:e9:24:
2c:87:df:b0:f6:b2:5c:d8:3b:3d:40:92:20:4f:2e:
1e:2b:a7:12:55:f0:55:98:f3:88:32:06:50:d1:68:
39:f2:ca:20:44:25:c9:7b:5e:2d:ee:3b:32:5f:39:
fe:3e:ac:65:80:5f:27:b5:12:31:6b:16:82:85:f7:
ba:94:67:ca:1f:4d:28:3a:9b:8f:be:c3:76:4b:89:
ee:e3:7b:2e:ac:26:ce:fc:8f:64:a6:38:91:49:87:
76:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:94:44:88:A2:A0:AE:48:DD:63:CE:92:3E:B8:C2:EE:4A:0D:5B:92
X509v3 Authority Key Identifier:
keyid:1B:DB:A0:13:65:5B:9B:B0:CA:A2:85:D7:5C:14:2C:1E:E3:0F:88:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9ugE2Vbm7DKooXXXBQsHuMPiFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/EpREiKKgrkjdY86SPrjC7koNW5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/G9ugE2Vbm7DKooXXXBQsHuMPiFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.252.0/24
193.176.254.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e2:31:d5:d7:d8:1d:ee:e5:7c:26:70:02:f3:f3:5f:a4:99:
93:ab:b3:d2:d3:a5:62:dd:28:ad:d3:b4:f7:d1:b6:a7:40:5f:
3b:7a:6b:09:c4:55:4f:19:31:e1:75:53:1f:68:81:ca:3b:28:
64:48:5b:0b:83:33:d5:54:f9:b3:dc:74:88:04:1a:82:60:44:
cd:bc:6d:c5:ea:05:59:60:ed:57:94:af:bc:67:5a:5f:04:b8:
b0:75:1c:c2:4c:25:7a:d0:a5:49:38:96:2f:48:30:11:a4:c3:
aa:45:03:6e:23:2b:01:43:45:34:99:2e:9b:8c:8b:3f:f4:0a:
71:a5:ac:23:91:2f:98:2c:e9:22:7b:5c:cd:55:37:be:81:2d:
4f:1d:4f:13:1e:06:96:9b:de:0c:a1:9f:c0:06:cb:bb:4f:40:
22:4d:af:ec:b2:c4:50:c1:f5:4b:3e:df:d3:b9:37:6d:04:fb:
25:bb:6c:bc:f8:64:23:bd:70:ef:2a:72:b5:f0:5c:bf:d7:26:
0c:f5:a4:9a:8d:58:ac:b6:fc:6b:43:38:50:ed:8e:56:89:98:
ea:56:a1:96:b9:c0:b4:46:06:00:37:82:7e:4a:a3:e6:e7:78:
b5:f4:3a:c5:68:68:81:17:b0:11:87:5f:7d:b1:91:9b:d5:0e:
f7:32:90:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:33 2023 by rpki-client on console-ams.rpki-client.org