Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/7GT7eL1iigfSZcLvZ8H1G23qGcA.roa
File: 7GT7eL1iigfSZcLvZ8H1G23qGcA.roa (raw, json)
Hash identifier: 4x7s4/tz2qyXb7P279kV++h9u2G10t10LTDDRCUg00s=
Subject key identifier: EC:64:FB:78:BD:62:8A:07:D2:65:C2:EF:67:C1:F5:1B:6D:EA:19:C0
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 1C725D26
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/7GT7eL1iigfSZcLvZ8H1G23qGcA.roa
Signing time: Sat 01 Jan 2022 15:03:44 +0000
ROA not before: Sat 01 Jan 2022 15:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208938
IP address blocks: 82.193.86.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477256998 (0x1c725d26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Jan 1 15:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec64fb78bd628a07d265c2ef67c1f51b6dea19c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:83:fd:44:70:8e:fb:9b:d2:9c:83:62:7d:b9:
18:75:81:19:b7:cb:c8:28:e5:f3:d7:2a:54:5f:ea:
c0:c8:62:cb:bd:8c:b5:bc:10:79:39:5d:82:58:59:
38:e1:36:a5:92:10:45:68:b4:25:76:86:a3:4a:47:
52:e5:ef:da:4a:f9:0d:4f:93:22:ae:f9:6c:1e:e9:
5d:00:1e:0b:5d:af:c2:94:70:ae:44:ba:a5:6e:fb:
3b:73:ef:18:d4:a7:c6:a0:1d:2a:f4:4a:16:56:ba:
45:87:e1:c3:db:cc:6f:27:27:4d:c6:b1:a7:3b:5d:
36:b2:dd:44:6f:ff:65:d0:aa:0e:36:f7:84:67:dc:
57:ce:45:c5:e9:4a:bd:6b:ef:f4:14:7d:54:8a:70:
16:46:68:2b:5a:cc:2a:dc:90:c0:42:5b:08:fd:b2:
92:2b:03:7d:2c:8a:e2:d8:76:05:19:0e:ad:92:3b:
8e:92:26:cf:c0:bc:4d:b4:d5:88:64:bb:a5:1f:93:
64:9d:f6:e7:52:cb:73:a5:6a:aa:19:b4:0a:75:da:
f5:a8:ec:54:e6:bc:da:24:72:54:c8:9d:bc:19:42:
ed:a5:50:46:25:ae:d0:ba:c4:74:3a:65:c0:0f:89:
c0:1a:aa:cf:70:45:b2:10:ab:0a:00:d2:16:5a:3f:
23:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:64:FB:78:BD:62:8A:07:D2:65:C2:EF:67:C1:F5:1B:6D:EA:19:C0
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/7GT7eL1iigfSZcLvZ8H1G23qGcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.193.86.0/24
Signature Algorithm: sha256WithRSAEncryption
15:dc:95:81:b7:89:2e:78:3b:3a:c1:8e:a3:83:73:8d:03:cd:
22:c9:81:ba:ec:15:df:76:c5:5e:e2:e4:d2:fe:4b:a4:33:b2:
e8:c8:e2:f7:53:91:48:dd:03:21:b1:41:f7:94:f2:c4:34:bd:
75:31:a9:27:2e:18:2a:b2:03:b0:f2:00:98:ce:14:f4:7c:47:
e1:f6:84:14:6a:11:f5:cd:11:55:8a:a2:bf:e7:5d:43:16:d0:
8e:af:c1:49:19:e6:51:0b:16:b1:d8:6c:ec:10:fe:1e:81:f8:
17:40:23:01:79:fd:e9:88:11:fc:40:9a:e7:a3:55:32:6a:fb:
b0:4c:c1:65:2f:fb:b9:63:53:7d:77:6d:4f:59:b7:7e:1e:f5:
6a:8c:6d:57:df:3e:49:99:5b:cf:59:e1:6c:ce:ac:f2:f8:31:
26:d4:e7:cb:80:81:18:ac:6b:18:56:47:ae:d8:b1:db:bf:72:
06:0a:b0:93:e3:35:0f:f1:85:35:e5:89:14:ce:b6:96:2e:b9:
f2:4a:68:be:2f:4c:a9:41:c8:ba:9f:c1:84:f4:f8:3f:dc:8d:
f0:bc:77:fc:5f:93:51:48:8e:f7:51:fe:f0:73:67:ae:3f:52:
98:f7:76:bd:92:ea:95:41:fd:46:90:bf:05:1e:fe:50:1c:26:
6c:ad:a3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:47 2023 by rpki-client on console-ams.rpki-client.org