Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/ej5ajV7k3lL_m8WPcxGzTYX8Xno.roa
File: ej5ajV7k3lL_m8WPcxGzTYX8Xno.roa (raw, json)
Hash identifier: hkoQA3XBIsaH/QOOd/el56Q7VuKS23KyuY4ceznqfVY=
Subject key identifier: 7A:3E:5A:8D:5E:E4:DE:52:FF:9B:C5:8F:73:11:B3:4D:85:FC:5E:7A
Certificate issuer: /CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Certificate serial: 07AE0C77
Authority key identifier: 21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/ej5ajV7k3lL_m8WPcxGzTYX8Xno.roa
Signing time: Sat 01 Jan 2022 14:04:38 +0000
ROA not before: Sat 01 Jan 2022 14:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34950
IP address blocks: 193.164.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128846967 (0x7ae0c77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Validity
Not Before: Jan 1 14:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a3e5a8d5ee4de52ff9bc58f7311b34d85fc5e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:34:c5:ce:47:cd:64:e3:5f:44:97:a3:2d:25:
e4:72:58:35:28:76:36:d9:df:d4:4e:f4:88:1a:ba:
6e:9a:2e:1f:fd:df:4f:06:e6:ae:94:f5:93:5d:31:
56:68:8f:f3:92:ee:1f:26:e9:ac:0a:b1:25:81:dd:
a1:4e:e2:3f:3d:5e:45:ad:03:8e:a0:b4:f0:91:cb:
64:ba:56:90:32:35:a1:3d:48:cd:2a:ea:c9:44:70:
04:64:c7:2c:e0:d3:15:a3:7f:18:4d:88:b7:22:1d:
50:64:eb:a2:e4:62:87:15:68:c6:3d:63:bb:f2:7b:
71:45:39:9f:01:b7:d7:db:37:66:d6:a2:5a:63:a5:
d8:b8:cf:33:54:dd:92:5f:79:0b:42:bc:70:65:cb:
6f:fa:fd:91:4f:a0:c6:a8:e4:9f:18:e5:fa:11:83:
ed:00:a4:af:e9:c8:f0:48:89:37:0b:5a:e8:69:d5:
9e:65:28:61:a2:87:fc:c4:24:0a:a1:ba:22:80:45:
46:c1:97:72:0b:f6:4e:02:fe:c7:bf:82:4d:37:90:
e6:7a:d7:0d:a2:a3:d3:cd:1c:9d:91:e2:0f:88:2c:
4c:52:87:aa:94:db:14:8e:41:d1:0f:8b:73:5d:66:
5e:54:58:34:26:13:46:c4:ae:d7:92:79:06:69:f3:
af:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3E:5A:8D:5E:E4:DE:52:FF:9B:C5:8F:73:11:B3:4D:85:FC:5E:7A
X509v3 Authority Key Identifier:
keyid:21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/ej5ajV7k3lL_m8WPcxGzTYX8Xno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/IWmMHNxm3ChdD4B2KcRiYaiLLec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.88.0/24
Signature Algorithm: sha256WithRSAEncryption
68:4d:49:e2:c1:68:55:bc:02:e5:49:64:9c:66:b7:40:41:33:
59:0e:1e:72:6c:06:a0:56:3f:1f:7b:04:4d:f4:f9:f3:c5:e7:
eb:a7:cd:b3:2c:96:e6:6c:94:7c:f8:3d:67:e7:a8:3b:8e:ea:
4d:1f:3e:26:3c:0b:87:c5:cc:34:e1:92:ed:c7:97:5c:93:1a:
e8:6f:e8:bd:23:c3:c7:da:12:e2:10:c7:70:ec:c0:27:17:e7:
80:2f:8f:a9:8c:ec:fb:3d:55:d2:d6:00:be:eb:28:61:fc:aa:
f3:28:5d:5a:03:3a:8e:3a:14:9b:8b:99:12:fa:3e:48:6a:d2:
b5:87:e9:50:0c:50:86:31:31:38:c5:7a:66:b2:fc:18:cd:02:
fa:88:14:60:bd:bb:e7:d6:b4:85:eb:83:9a:f4:53:9e:5e:87:
0f:a9:12:f8:5e:f7:88:33:37:79:1d:66:a5:39:23:8e:a6:9c:
bb:08:d8:5e:b4:2a:d5:c5:5c:a1:eb:da:1c:32:46:85:f8:7a:
8f:b3:65:86:e9:0e:67:b5:ff:fa:46:c4:2f:9a:8a:07:ba:e7:
35:c1:79:d5:b7:30:77:fa:20:9c:86:f5:be:0c:72:69:1e:04:
f3:b8:f8:75:da:56:92:09:52:84:47:7f:28:6c:d0:75:9f:66:
ba:84:a1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:24 2023 by rpki-client on console-fra.rpki-client.org