Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/eC8WNJbR-_6MFYXHpX-4EFhaaqA.roa
File: eC8WNJbR-_6MFYXHpX-4EFhaaqA.roa (raw, json)
Hash identifier: xnByZbf2l2xcSZr7xDuyZCMFtTPDWUlwyK4Uw3VQYAg=
Subject key identifier: 78:2F:16:34:96:D1:FB:FE:8C:15:85:C7:A5:7F:B8:10:58:5A:6A:A0
Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Certificate serial: 05FC77BF
Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/eC8WNJbR-_6MFYXHpX-4EFhaaqA.roa
Signing time: Sat 01 Jan 2022 16:07:37 +0000
ROA not before: Sat 01 Jan 2022 16:07:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47988
IP address blocks: 195.114.13.0/24 maxlen: 24
2001:678:ac8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100431807 (0x5fc77bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Validity
Not Before: Jan 1 16:07:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=782f163496d1fbfe8c1585c7a57fb810585a6aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:00:5b:0d:5c:31:4b:a3:88:56:cf:c4:8b:2c:
17:29:cc:57:f4:2c:1b:75:76:10:9e:fb:7c:02:ed:
35:8c:fd:bc:c3:a4:f3:03:c6:41:25:dc:e4:02:df:
8c:7a:26:3f:42:fb:83:93:44:28:0c:aa:68:eb:dc:
f4:5d:64:4f:be:4d:14:d4:45:bd:f8:7f:79:03:1e:
04:c0:df:1f:ca:0b:43:4a:70:42:a9:7f:7d:f3:fd:
81:5e:fa:62:2f:33:48:90:57:24:b0:2f:9b:72:b2:
21:7d:a4:d1:8b:cd:f2:d5:ff:30:ce:c4:2d:0d:89:
2a:a0:15:35:41:38:ad:52:48:94:72:60:3b:13:b8:
e8:16:2f:eb:74:59:a4:5c:a2:16:41:b9:21:b9:75:
31:46:43:4d:e6:a4:61:01:b0:d3:07:e6:dd:51:ff:
97:18:e3:fb:6b:36:26:36:f5:49:59:d5:ac:ae:c1:
ae:d3:7c:7d:40:ec:cb:75:6e:89:60:59:d8:d5:0e:
27:d4:51:27:56:58:f3:6e:00:2b:ec:ff:38:ba:8c:
99:48:c7:3e:e6:6a:ff:87:8f:3b:12:21:30:2d:c1:
8c:9c:2e:78:69:53:9b:a5:c2:48:c8:6f:bc:b3:80:
9d:3b:56:fa:4f:60:fd:c0:9c:6a:b6:c3:9f:14:41:
8f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2F:16:34:96:D1:FB:FE:8C:15:85:C7:A5:7F:B8:10:58:5A:6A:A0
X509v3 Authority Key Identifier:
keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/eC8WNJbR-_6MFYXHpX-4EFhaaqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.13.0/24
IPv6:
2001:678:ac8::/48
Signature Algorithm: sha256WithRSAEncryption
5c:11:cc:70:7b:dd:c7:67:ac:dc:da:67:4a:40:e2:9b:a6:65:
af:9a:20:bf:90:ff:2b:db:4c:ff:2a:9c:b7:bd:83:0f:26:f0:
85:55:cb:c1:09:3a:10:28:5e:2f:89:e8:f4:39:0a:09:1a:b8:
69:eb:7b:06:12:b7:c4:32:e8:4b:b6:ca:4e:1a:8c:b9:38:8c:
7e:27:31:c9:bf:91:68:b0:26:13:7d:3c:34:70:63:ec:26:24:
ab:bb:55:ef:a7:f1:2b:9a:1b:47:84:bf:30:cb:e4:fc:65:11:
33:6e:33:8f:d0:67:fd:cf:1f:c5:f8:6e:26:53:1a:2a:3b:6a:
77:8d:c2:b9:29:00:3e:d7:b4:aa:27:85:30:22:ca:4d:ff:ee:
d1:56:6d:29:18:b0:33:c0:45:18:95:44:e4:c6:29:c0:29:fa:
0a:8c:e9:81:71:98:5b:0d:92:3e:b3:bb:e3:8a:45:48:29:11:
c2:3f:76:38:7d:02:62:3c:61:d9:3b:43:5e:b6:32:d2:5d:59:
78:eb:a5:08:15:36:d4:cd:4b:9c:72:ca:97:cb:73:a7:76:dc:
38:20:d0:b7:95:5f:69:bf:3e:d9:17:7f:1d:29:24:14:94:70:
36:93:d7:af:1f:af:aa:3e:ff:76:c3:5f:b8:33:7e:8b:f0:a5:
b3:b5:d7:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:11 2023 by rpki-client on console-ams.rpki-client.org