Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/81d68a-536c-4442-b852-bbd311186950/1/ePM2aOhO_J73zriSrLQ48chzD8U.roa
File: ePM2aOhO_J73zriSrLQ48chzD8U.roa (raw, json)
Hash identifier: VSABtBIIPG13YZxg6S/WxVttjmssDLXAM89YXCsWXAQ=
Subject key identifier: 78:F3:36:68:E8:4E:FC:9E:F7:CE:B8:92:AC:B4:38:F1:C8:73:0F:C5
Certificate issuer: /CN=a3698b01053911607edb2a76090a6aced95a3ed5
Certificate serial: 070E661D
Authority key identifier: A3:69:8B:01:05:39:11:60:7E:DB:2A:76:09:0A:6A:CE:D9:5A:3E:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2mLAQU5EWB-2yp2CQpqztlaPtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/81d68a-536c-4442-b852-bbd311186950/1/ePM2aOhO_J73zriSrLQ48chzD8U.roa
Signing time: Sat 01 Jan 2022 04:03:15 +0000
ROA not before: Sat 01 Jan 2022 04:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 194.61.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118384157 (0x70e661d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3698b01053911607edb2a76090a6aced95a3ed5
Validity
Not Before: Jan 1 04:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78f33668e84efc9ef7ceb892acb438f1c8730fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:11:60:d0:23:1e:3b:3c:09:9c:e1:a3:c2:d0:
cd:3b:3f:f4:a2:53:c4:f3:83:31:5b:f1:c0:57:aa:
2f:69:a2:08:de:e6:1c:9c:23:7f:05:49:83:61:43:
92:76:ee:f6:9e:84:fa:2f:97:85:a9:5b:aa:01:06:
45:16:38:05:bf:3f:cb:7b:e2:f8:0b:7c:91:44:9d:
44:42:6f:98:4c:9a:bc:10:c7:15:03:78:61:d2:20:
8b:d8:d8:e3:6c:50:54:27:d7:15:c3:9a:6d:a1:3a:
5f:17:7a:fc:ec:ac:d9:6d:00:0a:4c:41:b8:bb:1b:
c2:f9:86:ec:f6:b0:a7:ca:73:c9:d7:c2:99:4d:a7:
8e:43:eb:07:bb:70:6d:59:b0:49:27:c6:a6:2f:bb:
2a:0f:8d:9a:a9:a6:93:23:3c:0f:48:56:89:17:8d:
9c:57:23:cd:a7:be:87:1a:a6:30:ab:fc:56:38:b8:
a7:54:ca:2d:2c:02:a6:54:cf:ce:5d:04:fe:c7:21:
f0:e0:50:98:b9:82:f6:b1:fa:de:81:68:e2:3c:09:
96:b8:11:ba:30:b7:83:3f:87:1f:b0:fb:72:8c:0c:
0e:e5:46:8c:85:03:a0:4b:28:5f:ec:7a:b4:c8:b5:
0f:79:4a:5d:cf:50:bd:c7:f2:b6:d6:8c:d4:f6:08:
2f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F3:36:68:E8:4E:FC:9E:F7:CE:B8:92:AC:B4:38:F1:C8:73:0F:C5
X509v3 Authority Key Identifier:
keyid:A3:69:8B:01:05:39:11:60:7E:DB:2A:76:09:0A:6A:CE:D9:5A:3E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2mLAQU5EWB-2yp2CQpqztlaPtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/81d68a-536c-4442-b852-bbd311186950/1/ePM2aOhO_J73zriSrLQ48chzD8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/81d68a-536c-4442-b852-bbd311186950/1/o2mLAQU5EWB-2yp2CQpqztlaPtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.224.0/22
Signature Algorithm: sha256WithRSAEncryption
80:61:bf:f9:cc:fa:8c:bb:07:4c:4f:c8:c5:d3:c1:15:be:72:
bb:1d:00:b8:51:3f:c9:a2:47:17:49:08:b8:7d:6a:cf:02:ae:
e0:93:be:60:7b:73:16:aa:19:1b:da:12:5d:08:58:4d:29:04:
1b:c3:47:45:0c:24:ff:96:ba:1c:05:fe:dd:5c:10:19:7e:e1:
3c:a4:8f:0a:e3:28:80:4e:d5:89:88:7f:dc:a8:68:2a:f2:15:
13:08:79:90:46:5a:4d:7d:50:87:44:59:89:2b:4a:e9:e8:01:
18:1b:45:91:36:b6:a5:87:b6:15:fb:f2:c1:b5:77:e5:76:63:
46:f3:b0:ea:71:12:0f:ad:1b:94:54:b0:31:d5:8b:62:a2:c6:
b1:43:02:61:07:3f:af:3d:d4:ba:e8:45:72:07:d5:97:d1:46:
24:80:ff:19:b7:cc:4b:fb:0a:94:3e:4d:ec:65:52:da:dc:d2:
f7:ad:7b:20:8d:95:2a:ea:5b:ed:d8:81:f0:e0:4a:5f:4b:46:
86:c4:16:83:81:61:81:96:14:28:3b:b9:06:b0:26:a8:db:0c:
43:f3:dd:00:68:b5:b0:f0:cd:e7:40:90:3c:3c:57:99:c2:f7:
aa:c1:61:a5:7d:1e:73:f2:78:e3:2b:79:8a:06:b1:1b:71:60:
ea:a6:ab:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:37 2023 by rpki-client on console-ams.rpki-client.org