Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/eFYKcys2mXgRQfNA8erwM-dqMl4.roa
File: eFYKcys2mXgRQfNA8erwM-dqMl4.roa (raw, json)
Hash identifier: 5/O2e2NFTBko3tcugd7cF3wc8fWPcJ+p1kLgPo0mcMQ=
Subject key identifier: 78:56:0A:73:2B:36:99:78:11:41:F3:40:F1:EA:F0:33:E7:6A:32:5E
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0183262CF4DD54E2D197EB8606A5CADED8AD
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/eFYKcys2mXgRQfNA8erwM-dqMl4.roa
Signing time: Sat 10 Sep 2022 06:53:43 +0000
ROA not before: Sat 10 Sep 2022 06:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 194.15.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:2c:f4:dd:54:e2:d1:97:eb:86:06:a5:ca:de:d8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Sep 10 06:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78560a732b3699781141f340f1eaf033e76a325e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ef:09:9c:42:31:0e:b6:cd:c1:19:33:a7:ab:
31:d5:1e:56:99:24:da:62:a2:5b:be:84:62:dd:1f:
27:6c:5c:d9:f8:0b:fe:9c:ed:22:82:6f:3e:14:8b:
04:f1:76:fb:bb:27:a5:e4:6c:14:1e:fd:d2:3a:71:
06:6a:48:c1:e1:14:73:67:d3:c2:d5:8b:6b:32:fe:
c9:36:f7:be:7e:52:86:00:ba:6e:04:98:11:c7:1e:
78:6c:6c:91:69:80:37:67:75:3a:89:87:a8:90:16:
6e:43:c5:c1:77:34:fb:f6:b6:db:e2:10:c5:02:49:
d5:b3:c9:cb:c9:d0:af:2c:d0:84:c7:bf:ee:2c:b1:
d7:21:4b:a3:96:86:d1:0f:6c:61:49:d7:5d:da:5a:
6b:c6:a0:4d:c6:fe:b4:4c:e6:d5:86:92:f9:c6:39:
d0:8f:6d:be:b7:ea:1b:66:4b:11:e7:b2:3d:09:85:
08:23:0f:ba:f9:ab:90:f3:09:12:c8:09:fb:fa:e8:
29:ca:ce:68:25:2f:06:1f:da:c5:54:d3:47:ff:35:
61:2f:be:ec:f9:06:aa:73:b0:48:46:f2:7d:91:7d:
58:e3:bb:ca:53:c6:62:18:5d:e8:b8:18:42:64:7f:
49:3a:cb:a8:eb:81:5c:d1:17:80:0b:e5:d5:b4:b6:
3f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:56:0A:73:2B:36:99:78:11:41:F3:40:F1:EA:F0:33:E7:6A:32:5E
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/eFYKcys2mXgRQfNA8erwM-dqMl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.152.0/24
Signature Algorithm: sha256WithRSAEncryption
71:da:23:30:d5:25:5a:55:ee:f6:97:d8:16:09:e6:07:bd:dc:
ee:a3:af:0b:ce:77:da:a8:c3:5f:4d:ce:e5:9b:20:03:52:00:
78:56:75:39:a3:db:77:85:3e:db:5d:d1:f7:33:9b:02:f3:b5:
a9:fc:f1:65:ab:12:26:07:cd:72:aa:48:c7:0a:97:e8:3d:77:
63:4a:71:cc:6f:6f:aa:ea:e5:e4:b9:cc:4f:26:db:f0:be:f3:
af:e0:4c:a2:c1:cf:43:ed:69:49:4d:f5:30:dd:52:4c:bb:d9:
0f:17:61:d9:8b:7b:72:02:b3:f0:dd:af:1a:07:0f:55:35:61:
a7:42:38:e9:49:7e:18:e8:ec:6c:21:7c:b2:30:c8:5f:3e:f5:
30:03:ef:7f:77:fb:cf:c2:6d:d1:8b:51:03:98:e0:16:0b:78:
e8:c5:7b:3c:0a:44:f4:66:ca:b8:7b:c0:e6:89:80:74:0d:c2:
ce:ad:f8:3b:09:0d:30:53:d5:38:93:e1:ae:ba:9b:1f:81:df:
cc:b4:de:74:87:00:73:0a:21:a5:91:d2:b3:0f:08:64:6f:5c:
3b:ba:41:b0:ad:2b:23:49:59:44:35:98:3c:12:cf:02:de:44:
66:eb:8e:3c:ab:ff:18:ee:6a:4f:29:94:97:1c:e1:63:ed:7e:
2d:24:8f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:54 2023 by rpki-client on console-ams.rpki-client.org