Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/2de324-86c7-43d6-9df2-f8ae0dbc5df2/1/eYQzsAjxhhkMcGoeZ_Me2CG7qOA.roa
File: eYQzsAjxhhkMcGoeZ_Me2CG7qOA.roa (raw, json)
Hash identifier: fULPHR1GIlgMa+G24sZLFyk2oN60BaejPb+pjLdhgwc=
Subject key identifier: 79:84:33:B0:08:F1:86:19:0C:70:6A:1E:67:F3:1E:D8:21:BB:A8:E0
Certificate issuer: /CN=e0d1a8366c21159f079478a9030843fbf60631b9
Certificate serial: 18086FCF
Authority key identifier: E0:D1:A8:36:6C:21:15:9F:07:94:78:A9:03:08:43:FB:F6:06:31:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4NGoNmwhFZ8HlHipAwhD-_YGMbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/2de324-86c7-43d6-9df2-f8ae0dbc5df2/1/eYQzsAjxhhkMcGoeZ_Me2CG7qOA.roa
Signing time: Sat 01 Jan 2022 10:58:32 +0000
ROA not before: Sat 01 Jan 2022 10:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 194.76.31.0/24 maxlen: 24
194.76.30.0/23 maxlen: 23
194.76.30.0/24 maxlen: 24
194.127.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403206095 (0x18086fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0d1a8366c21159f079478a9030843fbf60631b9
Validity
Not Before: Jan 1 10:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=798433b008f186190c706a1e67f31ed821bba8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:65:27:90:00:fd:93:d4:fa:74:5d:a5:74:
7f:10:47:ed:a6:b7:18:56:63:e3:9d:d0:2c:1d:c8:
9d:5c:dc:e1:dd:ca:fe:6d:b0:7e:11:40:8d:2b:92:
7e:19:d0:54:f1:48:fc:2e:bb:1d:8e:17:ed:42:50:
c0:e9:27:57:f0:e6:9f:06:77:91:05:fd:a4:fd:c3:
41:5a:8b:a7:f3:6b:90:45:f7:09:6d:7f:f0:bf:74:
14:fe:f7:2b:63:aa:45:8d:9c:5c:be:21:f5:74:92:
c3:0f:69:9a:07:e9:5e:ac:bf:1a:d0:ad:83:c4:9a:
f8:ab:88:20:32:7c:45:fe:f9:0e:de:e7:5d:ed:83:
9b:95:b6:83:64:14:ff:62:1c:aa:46:6b:07:ce:57:
a7:b8:bc:dd:77:f8:08:25:a6:4f:bc:46:8a:c6:9f:
e0:79:7a:83:08:48:bd:c9:22:c4:7c:59:96:ff:be:
56:47:cd:58:1a:95:5c:6e:a8:85:95:e5:07:ab:b3:
35:08:8f:47:9b:a1:7d:aa:db:a0:6f:bb:a3:92:04:
e7:ef:df:fb:f0:06:04:11:79:fa:fc:f4:37:63:fa:
15:e3:61:8c:1c:d7:34:92:32:ab:3d:b7:d5:4b:2b:
6a:ad:f6:7b:35:ed:0d:52:75:d7:6c:f1:ce:2f:fa:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:84:33:B0:08:F1:86:19:0C:70:6A:1E:67:F3:1E:D8:21:BB:A8:E0
X509v3 Authority Key Identifier:
keyid:E0:D1:A8:36:6C:21:15:9F:07:94:78:A9:03:08:43:FB:F6:06:31:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4NGoNmwhFZ8HlHipAwhD-_YGMbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2de324-86c7-43d6-9df2-f8ae0dbc5df2/1/eYQzsAjxhhkMcGoeZ_Me2CG7qOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2de324-86c7-43d6-9df2-f8ae0dbc5df2/1/4NGoNmwhFZ8HlHipAwhD-_YGMbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.30.0/23
194.127.134.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f0:ca:a8:8e:98:90:58:45:4f:0a:52:67:df:d0:6b:1f:8b:
d5:6d:50:2f:78:f1:64:bc:bc:5e:19:08:fb:ff:28:5f:89:b9:
43:aa:79:95:24:10:d6:e4:1f:a6:51:fb:38:12:a9:67:aa:2f:
2c:9d:e0:bb:aa:82:b4:b5:46:34:0d:78:5b:61:e7:68:60:62:
d4:5f:5a:4a:a4:1c:72:b4:01:66:8b:30:06:50:93:25:3c:50:
c1:bb:69:93:ef:49:88:70:a8:04:f9:88:e7:9c:37:2e:5a:79:
aa:65:ca:91:0c:1a:74:46:82:1e:a6:6c:64:16:51:1e:3a:c0:
12:0c:b8:72:31:79:30:74:10:46:71:02:60:e0:b9:eb:e0:44:
10:05:ac:2c:d8:25:f2:dc:86:67:fe:ac:78:b1:e5:9b:87:b4:
48:4b:72:c5:fc:c1:e6:69:97:c4:12:d2:a0:eb:b2:33:b2:19:
fa:7a:00:ec:31:c2:6d:33:99:6c:6b:1e:99:ef:4e:24:c5:b7:
8a:37:93:92:62:50:a5:e7:cd:06:69:65:c3:32:71:fb:0c:83:
79:8a:09:6c:3f:aa:e1:1f:c8:40:89:00:0f:ab:8e:a8:78:bb:
91:82:99:04:ed:e0:45:6f:b4:70:30:b6:c4:fd:c8:ad:0d:de:
04:b3:92:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org