Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/8c143d-e2a3-4314-9a51-a0b9751efa47/1/EyYXWMuTTKXMvpK2i-hAb9EoRrY.roa
File: EyYXWMuTTKXMvpK2i-hAb9EoRrY.roa (raw, json)
Hash identifier: RAM7bFIo3UYFSuVavbUErYqGGjB1Uy1qjIJT3KHSscU=
Subject key identifier: 13:26:17:58:CB:93:4C:A5:CC:BE:92:B6:8B:E8:40:6F:D1:28:46:B6
Certificate issuer: /CN=48096ad33beb3e9504ad51a4e79034f7d1847633
Certificate serial: 02D61385
Authority key identifier: 48:09:6A:D3:3B:EB:3E:95:04:AD:51:A4:E7:90:34:F7:D1:84:76:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAlq0zvrPpUErVGk55A099GEdjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/8c143d-e2a3-4314-9a51-a0b9751efa47/1/EyYXWMuTTKXMvpK2i-hAb9EoRrY.roa
Signing time: Sat 01 Jan 2022 10:02:56 +0000
ROA not before: Sat 01 Jan 2022 10:02:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42493
IP address blocks: 2.59.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47584133 (0x2d61385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48096ad33beb3e9504ad51a4e79034f7d1847633
Validity
Not Before: Jan 1 10:02:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13261758cb934ca5ccbe92b68be8406fd12846b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:6c:c3:a5:d8:a2:3b:82:8c:2f:e8:02:9a:
58:79:8d:c9:f0:89:40:71:a3:73:43:07:e5:59:f6:
ac:56:7a:12:05:b7:69:61:c5:78:37:41:c3:e3:83:
ab:f9:4c:1b:11:5c:89:fc:14:53:82:53:b3:2f:e2:
c3:11:7a:2c:d7:7f:f7:6f:fb:4a:2e:66:c2:fc:ee:
76:22:7f:77:aa:0f:9c:71:f4:89:d7:61:27:39:f6:
1d:37:8d:9f:d0:8b:81:52:8a:91:a7:47:68:ec:a1:
0f:d6:e5:5e:e6:65:ac:83:0b:99:11:4f:c3:95:96:
64:2b:18:54:6e:ad:b7:96:53:40:ff:69:8d:8f:2d:
42:6b:35:ce:4e:b6:51:3e:f1:1d:c6:f8:d2:82:43:
47:ad:46:07:8f:a5:15:2c:89:1d:8f:94:e4:0b:cb:
bf:6a:36:7e:fd:a7:c4:4d:3e:b9:7a:f3:cc:23:8a:
e8:bf:6e:ee:ac:08:8b:7a:c6:19:ab:8e:69:8c:0a:
77:f7:85:7d:e8:e5:f7:16:aa:42:56:cb:69:2b:11:
8d:78:cf:4d:a3:fc:da:c4:d1:c2:2e:0b:63:42:0b:
84:d4:8c:8e:42:49:26:12:da:83:c0:c2:da:b9:2e:
84:31:e9:ae:b2:a1:a8:ba:26:ba:94:94:12:a4:18:
d3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:26:17:58:CB:93:4C:A5:CC:BE:92:B6:8B:E8:40:6F:D1:28:46:B6
X509v3 Authority Key Identifier:
keyid:48:09:6A:D3:3B:EB:3E:95:04:AD:51:A4:E7:90:34:F7:D1:84:76:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAlq0zvrPpUErVGk55A099GEdjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/8c143d-e2a3-4314-9a51-a0b9751efa47/1/EyYXWMuTTKXMvpK2i-hAb9EoRrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/8c143d-e2a3-4314-9a51-a0b9751efa47/1/SAlq0zvrPpUErVGk55A099GEdjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:ae:78:70:7e:bb:07:df:5c:d0:21:e9:b7:bb:ba:7e:2f:aa:
bd:c5:bf:6c:e7:bd:44:0f:d3:a5:60:fa:bf:a3:a3:b9:ec:4c:
b0:5b:74:b3:5d:bf:e1:c0:07:9d:fe:a1:cc:ad:8e:92:42:97:
1b:6c:ae:f6:5a:d9:e1:7e:9b:d2:6f:05:88:a2:45:18:33:ad:
34:51:75:a0:9d:e3:39:83:d3:63:5a:2c:b4:a5:3e:70:6a:50:
34:6d:db:52:a6:55:25:38:68:fa:56:b0:21:f3:c9:3e:1a:ec:
a7:0b:54:f2:ad:1c:33:09:3c:b1:64:f6:d6:d1:50:4e:b5:e1:
fb:82:35:4b:c4:0c:bb:0a:48:f3:bd:e6:bf:c2:3c:0a:07:23:
f7:a8:cc:f6:a7:08:59:50:64:0b:10:06:0c:d6:85:21:33:4a:
7d:b5:dc:40:a4:ea:86:33:04:d3:ca:1f:50:b2:65:12:e6:bd:
2a:b8:2a:fd:cf:e6:59:93:62:63:97:d1:94:02:f2:3b:c2:f8:
db:da:7f:c3:79:c0:85:05:0a:4c:d4:33:94:8c:52:35:38:07:
3f:7b:a1:62:e4:bf:e8:0f:34:39:23:02:5a:84:f6:f1:18:88:
53:2f:e0:d9:91:6f:e6:40:41:5f:81:99:d0:1d:55:79:6d:cd:
c6:30:95:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:07 2024 by rpki-client on console-fra.rpki-client.org