Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/emtr5k9NF-B6vZHi4lJyxSqkPDA.roa
File: emtr5k9NF-B6vZHi4lJyxSqkPDA.roa (raw, json)
Hash identifier: f85yCoLQofZrX3nSGemegKQyZngAPh9Ezu4GjPF8/I4=
Subject key identifier: 7A:6B:6B:E6:4F:4D:17:E0:7A:BD:91:E2:E2:52:72:C5:2A:A4:3C:30
Certificate issuer: /CN=7015ed275005408d2a86a2303701744430eda34a
Certificate serial: 03D56BEB
Authority key identifier: 70:15:ED:27:50:05:40:8D:2A:86:A2:30:37:01:74:44:30:ED:A3:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/emtr5k9NF-B6vZHi4lJyxSqkPDA.roa
Signing time: Sat 01 Jan 2022 11:59:24 +0000
ROA not before: Sat 01 Jan 2022 11:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.25.48.0/24 maxlen: 24
193.25.49.0/24 maxlen: 24
193.25.50.0/24 maxlen: 24
193.25.51.0/24 maxlen: 24
193.25.55.0/24 maxlen: 24
193.25.56.0/24 maxlen: 24
193.25.54.0/24 maxlen: 24
193.25.57.0/24 maxlen: 24
193.25.58.0/24 maxlen: 24
193.25.52.0/24 maxlen: 24
193.25.53.0/24 maxlen: 24
193.25.59.0/24 maxlen: 24
193.25.62.0/24 maxlen: 24
193.25.63.0/24 maxlen: 24
193.25.60.0/24 maxlen: 24
193.25.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64318443 (0x3d56beb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7015ed275005408d2a86a2303701744430eda34a
Validity
Not Before: Jan 1 11:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a6b6be64f4d17e07abd91e2e25272c52aa43c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e2:ee:92:76:d2:1e:73:b7:9f:62:90:46:fe:
11:44:1f:54:6f:19:a3:b0:ce:e2:05:28:41:47:1a:
6f:54:b3:0a:f1:fa:94:96:7c:ff:76:15:01:61:a2:
15:71:bb:ea:4b:7b:da:db:ae:b4:42:c3:71:ed:54:
39:8a:52:88:65:a9:c0:8c:c4:aa:a6:95:5f:81:5a:
bb:39:01:1d:ee:d5:8d:a2:53:ad:4f:67:cc:9e:4c:
3c:a4:5f:28:c7:41:88:4a:4d:27:9d:6a:c7:08:dc:
28:a4:c2:eb:20:28:cb:5a:e1:57:f2:9b:73:a7:b5:
c3:06:b9:ec:07:b1:07:40:8b:65:f1:c6:78:4d:93:
e0:a4:96:d4:0b:89:e7:e6:01:f7:49:f9:ce:fe:2f:
b4:d9:c5:7b:63:f6:85:5c:78:92:89:32:5b:58:42:
f9:9f:27:2f:46:9a:26:d9:e1:b0:07:4c:4d:ef:92:
94:89:3f:70:64:85:2b:e0:cc:35:ae:41:54:8d:35:
9a:d1:01:e1:c8:32:90:b5:6d:eb:a0:f7:cf:64:33:
69:fb:26:fc:be:78:d9:f3:ed:39:71:ca:43:f0:5d:
f9:b4:58:d6:56:c5:0a:6c:6b:7f:bd:8a:ca:e0:63:
19:e8:e5:3e:bb:43:59:66:1a:c2:17:74:b4:01:e1:
e9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:6B:6B:E6:4F:4D:17:E0:7A:BD:91:E2:E2:52:72:C5:2A:A4:3C:30
X509v3 Authority Key Identifier:
keyid:70:15:ED:27:50:05:40:8D:2A:86:A2:30:37:01:74:44:30:ED:A3:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/emtr5k9NF-B6vZHi4lJyxSqkPDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.48.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:d4:5a:6c:2a:dd:89:fa:c4:d8:e9:cf:42:ad:97:a4:e6:9c:
6a:95:5a:8b:67:b3:a9:33:0f:73:d8:ae:8c:77:56:bf:76:8c:
0e:8f:54:66:b2:ea:95:38:42:91:03:60:b7:e2:7b:a7:af:99:
f9:c3:85:22:c6:dd:b5:79:8d:1d:f5:85:9f:14:bf:89:8d:0f:
25:be:5f:62:2b:27:97:c4:98:2e:06:17:94:ad:b4:4e:97:d0:
0a:dd:2c:5c:2a:d8:5a:5b:e0:07:a6:54:db:7d:ff:47:ba:61:
15:89:19:32:c3:9d:c4:e5:1e:23:7f:ca:48:3e:d8:22:05:b8:
1a:43:62:dd:22:65:27:a2:44:6d:76:7e:bd:2a:3f:e6:93:d6:
4b:9b:5d:1f:4f:71:51:00:91:b1:7e:b0:fb:64:2a:94:3c:4d:
14:b1:e9:76:4b:6c:31:9f:75:f3:06:bd:25:31:46:55:2d:06:
93:ef:9f:8d:4e:f5:0a:a6:fb:9d:25:40:dc:bc:32:b5:03:ad:
97:17:9c:b6:64:21:86:85:d5:fb:ec:35:15:e4:45:cf:aa:bf:
2a:bc:1f:8a:12:d3:11:46:86:3f:a7:f7:55:2b:1e:fc:5b:6d:
72:6b:84:28:cc:ad:8a:d0:ba:b8:70:33:97:01:31:a6:fd:87:
86:90:85:c5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9Vr6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDE1ZWQyNzUwMDU0MDhkMmE4NmEyMzAzNzAxNzQ0NDMwZWRhMzRhMB4XDTIyMDEw
MTExNTkyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2E2YjZiZTY0ZjRk
MTdlMDdhYmQ5MWUyZTI1MjcyYzUyYWE0M2MzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANDi7pJ20h5zt59ikEb+EUQfVG8Zo7DO4gUoQUcab1SzCvH6
lJZ8/3YVAWGiFXG76kt72tuutELDce1UOYpSiGWpwIzEqqaVX4FauzkBHe7VjaJT
rU9nzJ5MPKRfKMdBiEpNJ51qxwjcKKTC6yAoy1rhV/Kbc6e1wwa57AexB0CLZfHG
eE2T4KSW1AuJ5+YB90n5zv4vtNnFe2P2hVx4kokyW1hC+Z8nL0aaJtnhsAdMTe+S
lIk/cGSFK+DMNa5BVI01mtEB4cgykLVt66D3z2Qzafsm/L542fPtOXHKQ/Bd+bRY
1lbFCmxrf72KyuBjGejlPrtDWWYawhd0tAHh6U0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR6a2vmT00X4Hq9keLiUnLFKqQ8MDAfBgNVHSMEGDAWgBRwFe0nUAVAjSqG
ojA3AXREMO2jSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NCWHRKMUFGUUkwcWhxSXdOd0YwUkREdG8wby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzgvZGRmNTI5LTE1MzYtNDRmMC05ZWRhLTRkYWQ0OGExNmU0Mi8x
L2VtdHI1azlORi1CNnZaSGk0bEp5eFNxa1BEQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgv
ZGRmNTI5LTE1MzYtNDRmMC05ZWRhLTRkYWQ0OGExNmU0Mi8xL2NCWHRKMUFGUUkw
cWhxSXdOd0YwUkREdG8wby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMEZMDANBgkqhkiG9w0BAQsFAAOC
AQEAXNRabCrdifrE2OnPQq2XpOacapVai2ezqTMPc9iujHdWv3aMDo9UZrLqlThC
kQNgt+J7p6+Z+cOFIsbdtXmNHfWFnxS/iY0PJb5fYisnl8SYLgYXlK20TpfQCt0s
XCrYWlvgB6ZU233/R7phFYkZMsOdxOUeI3/KSD7YIgW4GkNi3SJlJ6JEbXZ+vSo/
5pPWS5tdH09xUQCRsX6w+2QqlDxNFLHpdktsMZ918wa9JTFGVS0Gk++fjU71Cqb7
nSVA3LwytQOtlxectmQhhoXV++w1FeRFz6q/KrwfihLTEUaGP6f3VSse/FttcmuE
KMytitC6uHAzlwExpv2HhpCFxQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org