Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EAzGG9fgjFfuo0eDxbTszxZRnjM.roa
File: EAzGG9fgjFfuo0eDxbTszxZRnjM.roa (raw, json)
Hash identifier: eO0feiug/ij3VuZMGYzC4cUawTjbLuh+QWoGYkw6Z2k=
Subject key identifier: 10:0C:C6:1B:D7:E0:8C:57:EE:A3:47:83:C5:B4:EC:CF:16:51:9E:33
Certificate issuer: /CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Certificate serial: 0B2B945A
Authority key identifier: 10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EAzGG9fgjFfuo0eDxbTszxZRnjM.roa
Signing time: Sat 01 Jan 2022 08:02:39 +0000
ROA not before: Sat 01 Jan 2022 08:02:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 185.70.47.0/24 maxlen: 24
2a05:2606::/32 maxlen: 32
2a05:2605::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187405402 (0xb2b945a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Validity
Not Before: Jan 1 08:02:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=100cc61bd7e08c57eea34783c5b4eccf16519e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:72:3d:01:78:18:9f:5e:fa:fc:4d:26:c9:
09:d9:73:91:ce:85:12:e4:41:4c:49:99:40:ec:76:
42:9f:2c:61:13:3a:28:40:3b:a7:24:48:64:63:d6:
d3:15:df:fc:e2:a9:d4:5d:dc:28:41:3c:e6:4f:70:
90:72:25:c0:a8:df:74:09:41:7f:3c:3f:02:b8:03:
2d:85:9f:61:3b:10:42:e0:50:89:64:e7:7b:18:8f:
43:ed:c1:59:76:cd:9b:c4:9d:5e:08:36:00:7f:28:
2c:6e:dc:3a:9a:a5:b7:5e:2d:53:77:22:30:57:d3:
8d:ea:8e:5a:71:96:f3:eb:6e:b1:4e:3f:7c:8c:8c:
d6:17:d4:ca:43:96:69:ea:07:b1:e4:bf:59:f6:b5:
3f:00:f8:b4:f1:86:9b:59:34:a2:99:99:84:82:42:
b6:bb:0c:62:69:73:4e:ff:8d:53:fd:5d:b3:37:e1:
a9:d5:67:f1:98:22:62:21:eb:ce:1f:87:5d:7a:99:
c4:76:2c:09:97:56:9a:59:aa:3b:df:e2:e8:48:61:
c8:f4:23:f1:50:73:b5:9c:e6:6b:43:c6:51:d5:19:
8c:99:1d:9f:0a:79:9c:ab:59:82:50:54:4d:34:2d:
16:53:49:2e:cb:4f:55:5b:33:c4:df:6f:a6:35:b9:
3f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0C:C6:1B:D7:E0:8C:57:EE:A3:47:83:C5:B4:EC:CF:16:51:9E:33
X509v3 Authority Key Identifier:
keyid:10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EAzGG9fgjFfuo0eDxbTszxZRnjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.47.0/24
IPv6:
2a05:2605::-2a05:2606:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
3e:71:b6:29:31:99:70:fd:f2:17:18:7a:cf:fa:b9:5f:db:91:
bd:3e:f1:a5:25:e4:72:62:e1:0a:5b:75:b5:2f:1a:5d:44:76:
81:26:f7:38:59:0e:26:07:f7:f8:f1:57:d4:bd:19:60:d1:90:
15:9f:4c:79:68:ba:86:4a:e3:ec:54:b7:1b:27:a2:71:df:19:
46:29:d1:d4:3e:bc:8d:31:df:65:4b:03:a6:cd:7e:91:f0:04:
fb:1c:cb:39:a3:e3:a1:61:bb:1a:90:1e:d9:8c:39:1d:d4:6b:
a6:8e:0d:85:65:8d:aa:99:72:ec:fe:70:67:56:a1:a4:01:81:
f6:4e:3a:5a:3b:22:f7:74:c8:8a:60:71:8d:58:7a:86:2f:ff:
a3:26:aa:2c:5a:e5:b4:6b:50:b3:2e:25:ae:00:0a:8d:37:96:
19:3d:19:30:c9:a5:8b:40:17:7b:ac:be:35:b5:44:76:79:3a:
2f:14:3b:9a:95:6a:d7:6b:e0:e3:02:b2:6e:9e:a4:da:cf:a5:
62:11:42:0f:e7:08:11:e2:c8:07:47:d8:0d:e8:03:27:02:f2:
68:c4:d1:48:db:cf:26:7d:33:22:9b:15:db:33:e9:29:18:9e:
82:e6:48:69:f9:91:3e:a3:8c:4d:8e:98:e0:5d:0a:87:ef:73:
de:cb:8a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org