Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/28fRMsnEERJy4yeaBlDoAxFxFZU.roa
File: 28fRMsnEERJy4yeaBlDoAxFxFZU.roa (raw, json)
Hash identifier: vDpRZ4ZywWK6otx6DdNH5n/zU+r6CE3ywa/gD6BFafc=
Subject key identifier: DB:C7:D1:32:C9:C4:11:12:72:E3:27:9A:06:50:E8:03:11:71:15:95
Certificate issuer: /CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Certificate serial: 356C911D
Authority key identifier: 12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/28fRMsnEERJy4yeaBlDoAxFxFZU.roa
Signing time: Sat 01 Jan 2022 15:55:16 +0000
ROA not before: Sat 01 Jan 2022 15:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49785
IP address blocks: 93.159.190.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 896307485 (0x356c911d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Validity
Not Before: Jan 1 15:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbc7d132c9c4111272e3279a0650e80311711595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:89:dd:61:bd:b6:59:d2:73:51:88:85:33:c1:
92:47:34:87:b1:bf:60:49:94:2d:cd:6d:93:1c:89:
02:ac:23:f8:a3:24:fd:b4:6c:d5:b4:72:96:55:34:
88:2b:ef:ee:98:e6:06:f9:72:98:3e:ac:ae:30:71:
29:08:2b:c8:05:48:30:74:91:77:72:fe:36:1f:eb:
3a:69:c8:1c:a8:05:af:b2:5f:85:ef:4e:36:89:97:
7e:4d:35:1b:e3:54:79:a8:73:27:fc:05:cd:d0:07:
2c:16:59:03:f2:36:12:0a:10:e9:35:b3:ee:0c:f1:
09:01:91:67:0a:4b:7c:65:c8:e6:07:e1:ce:bc:da:
54:4d:97:e3:97:84:04:64:ec:33:18:16:4e:e8:90:
3a:b0:4b:f0:d7:38:b3:28:93:44:4d:8a:7a:50:70:
d6:f2:f7:cb:dc:67:41:74:f0:25:be:27:ac:c7:95:
d1:a8:18:c5:09:91:79:b1:b4:dd:c4:02:16:f2:5d:
1b:f6:86:4a:16:93:04:b7:e6:9c:0c:c2:df:9c:19:
cf:30:8c:2c:9d:02:2d:55:05:29:a0:92:13:67:88:
c3:27:2a:e1:88:75:f8:d7:7f:83:a7:70:9c:4d:ac:
86:aa:3a:3b:f8:77:5a:64:3f:d1:2a:bf:62:fd:dc:
41:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C7:D1:32:C9:C4:11:12:72:E3:27:9A:06:50:E8:03:11:71:15:95
X509v3 Authority Key Identifier:
keyid:12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/28fRMsnEERJy4yeaBlDoAxFxFZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Eipka-1MQXprSAX5PXenpGXjS5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.159.190.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:37:c3:5e:ef:ad:4c:53:23:65:b3:3a:87:1d:c8:43:06:35:
9a:d4:9d:f0:4e:77:27:b3:89:12:a0:1f:54:56:04:64:e8:41:
ba:f5:b6:2b:35:9f:44:cc:e7:3b:ba:30:92:f8:30:d0:de:92:
c8:95:bd:83:a6:c6:2b:ff:d5:31:35:59:42:84:61:b2:79:c6:
f8:f4:92:a7:2a:3c:cd:0e:75:14:e5:09:1e:e0:88:5e:b1:e8:
2a:7e:f3:35:d4:57:1f:f1:6f:7b:b1:68:8d:4d:7e:31:5b:16:
eb:c5:05:e5:ae:00:c0:80:4c:b8:eb:81:dd:73:96:e0:50:6f:
60:8e:74:c6:e9:e7:34:a4:21:42:d8:7e:d1:99:ec:a0:50:d7:
2b:1a:d4:2f:10:3d:f9:d7:52:31:a4:2f:c4:10:e2:6f:b4:49:
27:f0:15:57:24:03:16:4d:e7:ec:9d:c7:3b:53:6c:3b:18:bd:
d4:53:57:40:0a:0c:eb:e3:bf:d6:16:de:06:b8:a9:d4:81:c7:
e7:e4:d3:17:9e:1c:88:4f:e8:b3:9b:6a:29:ef:8a:75:35:14:
59:f8:44:a5:da:2d:1a:e1:c2:b1:f5:cd:07:9b:40:2c:71:0b:
be:e8:3a:06:28:8d:23:d6:35:8b:6a:9b:8b:d6:cb:ce:cf:cf:
f3:19:47:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:44 2024 by rpki-client on console-ams.rpki-client.org