Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7eidXKi5rYbpMWHiX4S0p3tXVSI.roa
File: 7eidXKi5rYbpMWHiX4S0p3tXVSI.roa (raw, json)
Hash identifier: rBn4wjDxnpMYjVNGneyf+4Cnw9ROUqHDHu9shKrk96w=
Subject key identifier: ED:E8:9D:5C:A8:B9:AD:86:E9:31:61:E2:5F:84:B4:A7:7B:57:55:22
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0183832BCD25B6F8FB9469D877193DB9A562
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7eidXKi5rYbpMWHiX4S0p3tXVSI.roa
Signing time: Wed 28 Sep 2022 08:17:09 +0000
ROA not before: Wed 28 Sep 2022 08:17:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39616
IP address blocks: 194.242.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:2b:cd:25:b6:f8:fb:94:69:d8:77:19:3d:b9:a5:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Sep 28 08:17:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ede89d5ca8b9ad86e93161e25f84b4a77b575522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f8:59:20:67:83:93:71:05:94:af:95:db:2f:
3a:49:ed:95:13:b4:19:f4:f5:09:20:13:81:cf:c7:
80:24:c1:93:18:c5:9f:ec:91:c1:b9:bb:d8:c4:a6:
d7:8d:92:00:8f:fe:b1:2f:25:11:b0:78:ac:6d:79:
cf:2a:9f:ca:ca:c5:e7:a0:97:94:3a:c4:d5:ad:d6:
50:30:4a:d8:c8:76:a9:93:3b:64:1a:1b:56:6a:42:
0f:5b:dd:f3:5c:f6:b2:f3:45:f7:d3:a0:92:19:87:
08:8d:97:f8:b3:e5:c7:dd:d1:dc:c0:f5:23:a4:6e:
b0:9c:fb:ef:1b:20:b8:ed:9e:c1:25:ee:92:41:97:
ed:2d:ef:c8:e4:a4:71:01:fb:db:e9:16:cd:da:25:
42:ba:a8:ec:e7:8b:c6:48:de:39:f6:98:16:24:c4:
fa:20:d4:56:1a:7b:61:74:24:88:c8:45:9a:4e:6b:
f6:2b:a2:be:98:dd:85:5f:04:64:0a:92:fb:26:e9:
fa:48:12:78:38:ae:d6:1c:0c:ca:29:ad:64:7a:e4:
55:bb:70:14:e3:4f:91:2a:b4:11:7e:0a:18:d5:33:
c1:25:79:fb:3f:4c:b9:15:df:82:de:0e:49:3f:1c:
fb:42:c1:4b:a5:07:54:dc:53:d5:b4:b0:ff:fe:b6:
a3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E8:9D:5C:A8:B9:AD:86:E9:31:61:E2:5F:84:B4:A7:7B:57:55:22
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/7eidXKi5rYbpMWHiX4S0p3tXVSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.63.0/24
Signature Algorithm: sha256WithRSAEncryption
29:3a:01:77:10:07:72:b3:90:7c:4a:5f:90:0a:8b:3d:44:fd:
dd:56:77:eb:dc:d1:26:cc:52:ad:b6:b5:e0:4c:70:27:64:aa:
ab:8a:a7:c9:1c:96:94:c5:29:06:ef:b4:bb:59:93:5d:eb:cb:
3c:31:e3:1b:18:8d:ab:79:99:72:d3:df:f6:4c:90:63:4d:c0:
d5:ea:a5:32:fe:39:99:8f:1e:f3:6e:09:27:2d:3c:6c:65:b9:
6f:59:3d:b7:d5:1f:ab:04:4b:b6:87:40:b0:94:6e:31:17:c9:
ed:34:03:1a:f0:3e:28:7c:a4:ad:ca:93:26:a8:f5:ba:79:cd:
fb:58:19:41:a2:76:93:33:03:3e:4b:8b:dc:d4:20:bb:03:5a:
28:c0:09:19:2c:0e:90:18:73:ab:a3:ea:35:ec:07:f7:1e:1e:
0f:f2:23:45:d9:af:13:9f:5a:18:d7:c2:06:e7:cb:53:fa:00:
f5:66:5a:84:0f:9d:27:d0:d8:fd:82:ec:1f:61:2a:38:6a:d0:
9e:74:36:8c:62:74:bf:55:36:78:9f:30:3f:41:be:00:f8:c5:
6c:a6:a3:62:21:f8:9b:1d:22:49:71:91:a0:b3:84:69:d7:22:
d4:bc:1c:17:7e:11:0e:f4:92:7f:29:9f:36:61:35:26:fa:99:
a1:16:2a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-ams.rpki-client.org