Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/EUMHPg_uLGuQISJ8HVinsN7kaQg.roa
File: EUMHPg_uLGuQISJ8HVinsN7kaQg.roa (raw, json)
Hash identifier: A4CWOsfWwrwFIHDmWAxdohAZX2/CY/cJBcSLi4x8Xos=
Subject key identifier: 11:43:07:3E:0F:EE:2C:6B:90:21:22:7C:1D:58:A7:B0:DE:E4:69:08
Certificate issuer: /CN=ecf42776be532bd0575332855d8c42c4952ed931
Certificate serial: 340F6DC9
Authority key identifier: EC:F4:27:76:BE:53:2B:D0:57:53:32:85:5D:8C:42:C4:95:2E:D9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PQndr5TK9BXUzKFXYxCxJUu2TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/EUMHPg_uLGuQISJ8HVinsN7kaQg.roa
Signing time: Thu 05 May 2022 12:21:59 +0000
ROA not before: Thu 05 May 2022 12:21:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 146.109.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873426377 (0x340f6dc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf42776be532bd0575332855d8c42c4952ed931
Validity
Not Before: May 5 12:21:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1143073e0fee2c6b9021227c1d58a7b0dee46908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ed:c6:75:cb:65:10:38:15:50:fd:91:34:ed:
73:34:de:4a:61:e3:d9:f2:ce:9b:f0:13:56:c0:6d:
77:51:7b:c9:4a:ff:9b:f0:97:69:42:87:fa:52:c7:
d2:44:d8:b6:a6:d7:19:ea:e3:29:94:43:22:e7:20:
c0:0a:a8:65:99:b3:c7:ea:52:ef:d7:27:b4:4e:4c:
28:09:ca:3a:6f:a7:a6:6a:3b:dd:bf:c3:74:2b:b2:
b6:76:fc:16:b0:a5:24:ff:61:a7:8e:9f:0d:3d:7d:
3d:26:c2:5f:26:ca:44:ce:44:79:ed:b7:c3:3e:1c:
49:b3:23:8f:cd:f3:f3:00:df:76:2f:62:dc:a3:ac:
d2:4e:ee:50:c7:53:20:f3:73:e7:f6:8c:c6:34:eb:
32:0d:3d:ca:6c:8b:0f:0c:c3:d6:3f:61:8d:5a:b4:
ff:05:6f:a1:f4:45:8b:65:9b:3e:92:15:59:8d:94:
04:5f:3a:29:4c:2c:9d:69:ee:fc:fb:fa:1b:73:e9:
a1:71:c4:9c:01:5d:1f:69:f7:80:db:12:86:2c:3e:
1b:ea:e5:16:f3:9e:22:c2:99:e4:d5:48:f6:4f:12:
40:ed:c9:5f:fb:76:a8:c7:25:8a:e8:f8:03:4d:c5:
10:e4:d2:d2:5b:3e:3c:ac:ad:33:c9:99:33:f2:58:
af:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:43:07:3E:0F:EE:2C:6B:90:21:22:7C:1D:58:A7:B0:DE:E4:69:08
X509v3 Authority Key Identifier:
keyid:EC:F4:27:76:BE:53:2B:D0:57:53:32:85:5D:8C:42:C4:95:2E:D9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PQndr5TK9BXUzKFXYxCxJUu2TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/EUMHPg_uLGuQISJ8HVinsN7kaQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/7PQndr5TK9BXUzKFXYxCxJUu2TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.109.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8c:19:5e:ba:3b:a9:da:05:6a:96:9b:1b:00:c4:13:84:cf:d0:
eb:c3:f1:75:c0:ff:72:19:88:0a:68:e3:22:f9:c5:cb:9c:16:
e3:0d:41:98:d6:30:a1:93:cd:a2:22:2c:c8:18:d9:a5:b0:22:
0b:a3:82:dd:84:f4:06:5a:5a:c5:31:2b:fc:40:d0:f3:e0:1e:
84:0e:93:68:13:ca:cf:cb:57:68:d9:fe:c5:1a:39:19:d5:ab:
b2:39:73:9d:84:e6:dd:a7:22:ef:fc:e7:d7:0b:8d:6c:6c:f1:
7d:f7:46:8e:91:dc:06:1e:b5:3f:46:bc:a4:5a:c3:71:fd:71:
27:0d:e0:63:36:05:4d:9b:d2:e9:92:63:be:ca:53:8d:a4:6f:
69:8c:1f:3c:b4:1d:96:1e:5c:32:d4:a8:09:2d:ad:1c:01:8e:
97:49:89:62:fb:fc:07:9e:76:75:68:cd:6b:fe:51:14:d3:83:
f4:e0:2c:98:40:51:bc:59:fb:d8:05:48:d8:8a:db:8d:f3:f0:
7f:b2:00:e3:4d:46:96:b8:5f:ee:61:37:3d:0c:3a:ce:5b:a4:
eb:8c:8d:b4:18:3e:db:51:cc:75:37:43:48:5c:6d:16:4d:b7:
1d:70:3d:c8:ec:f4:c3:a0:0b:1b:26:2b:ea:3a:5a:c9:77:b3:
62:42:89:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:34 2023 by rpki-client on console-ams.rpki-client.org