Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/EqbvUQSRJYfmQsswlPdVz8txJ-o.roa
File: EqbvUQSRJYfmQsswlPdVz8txJ-o.roa (raw, json)
Hash identifier: yuTtnqDYNQOp8kRkkWG43fVDWNSpUzCtm0XHo4SlOZ8=
Subject key identifier: 12:A6:EF:51:04:91:25:87:E6:42:CB:30:94:F7:55:CF:CB:71:27:EA
Certificate issuer: /CN=237f7db033314c473cda194e0df79f1c375da3f4
Certificate serial: 0C4AD248
Authority key identifier: 23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/EqbvUQSRJYfmQsswlPdVz8txJ-o.roa
Signing time: Tue 12 Apr 2022 10:16:38 +0000
ROA not before: Tue 12 Apr 2022 10:16:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4755
IP address blocks: 91.140.128.0/17 maxlen: 17
194.54.192.0/18 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206230088 (0xc4ad248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237f7db033314c473cda194e0df79f1c375da3f4
Validity
Not Before: Apr 12 10:16:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a6ef5104912587e642cb3094f755cfcb7127ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ed:7e:d3:1c:25:1c:19:a2:2d:9f:e9:bd:e1:
c5:65:ea:6d:1b:99:5a:44:cf:ec:f0:65:ff:aa:2d:
51:54:9b:4b:fb:aa:a3:2f:5b:89:fb:d7:b7:f9:f2:
59:37:d8:ed:e1:f9:02:fa:9f:a2:45:ec:1e:0c:62:
62:7b:e5:aa:45:28:f0:6c:d6:fd:67:73:70:b9:17:
00:ec:a1:f8:44:ae:79:05:da:a1:3b:cb:76:60:14:
1f:50:03:98:c2:59:b3:01:2a:14:45:45:fb:cc:da:
eb:f8:ff:11:3a:05:b7:2d:f7:96:1a:cc:2b:85:7d:
db:f8:56:2a:92:6c:39:c1:5d:4a:3a:ae:af:a2:1c:
3f:64:9f:64:08:c6:3d:a8:07:c2:15:f3:d9:44:19:
45:82:9c:28:e5:a6:e1:b7:39:5a:5c:e9:67:1c:8e:
e7:f0:80:7a:5b:53:f9:ff:09:c0:45:75:9c:b1:35:
11:4c:01:4c:bb:5f:7f:6f:8a:76:1f:a9:a0:4a:c1:
32:2c:ba:03:6c:f6:b1:74:a8:0a:fc:48:e3:5c:ed:
41:fb:3b:cd:22:47:a8:21:83:57:d9:e3:fe:52:71:
6d:ac:ff:7b:71:52:4c:93:0b:fd:8e:02:be:d1:a4:
09:74:f4:c8:7e:49:ec:f4:f9:71:ea:96:81:1d:e0:
6d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A6:EF:51:04:91:25:87:E6:42:CB:30:94:F7:55:CF:CB:71:27:EA
X509v3 Authority Key Identifier:
keyid:23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/EqbvUQSRJYfmQsswlPdVz8txJ-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/I399sDMxTEc82hlODfefHDddo_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.140.128.0/17
194.54.192.0/18
Signature Algorithm: sha256WithRSAEncryption
1d:f5:75:50:a6:8f:a0:60:01:05:b9:fe:de:07:2a:9c:8e:61:
3c:98:c7:b5:bc:3c:1e:82:84:e9:b1:be:45:5d:64:ad:5d:90:
73:3c:ba:b7:43:8b:c7:52:e6:12:fb:79:58:f9:62:e4:ba:e9:
96:c8:54:16:27:88:9e:a3:51:a6:30:cd:84:ab:11:15:0b:f4:
47:0d:8a:50:65:c2:ac:ac:b9:56:bb:fb:5e:55:02:3c:51:8c:
96:27:5f:8c:20:bc:6a:75:f5:b8:9e:85:05:fd:c7:bb:6d:d4:
63:7f:94:a2:18:85:38:66:7a:df:d6:18:60:b0:fd:0c:35:96:
95:cd:a3:44:37:2e:cc:19:4d:1d:ad:41:6f:81:b8:4d:fe:35:
a5:84:54:2f:2e:4c:44:18:82:89:a4:22:af:d1:c4:98:88:d7:
22:26:29:40:f1:60:81:9d:8f:53:63:d8:ec:e1:0c:80:c3:cc:
d1:17:f0:29:e3:4c:e4:cd:ec:02:02:3e:87:f4:1e:e6:9d:d5:
fc:0e:ac:08:42:40:b7:5e:6a:79:37:0a:32:b5:4c:ba:0a:51:
02:11:48:63:f0:3b:80:74:b8:6b:65:de:71:f2:92:7c:08:1c:
3d:27:e8:10:a3:8f:66:e5:dc:5c:b3:1c:51:a1:33:54:9a:9e:
69:e2:b0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:40 2023 by rpki-client on console-ams.rpki-client.org