Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/Eq1zlxz92w0kNHNqUnCAiDvWI9M.roa
File: Eq1zlxz92w0kNHNqUnCAiDvWI9M.roa (raw, json)
Hash identifier: SOPSZq6aCRBCcV5IzJvmbpzKrSpHaFEC5gdPJXrpO8U=
Subject key identifier: 12:AD:73:97:1C:FD:DB:0D:24:34:73:6A:52:70:80:88:3B:D6:23:D3
Certificate issuer: /CN=e8cf15bf6b1f2690f20901d1896e2d880fe8886e
Certificate serial: 094BA173
Authority key identifier: E8:CF:15:BF:6B:1F:26:90:F2:09:01:D1:89:6E:2D:88:0F:E8:88:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6M8Vv2sfJpDyCQHRiW4tiA_oiG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/Eq1zlxz92w0kNHNqUnCAiDvWI9M.roa
Signing time: Sat 01 Jan 2022 10:58:56 +0000
ROA not before: Sat 01 Jan 2022 10:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205753
IP address blocks: 193.169.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155951475 (0x94ba173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8cf15bf6b1f2690f20901d1896e2d880fe8886e
Validity
Not Before: Jan 1 10:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12ad73971cfddb0d2434736a527080883bd623d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b6:79:0a:52:5b:1b:32:aa:9e:98:cf:80:af:
4f:06:1d:ec:64:33:a1:23:6b:bf:de:3d:57:83:c0:
f0:87:a5:d2:82:11:32:88:34:3e:d0:a8:cc:c5:fa:
e1:f8:e5:19:a0:c9:0c:5a:dc:f0:f4:94:1e:ca:f1:
81:2b:58:6e:58:27:87:8d:04:20:bf:73:f1:f3:63:
af:98:21:0b:3e:e3:a5:7a:cc:8c:2d:10:f0:74:fd:
43:de:1b:08:3a:b0:5e:bb:c9:40:9e:d3:e6:e0:3e:
34:cd:23:d6:fd:ff:15:25:05:bb:d1:95:cb:5b:bb:
00:34:67:b2:84:98:81:14:21:75:cb:09:c3:aa:b0:
46:cf:e8:99:aa:85:f1:d9:5f:ec:ce:c0:2e:5f:23:
0e:d1:46:5b:ce:94:fb:47:bb:fc:ce:07:a9:dd:70:
fe:49:1f:73:d0:5a:13:bb:2b:df:86:a9:c3:51:f6:
b5:03:01:3f:a8:e8:43:ad:05:fc:10:7f:38:8f:ae:
fc:be:ea:6d:3b:0f:37:45:9d:2c:b4:b2:cf:f7:4c:
68:10:f2:81:d3:39:da:0a:9b:00:01:9b:6e:48:eb:
2c:ee:bd:28:9a:e4:af:76:26:01:10:c3:1a:64:1d:
bb:32:41:8d:26:40:88:6c:4f:fd:1c:11:df:53:f7:
54:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AD:73:97:1C:FD:DB:0D:24:34:73:6A:52:70:80:88:3B:D6:23:D3
X509v3 Authority Key Identifier:
keyid:E8:CF:15:BF:6B:1F:26:90:F2:09:01:D1:89:6E:2D:88:0F:E8:88:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6M8Vv2sfJpDyCQHRiW4tiA_oiG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/Eq1zlxz92w0kNHNqUnCAiDvWI9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d83576-c685-4624-9d88-9911fa984e2e/1/6M8Vv2sfJpDyCQHRiW4tiA_oiG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.135.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:23:6b:e4:14:19:99:0b:03:45:67:42:de:ec:59:15:8b:fd:
69:ed:24:37:12:d8:5c:9e:d1:69:c9:28:f9:e8:79:e9:fc:4f:
f6:56:58:99:71:32:da:ce:19:0a:48:86:13:3f:b5:aa:73:d2:
be:0b:4a:fa:a5:e6:a2:bd:3e:8d:90:aa:3d:c2:26:03:b1:3e:
a4:c3:c0:64:87:c2:f8:0f:e3:00:76:3a:79:83:0f:bd:34:de:
fb:83:21:9d:ca:de:84:9f:31:17:2b:1d:bd:d0:d9:eb:f4:a6:
23:86:2a:f9:08:5b:92:8f:12:b0:8f:a4:8b:e5:37:5b:6e:d4:
a3:a0:cd:93:57:93:c7:aa:56:e6:fc:19:c0:82:3a:f8:55:30:
5b:14:a7:18:db:27:af:a4:bd:41:63:a7:2e:54:c2:ff:d0:38:
3a:30:96:cc:15:9b:e7:ca:0d:ab:f4:49:17:cc:a6:8b:df:81:
b9:65:92:66:e0:f5:48:d7:c6:97:3c:32:30:8d:b8:29:11:22:
ee:51:38:c0:de:23:68:ff:1e:56:9e:2b:7d:29:58:59:aa:ff:
2e:18:a6:c4:fa:74:27:b9:d1:6d:fe:06:a3:11:e2:9a:ea:ea:
67:c3:97:9d:c7:c8:d6:09:2b:83:6c:73:b1:af:bb:22:bb:bc:
11:b4:7d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:28:23 2025 by rpki-client