Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EUK3xZBBPpLTawgBck_ouvlCOSw.roa
File: EUK3xZBBPpLTawgBck_ouvlCOSw.roa (raw, json)
Hash identifier: zajRjEhrRtYPzpwX5V7iC/NI9TmyLXk+DeszzAIEso4=
Subject key identifier: 11:42:B7:C5:90:41:3E:92:D3:6B:08:01:72:4F:E8:BA:F9:42:39:2C
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 06B4980C
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EUK3xZBBPpLTawgBck_ouvlCOSw.roa
Signing time: Sat 01 Jan 2022 05:06:28 +0000
ROA not before: Sat 01 Jan 2022 05:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9515
IP address blocks: 194.39.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112498700 (0x6b4980c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Jan 1 05:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1142b7c590413e92d36b0801724fe8baf942392c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ac:f6:2a:31:9a:c8:f2:93:9f:36:70:51:99:
06:ac:a3:15:e9:c9:f4:5b:4f:eb:11:e1:49:25:9a:
7e:6b:02:da:f2:03:85:a9:5e:9a:2b:e8:d8:e0:97:
54:f6:e5:52:05:f5:cd:4f:68:21:e2:45:0c:51:51:
9c:7d:83:75:5d:8e:78:b7:c4:3d:c9:de:6b:00:5b:
fd:9a:c2:ae:58:ea:31:d3:d5:b1:78:b2:97:80:3b:
a4:f2:60:36:04:0e:9a:89:0b:b6:b5:01:d6:c4:6e:
3c:52:1b:81:2a:ec:b1:b6:7e:7f:26:d0:4e:5f:ec:
ac:2c:3e:38:21:9f:54:33:e8:ef:e9:dc:31:c8:9a:
bf:3f:c8:93:cb:de:fc:e3:d3:af:04:ae:13:2d:7d:
3f:9c:ec:cb:ce:67:34:54:65:0a:e2:82:ed:6b:96:
4e:bc:80:0a:d5:4a:76:a4:21:19:07:b5:62:7a:67:
04:e5:15:a3:0c:44:89:b8:b1:4a:9d:dd:d3:1e:17:
06:c1:a5:0f:51:39:e8:c0:1c:70:6e:0c:3b:b6:76:
16:d9:89:f1:62:d2:81:10:ed:44:08:bd:54:09:80:
c1:10:33:75:fe:49:9b:45:57:ec:bb:5b:fa:22:f8:
08:04:bf:55:da:65:9c:6b:b7:86:ca:82:1e:a4:6a:
94:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:42:B7:C5:90:41:3E:92:D3:6B:08:01:72:4F:E8:BA:F9:42:39:2C
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EUK3xZBBPpLTawgBck_ouvlCOSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.68.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:c7:95:49:20:17:93:83:99:c9:e1:78:dd:b0:d7:a4:68:b1:
bf:f8:b5:69:13:16:55:cb:13:18:2d:bf:bc:30:c5:89:d3:5a:
47:83:e6:c3:fa:9f:61:9a:da:d3:af:82:81:fe:8b:11:82:cc:
33:dc:79:8f:a5:8e:11:ea:fe:9d:00:56:93:72:b6:63:67:dd:
1c:40:4f:a3:c3:31:7a:98:4b:71:d2:0a:91:5a:9e:79:3f:31:
16:34:41:f4:07:1e:f8:59:33:c0:12:24:ed:55:f1:3f:6d:fe:
f5:4d:3d:b8:b0:83:20:7f:cf:a4:03:a7:61:15:15:76:9a:b7:
ee:c6:5a:0f:31:a8:49:fd:4d:67:15:de:cb:b6:70:05:7b:ac:
4e:3f:f3:5e:0d:53:09:b5:a5:ab:91:6f:81:81:e2:d9:63:28:
f8:22:8e:13:c7:83:08:38:85:1b:14:ec:eb:23:82:2f:57:fd:
21:fc:25:27:ae:67:e6:16:c6:ad:61:c4:72:ee:83:6d:5a:36:
f2:0d:7e:cd:f4:c8:47:81:2a:70:2b:1a:2a:b7:14:4f:e6:7f:
e5:fd:8a:49:25:f8:1e:38:aa:06:f9:2d:5d:6b:c5:35:dc:2e:
a4:4c:32:e2:c9:7d:82:9c:80:63:3f:3e:7d:ba:25:a4:bf:17:
46:3a:aa:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBrSYDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjZjNjYwYjMwZjU2OTJiMmIxNmUyODliMjQ5MDFjNTE4ZmRhNTIwMB4XDTIyMDEw
MTA1MDYyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTE0MmI3YzU5MDQx
M2U5MmQzNmIwODAxNzI0ZmU4YmFmOTQyMzkyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKs9ioxmsjyk582cFGZBqyjFenJ9FtP6xHhSSWafmsC2vID
halemivo2OCXVPblUgX1zU9oIeJFDFFRnH2DdV2OeLfEPcneawBb/ZrCrljqMdPV
sXiyl4A7pPJgNgQOmokLtrUB1sRuPFIbgSrssbZ+fybQTl/srCw+OCGfVDPo7+nc
Mciavz/Ik8ve/OPTrwSuEy19P5zsy85nNFRlCuKC7WuWTryACtVKdqQhGQe1Ynpn
BOUVowxEibixSp3d0x4XBsGlD1E56MAccG4MO7Z2FtmJ8WLSgRDtRAi9VAmAwRAz
df5Jm0VX7Ltb+iL4CAS/VdplnGu3hsqCHqRqlL0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQRQrfFkEE+ktNrCAFyT+i6+UI5LDAfBgNVHSMEGDAWgBQSbGYLMPVpKysW
4omySQHFGP2lIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VteG1DekQxYVNzckZ1S0pza2tCeFJqOXBTQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGYvZGI3ODdmLWMyN2EtNGYyMy05OWIyLTQzOGFjYjcyZmM1Yi8x
L0VVSzN4WkJCUHBMVGF3Z0Jja19vdXZsQ09Tdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYv
ZGI3ODdmLWMyN2EtNGYyMy05OWIyLTQzOGFjYjcyZmM1Yi8xL0VteG1DekQxYVNz
ckZ1S0pza2tCeFJqOXBTQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsInRDANBgkqhkiG9w0BAQsFAAOC
AQEAiseVSSAXk4OZyeF43bDXpGixv/i1aRMWVcsTGC2/vDDFidNaR4Pmw/qfYZra
06+Cgf6LEYLMM9x5j6WOEer+nQBWk3K2Y2fdHEBPo8MxephLcdIKkVqeeT8xFjRB
9Ace+FkzwBIk7VXxP23+9U09uLCDIH/PpAOnYRUVdpq37sZaDzGoSf1NZxXey7Zw
BXusTj/zXg1TCbWlq5FvgYHi2WMo+CKOE8eDCDiFGxTs6yOCL1f9IfwlJ65n5hbG
rWHEcu6DbVo28g1+zfTIR4EqcCsaKrcUT+Z/5f2KSSX4HjiqBvktXWvFNdwupEwy
4sl9gpyAYz8+fbolpL8XRjqq6w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:10 2023 by rpki-client on console-ams.rpki-client.org