Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/6378bb-52ce-46af-959c-a9054928b544/1/EDC2yUoptQz03zNFhwn5iCgI0Pc.roa
File: EDC2yUoptQz03zNFhwn5iCgI0Pc.roa (raw, json)
Hash identifier: JcerEqgLwsAN2xx0my9/ksRk5N6w6UjSO6hGroaDJmI=
Subject key identifier: 10:30:B6:C9:4A:29:B5:0C:F4:DF:33:45:87:09:F9:88:28:08:D0:F7
Certificate issuer: /CN=f6450d2d0213ee4c9f3181efeeb2d663fe0d365b
Certificate serial: 01848970D52361D3F8D82C66ADA9C249679F
Authority key identifier: F6:45:0D:2D:02:13:EE:4C:9F:31:81:EF:EE:B2:D6:63:FE:0D:36:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9kUNLQIT7kyfMYHv7rLWY_4NNls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/6378bb-52ce-46af-959c-a9054928b544/1/EDC2yUoptQz03zNFhwn5iCgI0Pc.roa
Signing time: Fri 18 Nov 2022 06:33:03 +0000
ROA not before: Fri 18 Nov 2022 06:33:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202358
IP address blocks: 194.15.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:70:d5:23:61:d3:f8:d8:2c:66:ad:a9:c2:49:67:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6450d2d0213ee4c9f3181efeeb2d663fe0d365b
Validity
Not Before: Nov 18 06:33:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1030b6c94a29b50cf4df33458709f9882808d0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4a:6d:74:65:44:1d:8c:d9:1d:8e:f2:ac:f0:
7f:83:f4:76:94:95:bb:e2:6b:35:c9:dc:e8:78:8b:
67:b4:4f:cb:fe:0e:aa:4d:96:78:74:9f:3d:b8:11:
3f:1a:e0:e7:26:02:33:67:a3:a9:cc:d4:f8:46:f3:
1f:fa:81:3b:dd:9c:42:1d:18:52:79:4a:5e:9b:c1:
d1:a2:71:e8:7c:06:6b:ba:85:e1:62:7f:cb:c8:d6:
a5:62:9c:b1:91:56:16:44:d5:14:90:6f:c0:cd:5b:
fe:7c:0c:e0:0c:cc:59:3f:ec:3e:4e:74:d4:7f:17:
21:05:1c:c6:c4:f7:e8:3f:85:bb:35:e1:5f:d9:e9:
de:07:2e:54:5f:07:9a:e9:53:25:84:a2:73:c7:04:
45:0a:a7:56:d1:13:42:81:88:9d:c0:73:97:7e:8b:
49:f6:97:32:58:a0:db:8e:72:50:48:1e:10:0a:58:
55:e8:4c:86:01:55:20:47:1f:7e:8b:7f:73:93:4c:
1b:f7:f8:e0:e2:c9:87:8d:cd:ec:9a:42:99:80:03:
2e:e3:7e:c3:d3:3b:81:f6:e5:e8:6b:94:0a:b8:3d:
5a:1a:46:8d:c0:aa:0f:3e:d6:fd:c5:3b:94:96:0f:
16:54:04:8d:ff:92:52:f5:48:fb:4a:a7:bb:e6:2a:
1b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:30:B6:C9:4A:29:B5:0C:F4:DF:33:45:87:09:F9:88:28:08:D0:F7
X509v3 Authority Key Identifier:
keyid:F6:45:0D:2D:02:13:EE:4C:9F:31:81:EF:EE:B2:D6:63:FE:0D:36:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9kUNLQIT7kyfMYHv7rLWY_4NNls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/6378bb-52ce-46af-959c-a9054928b544/1/EDC2yUoptQz03zNFhwn5iCgI0Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/6378bb-52ce-46af-959c-a9054928b544/1/9kUNLQIT7kyfMYHv7rLWY_4NNls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.151.0/24
Signature Algorithm: sha256WithRSAEncryption
67:86:de:f8:1d:e2:f9:1f:df:63:e6:c3:da:51:f4:ce:5e:5b:
1b:6d:f7:69:f0:c3:40:2a:6f:14:cb:73:56:15:4f:d1:a8:36:
6b:18:f3:8b:44:4a:72:63:4a:5a:9c:10:1c:57:14:52:f0:41:
bc:6c:fb:d4:78:54:92:c7:e1:ca:ae:fc:a9:ad:f1:88:36:85:
80:16:5d:d6:7b:f0:5b:44:fd:b0:da:f4:d8:7a:08:da:4e:38:
9f:74:24:c4:d1:a7:85:08:52:23:b2:cd:11:f6:88:7a:a0:d2:
05:f4:e2:a3:a8:f9:4b:47:79:12:05:cc:2b:21:65:ec:c1:59:
84:84:ab:08:45:5f:16:c2:2c:27:b3:c9:62:ba:b2:9e:a8:07:
e1:ad:73:c0:03:91:af:bc:a8:e6:14:f4:47:b7:66:b7:75:45:
5e:27:54:43:d6:4c:54:18:fe:15:23:92:65:ea:2d:b5:40:d1:
d3:3e:80:8b:d3:04:4a:87:86:25:10:62:8b:06:16:ef:da:2f:
a1:a3:08:f4:7c:9b:df:a3:dd:29:05:b7:43:a9:a1:29:99:6c:
c9:f5:5a:98:46:f6:f8:96:64:ba:ec:7b:79:27:6c:85:7f:da:
89:6b:12:e2:bd:b0:cf:c8:3c:22:43:3e:91:2f:ab:92:9b:54:
ac:e7:62:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:27 2023 by rpki-client on console-fra.rpki-client.org