Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/05a1ca-33c5-4aef-9c9a-f50fd99373ec/1/EkDjRBeztXETfhJhWFjVyE4Wtd0.roa
File: EkDjRBeztXETfhJhWFjVyE4Wtd0.roa (raw, json)
Hash identifier: d1Tks7c2ZNAh8KuGrqamgP3teLEFC6EfT4cB4NZ5O6Y=
Subject key identifier: 12:40:E3:44:17:B3:B5:71:13:7E:12:61:58:58:D5:C8:4E:16:B5:DD
Certificate issuer: /CN=7e5555f1a2cee89b7134656086f054d796353c1e
Certificate serial: 15347DC3
Authority key identifier: 7E:55:55:F1:A2:CE:E8:9B:71:34:65:60:86:F0:54:D7:96:35:3C:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/flVV8aLO6JtxNGVghvBU15Y1PB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/05a1ca-33c5-4aef-9c9a-f50fd99373ec/1/EkDjRBeztXETfhJhWFjVyE4Wtd0.roa
Signing time: Sat 01 Jan 2022 12:56:16 +0000
ROA not before: Sat 01 Jan 2022 12:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25577
IP address blocks: 195.135.208.0/22 maxlen: 22
193.93.84.0/22 maxlen: 22
195.210.54.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355761603 (0x15347dc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e5555f1a2cee89b7134656086f054d796353c1e
Validity
Not Before: Jan 1 12:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1240e34417b3b571137e12615858d5c84e16b5dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:b1:8a:dc:6c:57:3c:91:e8:5c:6b:f4:0f:
37:a3:56:35:2c:65:bc:f6:c2:71:0b:46:e9:b3:4e:
88:bc:f4:e0:7d:e1:a9:37:3a:27:52:b9:69:ef:e6:
d8:db:00:20:cb:ef:a1:c0:52:7f:9c:51:ca:67:44:
9f:9b:a0:f5:d5:08:2e:9d:78:fd:53:44:0b:c2:16:
2b:80:74:3f:19:a0:30:c0:86:05:94:96:d5:f6:ab:
58:03:ab:cd:09:24:09:6e:5d:b4:2a:0f:0b:77:f3:
a2:1a:7c:75:62:0b:79:20:f4:75:0b:a7:89:2c:d3:
41:24:d1:56:68:ac:19:bf:4e:23:18:03:87:85:a6:
f3:0c:12:1b:67:bc:7b:b4:f6:4b:0a:23:eb:37:ad:
4f:ef:30:fd:24:0e:10:50:c1:7f:40:53:85:d6:f7:
30:7e:21:c5:94:57:a2:12:8f:5c:8f:41:0e:62:79:
55:7c:11:01:8d:88:ae:bf:c0:1a:a3:47:5c:99:c9:
f2:6c:5c:ff:cc:29:a3:d5:91:ab:93:fa:a1:7c:c8:
15:a3:3b:45:9d:e1:58:60:9b:72:f9:a7:69:92:f8:
10:f9:8b:f0:0e:d3:fd:4a:5e:46:cc:39:1e:f7:50:
ca:d0:b1:3d:3a:ba:39:99:87:e4:dd:75:6a:03:a5:
a5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:40:E3:44:17:B3:B5:71:13:7E:12:61:58:58:D5:C8:4E:16:B5:DD
X509v3 Authority Key Identifier:
keyid:7E:55:55:F1:A2:CE:E8:9B:71:34:65:60:86:F0:54:D7:96:35:3C:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/flVV8aLO6JtxNGVghvBU15Y1PB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/05a1ca-33c5-4aef-9c9a-f50fd99373ec/1/EkDjRBeztXETfhJhWFjVyE4Wtd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/05a1ca-33c5-4aef-9c9a-f50fd99373ec/1/flVV8aLO6JtxNGVghvBU15Y1PB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.84.0/22
195.135.208.0/22
195.210.54.0/23
Signature Algorithm: sha256WithRSAEncryption
71:fb:91:d5:76:d1:a3:00:5f:0c:94:15:b3:8f:57:49:88:5a:
08:3c:bd:1f:05:68:1b:67:70:43:79:02:b0:64:5c:d4:d9:ad:
ee:47:f0:36:7e:39:6d:d7:1d:da:c8:03:65:89:de:c0:40:85:
98:5b:00:8e:a3:d9:ef:f8:1f:fd:4f:cf:7d:42:65:6b:64:ba:
2e:cc:a7:97:79:30:3b:34:b1:82:9a:70:7d:c3:b0:85:44:d9:
d4:09:91:50:de:24:6c:6c:09:12:32:f3:55:ba:71:3d:e5:0d:
f4:d6:a1:65:12:64:ab:04:fa:ab:d2:8b:ed:d6:89:f8:cf:18:
0a:93:97:b5:90:e0:2d:da:ae:80:eb:38:b7:45:c3:58:96:9f:
e2:a0:f9:6e:dc:34:b1:74:85:2f:f4:55:67:d5:5e:53:e8:88:
57:95:08:1e:27:ca:9b:b8:07:d9:96:19:15:47:fd:2b:b4:db:
91:d9:c5:86:78:23:89:92:56:d2:cc:aa:ce:7a:e9:b2:81:9f:
1d:ac:70:2b:6e:62:29:00:52:23:02:f5:8d:a3:5f:fa:ff:06:
e7:4e:ee:27:6d:d7:28:56:8e:93:02:5d:c8:90:28:eb:16:9b:
ea:e8:ad:5b:24:ea:c6:ac:e8:71:65:b8:21:ac:be:3f:e4:db:
b2:33:42:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:49 2024 by rpki-client on console-ams.rpki-client.org