Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/EhIzL8eu_acX-vl6NQPnj2dV-GI.roa
File: EhIzL8eu_acX-vl6NQPnj2dV-GI.roa (raw, json)
Hash identifier: iaKPN2QJ6iFpxi1j/InlCvqQH8+4pwkQqGROmLqY15k=
Subject key identifier: 12:12:33:2F:C7:AE:FD:A7:17:FA:F9:7A:35:03:E7:8F:67:55:F8:62
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 1575CDE8
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/EhIzL8eu_acX-vl6NQPnj2dV-GI.roa
Signing time: Thu 06 Jan 2022 14:55:15 +0000
ROA not before: Thu 06 Jan 2022 14:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400039
IP address blocks: 45.95.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360041960 (0x1575cde8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 6 14:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1212332fc7aefda717faf97a3503e78f6755f862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:60:76:e5:3c:1b:46:ad:46:a3:3b:a2:c7:
e8:31:ea:02:80:b8:b3:27:2e:b8:26:53:fe:92:3a:
8a:04:f6:e2:cf:92:10:39:9d:db:c1:5d:73:06:d4:
7a:01:ce:c1:96:90:00:4c:38:2f:6d:fe:9e:75:34:
ad:c6:ea:9b:64:05:98:78:5f:88:c2:8d:b8:d6:88:
15:39:dd:17:95:2a:4b:8b:d9:9c:60:a8:ef:89:b6:
c4:81:65:b5:37:93:bd:1a:48:fe:81:02:6b:6a:96:
ba:0c:5e:3e:eb:2d:6e:b3:74:00:1a:13:3a:c0:00:
8f:7b:77:e4:31:97:22:a6:76:e5:fa:91:95:14:e8:
38:4b:8c:aa:91:5c:69:61:fb:e2:bc:47:36:24:0a:
0f:55:16:de:0c:f8:c4:b2:d0:8d:c5:19:14:bf:b2:
db:80:06:e7:ae:0c:3a:c4:d5:ed:17:80:c7:4e:c2:
68:1c:da:d1:c9:8a:ce:9d:9d:35:da:9f:cf:82:de:
3c:8c:be:23:41:49:c5:82:89:72:13:9c:0c:49:c3:
01:b8:ff:a7:28:9a:2e:5e:3b:ff:ea:b1:4b:cb:50:
f8:a4:65:0d:50:9c:f5:52:94:00:17:96:f4:81:4a:
b8:82:f8:44:7b:0f:ed:f3:29:a3:7b:63:3d:49:fc:
6a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:12:33:2F:C7:AE:FD:A7:17:FA:F9:7A:35:03:E7:8F:67:55:F8:62
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/EhIzL8eu_acX-vl6NQPnj2dV-GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.35.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:eb:54:0b:b0:c8:97:a5:95:db:a5:83:84:85:57:3b:42:fc:
47:86:ec:2f:1f:8f:a2:21:b3:2f:f9:af:af:01:fa:26:29:c6:
cb:e0:7e:0c:1f:57:90:77:81:f7:27:c4:5e:bd:56:82:12:2a:
80:e5:52:8f:1e:0f:58:7f:64:83:b7:c7:21:c3:03:53:0b:51:
8c:b6:34:a7:3b:72:3b:7c:63:d9:4c:75:ac:26:c7:65:7d:78:
a7:f2:87:12:91:00:d5:d5:24:83:3f:73:b2:d5:97:5c:34:d7:
d6:4e:ad:97:50:4f:4e:b3:53:2f:c6:27:c5:2f:03:4b:04:b8:
d9:9b:02:3f:fb:77:2b:98:87:ff:23:36:e4:a8:51:1e:96:57:
d8:20:16:97:1f:9e:cd:d7:7b:ff:8d:5a:1c:f8:a4:1e:ca:13:
fe:14:ba:57:53:61:f8:7e:a0:70:65:8f:aa:80:bf:6c:c4:cc:
0d:cb:d4:17:4c:31:9a:1c:94:fd:b8:7a:f6:7a:75:cb:5d:7a:
9b:ad:0e:3e:f7:26:73:d0:78:11:41:81:dd:dc:d3:94:68:96:
bb:61:de:b7:8b:2a:38:6e:09:73:0b:a5:9a:56:dd:71:49:a5:
19:f4:30:4c:1d:19:e0:4f:df:0d:f6:78:45:7d:d7:7a:06:21:
dd:a8:bc:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org