Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/EaHQfqPW9Bd0N-u9NBNOOkX4ibg.roa
File: EaHQfqPW9Bd0N-u9NBNOOkX4ibg.roa (raw, json)
Hash identifier: lx+9G78gnjEV7oq68e3wmChgult8b53xGrSlo3VDx7o=
Subject key identifier: 11:A1:D0:7E:A3:D6:F4:17:74:37:EB:BD:34:13:4E:3A:45:F8:89:B8
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13699988
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/EaHQfqPW9Bd0N-u9NBNOOkX4ibg.roa
Signing time: Sat 01 Jan 2022 05:58:23 +0000
ROA not before: Sat 01 Jan 2022 05:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44307
IP address blocks: 83.126.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325687688 (0x13699988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11a1d07ea3d6f4177437ebbd34134e3a45f889b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8f:42:15:36:7b:e2:30:b2:d4:7e:f6:b4:4a:
80:b3:a5:50:de:35:42:ff:38:d8:6b:58:f9:ab:0b:
50:3c:a3:52:aa:30:fd:dd:63:4d:b0:27:8a:43:0a:
44:b9:86:88:b8:64:df:47:d3:fe:31:30:a4:d8:6b:
7d:af:5c:2c:7d:d5:a6:5f:f8:3f:0d:3e:8d:32:aa:
a6:73:07:ec:13:46:4a:12:55:35:9b:ca:91:04:3f:
e3:a2:6e:f4:b1:65:a1:06:a3:87:d9:65:d9:2f:59:
ea:ba:b5:f0:e0:40:ce:0d:c3:88:54:7d:c1:3c:c8:
6b:11:00:cf:c8:b4:63:84:a5:32:f5:e4:5a:a0:5d:
d5:d4:c9:91:77:d3:0d:1c:29:a4:c5:d8:0d:bd:e2:
ec:d0:be:02:ed:a7:62:d1:96:47:e5:bb:7c:94:e8:
f0:eb:32:e3:6b:88:84:4d:ab:2e:0e:69:d1:df:94:
7c:2d:ed:67:93:33:c0:01:79:48:06:71:22:9e:31:
2d:55:59:d0:50:d9:ba:6e:6d:45:1a:35:d7:31:52:
fb:5c:68:ad:f7:d6:42:ca:ef:0d:67:a6:3e:da:e5:
95:28:a3:a1:7d:94:21:74:6b:27:cf:77:1f:ce:48:
1b:f3:e5:a9:27:d5:d4:5d:dd:7c:d2:28:11:17:77:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A1:D0:7E:A3:D6:F4:17:74:37:EB:BD:34:13:4E:3A:45:F8:89:B8
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/EaHQfqPW9Bd0N-u9NBNOOkX4ibg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.126.0.0/21
Signature Algorithm: sha256WithRSAEncryption
20:22:4b:d1:b5:93:83:c6:ef:49:33:b7:f5:70:f2:85:fe:a3:
1f:46:4e:91:ce:8e:16:bf:36:10:4a:f9:2b:50:7b:fc:ad:a0:
9d:2b:7a:57:42:6e:4d:f5:b7:d0:13:28:cb:72:5e:42:bc:e9:
7f:76:e6:43:01:b3:83:8d:de:a9:78:6e:ab:39:6d:b2:9c:29:
e9:41:07:ac:b1:ee:86:ea:67:0c:33:55:88:4d:7f:f5:90:be:
f6:f6:8b:3a:0f:4c:65:ac:13:f7:c6:55:e8:8a:f4:4e:05:bd:
26:ca:69:ae:d0:ba:f7:1d:c2:a0:28:75:66:4c:10:92:a8:f5:
fd:7c:88:96:8a:ff:5f:73:8c:bc:42:a1:6a:1a:d7:08:37:81:
a0:54:e2:78:72:5f:62:a6:f7:1e:b1:6e:29:c2:6e:07:70:32:
72:b6:61:cd:8a:70:33:a4:e1:e9:41:92:1e:2c:ea:01:2b:09:
c2:ce:36:be:93:81:c1:fb:16:1a:94:ea:e3:71:54:12:ad:d7:
ac:39:5b:a6:84:16:6a:0b:53:1c:34:3b:5c:2e:4f:73:4c:12:
76:93:28:f5:a0:1e:58:49:46:2c:3d:55:35:22:17:ee:5a:d5:
93:24:02:8d:e3:5b:a7:66:87:b0:c0:92:53:98:9b:82:a7:44:
c3:ec:32:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org